• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 12

    svchost y googleupdateservice usando 100% de mi CPU

    Hola, mi primer posteo en la web, lamentablemente no para aportar algo. Tengo una PC nueva e instalé pocas cosas realmente, ninguna con señal de virus. Hace unos días aparece sin señal alguna el service ...

    1. #1
      Usuario Avatar de Stomno
      Registrado
      nov 2017
      Ubicación
      Argentina
      Mensajes
      8

      svchost y googleupdateservice usando 100% de mi CPU

      Hola, mi primer posteo en la web, lamentablemente no para aportar algo.
      Tengo una PC nueva e instalé pocas cosas realmente, ninguna con señal de virus. Hace unos días aparece sin señal alguna el service svchost.exe consumiendo de noventa a cien por ciento el procesador. Esto es un gran problema ya que si dejo la PC prendida para algo ese servicio eleva a 70º (o más) la temperatura y en un rato me quedaría sin PC básicamente.
      Busqué ayuda en Internet pero nada sirvió.

      No sé si un punto de restauración sirva y sinceramente preferiría no formatear porque pierdo todos los datos... Pasé adwcleaner, hijackthis y malwarebytes, limpié todos los archivos maliciosos, no vi nada raro. No sé si será por el updateo constante de Windows.







      GoogleUpdateService



      Este es otro problema, en momentos aleatorios el cmd se me abre de esta manera, y es realmente molesto!



      Informe HijackThis:





      Logfile of Trend Micro HijackThis v2.0.5
      Scan saved at 19:49:13, on 11/11/2017
      Platform: Unknown Windows (WinNT 6.02.1008)
      MSIE: Internet Explorer v11.0 (11.00.16299.0015)


      Boot mode: Normal

      Running processes:
      C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
      C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
      C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
      C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
      C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
      C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
      C:\Users\pc\AppData\Local\Discord\app-0.0.298\Discord.exe
      C:\Users\pc\AppData\Local\Discord\app-0.0.298\Discord.exe
      C:\Users\pc\AppData\Local\Discord\app-0.0.298\Discord.exe
      C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      C:\Users\pc\Downloads\Programas\Programas Malware\HijackThis.exe

      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
      O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll
      O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL
      O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll
      O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
      O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
      O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
      O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
      O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
      O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
      O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
      O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
      O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
      O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
      O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
      O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
      O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
      O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
      O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
      O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
      O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
      O23 - Service: @%SystemRoot%\system32\AJRouter.dll,-2 (AJRouter) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
      O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\AppReadiness.dll,-1000 (AppReadiness) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\appxdeploymentserver.dll,-1 (AppXSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100 (AssignedAccessManagerSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\AudioEndpointBuilder.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%windir%\system32\bisrv.dll,-100 (BrokerInfrastructure) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\BthHFSrv.dll,-103 (BthHFSrv) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\CapabilityAccessManager.dll,-1 (camsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\cdpsvc.dll,-100 (CDPSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\cdpusersvc.dll,-100 (CDPUserSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: Servicio de usuario de plataforma de dispositivos conectados_30cc908 (CDPUserSvc_30cc908) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ClipSVC.dll,-103 (ClipSVC) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\coremessaging.dll,-1 (CoreMessagingRegistrar) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @combase.dll,-5012 (DcomLaunch) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\das.dll,-100 (DeviceAssociationService) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (DeviceInstall) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\DevicesFlowBroker.dll,-103 (DevicesFlowUserSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: DevicesFlow_30cc908 (DevicesFlowUserSvc_30cc908) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\DevQueryBroker.dll,-100 (DevQueryBroker) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
      O23 - Service: @%systemroot%\system32\DiagSvc.dll,-100 (diagsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\diagtrack.dll,-3001 (DiagTrack) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\Windows.Internal.Management.dll,-100 (DmEnrollmentSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dosvc.dll,-100 (DoSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\DeviceSetupManager.dll,-1000 (DsmSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\dssvc.dll,-10003 (DsSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\dusmsvc.dll,-1 (DusmSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (Eaphost) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\embeddedmodesvc.dll,-201 (embeddedmode) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @EnterpriseAppMgmtSvc.dll,-1 (EntAppSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (EventLog) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
      O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fhsvc.dll,-101 (fhsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\FrameServer.dll,-100 (FrameServer) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\GraphicsPerfSvc.dll,-100 (GraphicsPerfSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\hvhostsvc.dll,-100 (HvHost) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\tetheringservice.dll,-4097 (icssvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\InstallService.dll,-200 (InstallService) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%Systemroot%\system32\ipxlatcfg.dll,-500 (IpxlatCfgSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\irmon.dll,-2000 (irmon) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
      O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\lfsvc.dll,-1 (lfsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\licensemanagersvc.dll,-200 (LicenseManager) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%windir%\system32\lsm.dll,-1001 (LSM) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\moshost.dll,-100 (MapsBroker) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\MessagingService.dll,-100 (MessagingService) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: MessagingService_30cc908 - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\WINDOWS\system32\msiexec.exe
      O23 - Service: @%systemroot%\system32\NaturalAuth.dll,-100 (NaturalAuthentication) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ncasvc.dll,-3009 (NcaSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ncbservice.dll,-500 (NcbService) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\NcdAutoSetup.dll,-100 (NcdAutoSetup) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\netprofmsvc.dll,-202 (netprofm) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\NetSetupSvc.dll,-3 (NetSetupSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\NgcCtnrSvc.dll,-1 (NgcCtnrSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
      O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
      O23 - Service: @%SystemRoot%\system32\APHostRes.dll,-10002 (OneSyncSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: Sincronizar host_30cc908 (OneSyncSvc_30cc908) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\WINDOWS\SysWow64\perfhost.exe
      O23 - Service: @%SystemRoot%\system32\PhoneserviceRes.dll,-10000 (PhoneSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\UserDataAccessRes.dll,-15001 (PimIndexMaintenanceSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: Datos de los contactos_30cc908 (PimIndexMaintenanceSvc_30cc908) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-200 (PlugPlay) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll,-1 (PrintNotify) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\PrintWorkflowService.dll,-100 (PrintWorkflowUserSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: PrintWorkflow_30cc908 (PrintWorkflowUserSvc_30cc908) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pushtoinstall.dll,-200 (PushToInstall) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\RDXService.dll,-256 (RetailDemo) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\RMapi.dll,-1001 (RmSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
      O23 - Service: @combase.dll,-5010 (RpcSs) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\System32\ScDeviceEnum.dll,-100 (ScDeviceEnum) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
      O23 - Service: @%SystemRoot%\System32\SEMgrSvc.dll,-1001 (SEMgrSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
      O23 - Service: @%SystemRoot%\System32\sensorservice.dll,-1000 (SensorService) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\SharedRealitySvc.dll,-100 (SharedRealitySvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\smphost.dll,-102 (smphost) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\SmsRouterSvc.dll,-10001 (SmsRouter) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
      O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
      O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
      O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\windows.staterepository.dll,-1 (StateRepository) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
      O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\svsvc.dll,-101 (svsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%windir%\system32\SystemEventsBrokerServer.dll,-1001 (SystemEventsBroker) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\tileobjserver.dll,-1 (tiledatamodelsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%windir%\system32\TimeBrokerServer.dll,-1001 (TimeBrokerSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\tokenbroker.dll,-100 (TokenBroker) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\WINDOWS\servicing\TrustedInstaller.exe
      O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\UserDataAccessRes.dll,-10003 (UnistoreSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: Almacenamiento de datos de usuarios_30cc908 (UnistoreSvc_30cc908) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\UserDataAccessRes.dll,-14001 (UserDataSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: Acceso a datos de usuarios_30cc908 (UserDataSvc_30cc908) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\usermgr.dll,-100 (UserManager) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\usocore.dll,-101 (UsoSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
      O23 - Service: @%systemroot%\system32\icsvc.dll,-801 (vmicguestinterface) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\icsvc.dll,-101 (vmicheartbeat) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\icsvc.dll,-201 (vmickvpexchange) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\icsvcext.dll,-601 (vmicrdv) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\icsvc.dll,-301 (vmicshutdown) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\icsvc.dll,-401 (vmictimesync) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\icsvc.dll,-901 (vmicvmsession) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\icsvcext.dll,-501 (vmicvss) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\WalletService.dll,-1000 (WalletService) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: Wallpaper Engine Service - Unknown owner - C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
      O23 - Service: @%SystemRoot%\System32\Windows.WARP.JITService.dll,-100 (WarpJITSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
      O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wcmsvc.dll,-4097 (Wcmsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
      O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wephostsvc.dll,-100 (WEPHOSTSVC) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wfdsconmgrsvc.dll,-9000 (WFDSConMgrSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wiarpc.dll,-2 (WiaRpc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\flightsettings.dll,-103 (wisvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (WlanSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wlidsvc.dll,-100 (wlidsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lpasvc.dll,-1000 (wlpasvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
      O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
      O23 - Service: @%systemroot%\system32\workfolderssvc.dll,-102 (workfolderssvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wpnservice.dll,-1 (WpnService) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\WpnUserService.dll,-1 (WpnUserService) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: Servicio de usuario de notificaciones de inserción de Windows_30cc908 (WpnUserService_30cc908) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\WINDOWS\system32\SearchIndexer.exe
      O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
      O23 - Service: @%systemroot%\system32\XblAuthManager.dll,-100 (XblAuthManager) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\XblGameSave.dll,-100 (XblGameSave) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\xboxgipsvc.dll,-100 (XboxGipSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\XboxNetApiSvc.dll,-100 (XboxNetApiSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

      --
      End of file - 33546 bytes

    2. #2
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.165

      Re: svchost y googleupdateservice usando 100% de mi CPU

      Saludos y [email protected]






      1-Descarga Farbar Recovery Scan Tool By Farbar (Descarga el archivo dependiendo de la arquitectura de tu sistema).>> Como saber si mi sistema es de 32 o de 64 Bits

      • La guardas en el escritorio >> Esto es muy importante..
      • Con todos los programas /ventanas cerrados, doble clic para ejecutar Frst.exe.
      • En la ventana del Disclaimer, presiona Yes.
      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.

      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.

      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta. Utiliza dos mensajes si te dice que es muy largo.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de Stomno
      Registrado
      nov 2017
      Ubicación
      Argentina
      Mensajes
      8

      Re: svchost y googleupdateservice usando 100% de mi CPU

      Editado*******************+
      Creo que ahí esos dos servicios/procesos no estaban actuando pero hice lo que me pediste.
      Última edición por @Miguelgrado fecha: 14/11/17 a las 14:01:06

    4. #4
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.165

      Re: svchost y googleupdateservice usando 100% de mi CPU

      Los logs debes pegarlos en el tema, empleando las respuestas que necesites


      SALUDOS
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de Stomno
      Registrado
      nov 2017
      Ubicación
      Argentina
      Mensajes
      8

      Re: svchost y googleupdateservice usando 100% de mi CPU

      Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-11-2017 03
      Ran by pc (14-11-2017 11:20:51)
      Running from C:\Users\pc\Desktop
      Windows 10 Pro Version 1709 16299.19 (X64) (2017-11-07 22:42:05)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-643759068-1701702596-2655931138-500 - Administrator - Disabled)
      DefaultAccount (S-1-5-21-643759068-1701702596-2655931138-503 - Limited - Disabled)
      Invitado (S-1-5-21-643759068-1701702596-2655931138-501 - Limited - Disabled)
      pc (S-1-5-21-643759068-1701702596-2655931138-1001 - Administrator - Enabled) => C:\Users\pc
      WDAGUtilityAccount (S-1-5-21-643759068-1701702596-2655931138-504 - Limited - Disabled)

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      µTorrent (HKU\S-1-5-21-643759068-1701702596-2655931138-1001\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.)
      Actualización de NVIDIA 29.1.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 29.1.0.0 - NVIDIA Corporation) Hidden
      Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.5.353 - Adobe Systems Incorporated)
      Adobe Premiere (HKLM\...\{C1CB876C-A08E-4692-B525-42848BD154D7}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
      Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_0_2) (Version: 11.0.2 - Adobe Systems Incorporated)
      Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
      Backup and Sync from Google (HKLM-x32\...\{604582EB-8259-4ED6-9B1B-6F2494D4B640}) (Version: 3.37.7411.4599 - Google, Inc.)
      CCleaner (HKLM\...\CCleaner) (Version: 5.36 - Piriform)
      Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
      Discord (HKU\S-1-5-21-643759068-1701702596-2655931138-1001\...\Discord) (Version: 0.0.298 - Discord Inc.)
      GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
      Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.)
      Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
      Guitar Pro 6 (HKLM-x32\...\{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1) (Version: - Arobas Music)
      Gwent (HKLM-x32\...\1971477531_is1) (Version: 0.9.12.2 public beta - GOG.com)
      Gyazo 3.3.4 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
      Image Composite Editor (HKLM\...\{92AB5708-1AAA-4B1B-A8D5-45CF3AD77519}) (Version: 2.0.3 - Microsoft Corporation)
      Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
      Malwarebytes Anti-Malware versión 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
      Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.8625.2121 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{db012557-340e-4a46-adae-81a6b0f6a1e9}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
      Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
      MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
      Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.14 - Black Tree Gaming)
      Nier.Automata.Day.One.Edition.Incl.DLC.Repack versión 1.0 (HKLM-x32\...\{382C80CB-1519-4709-A676-31EB64328F99}}_is1) (Version: 1.0 - 0)
      No Mans Sky MULTi14 - ElAmigos versión 1.38 (HKLM-x32\...\{1F1B9588-9067-4CE3-B02B-9891C8647F15}_is1) (Version: 1.38 - Hello Games)
      Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.1 - Notepad++ Team)
      NVIDIA Controlador de 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
      NVIDIA Controlador de audio HD 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
      NVIDIA Controlador de gráficos 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
      NVIDIA Controlador de la controladora 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
      NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation)
      NVIDIA Software del sistema PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
      OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.1.1 - OBS Project)
      Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8625.2121 - Microsoft Corporation) Hidden
      Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2121 - Microsoft Corporation) Hidden
      Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2121 - Microsoft Corporation) Hidden
      Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.8326.2076 - Microsoft Corporation) Hidden
      paint.net (HKLM\...\{F10AAD91-58DF-44EC-A647-810197141667}) (Version: 4.0.19 - dotPDN LLC)
      Panel de control de NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
      PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
      Premiere Pro (HKLM\...\{3DF5A448-80E1-43C1-8428-984429451989}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
      QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
      RivaTuner Statistics Server 7.0.0 (HKLM-x32\...\RTSS) (Version: 7.0.0 - Unwinder)
      Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.2.0 - Rockstar Games)
      Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform)
      Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
      Steam Customizer (HKU\S-1-5-21-643759068-1701702596-2655931138-1001\...\Steam Customizer) (Version: 1.00.00.00 - Blumont)
      The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
      Unity Web Player (HKU\S-1-5-21-643759068-1701702596-2655931138-1001\...\UnityWebPlayer) (Version: 5.3.5f1 - Unity Technologies ApS)
      Uplay (HKLM-x32\...\Uplay) (Version: 43.1 - Ubisoft)
      VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
      Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
      WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google)
      ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google)
      ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-01] (Google)
      ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
      ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
      ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
      ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
      ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
      ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
      ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-08-28] ()
      ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-01] (Google)
      ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
      ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
      ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
      ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-01] (Google)
      ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
      ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
      ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
      ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
      ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)

      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {01E4FAB1-C48A-41A0-8103-2F63FC41898B} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-31] (Microsoft Corporation)
      Task: {02366CBB-CCE6-41E2-BCA3-0DEEB88F2EF2} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-27] (NVIDIA Corporation)
      Task: {083CE506-A988-4A49-BFFF-54FA889EBF2A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-27] (NVIDIA Corporation)
      Task: {37F9051C-8A58-4D2A-BC9A-3EB2D5CE6032} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-03] (Google Inc.)
      Task: {3D439D52-A64B-4076-93A9-C071C9A74AAD} - System32\Tasks\DiagnosticTask => C:\Users\pc\AppData\Roaming\Nier.Automata.Day.One.Edition.Incl.DLC.Repack\amego.exe
      Task: {439824DD-2F80-4BB7-9374-1DBC5D958755} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-10-18] (Piriform Ltd)
      Task: {4D4EA2F2-530E-443A-8EB3-93B5533AC388} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-03] (Google Inc.)
      Task: {593644B5-4BAC-489D-B216-30FE2C9E5CEE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-27] (NVIDIA Corporation)
      Task: {60CE00C9-6977-4E7D-98B1-F7AD7608BAC7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-31] (Microsoft Corporation)
      Task: {614F9A37-349F-40D3-AB5B-2A542C053BDE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
      Task: {68CDB2BC-8529-4229-A0FA-6EF01A79E100} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-10-03] ()
      Task: {6BACB76F-5772-48DD-8EE3-D6C4507C3D82} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-11-08] (Microsoft Corporation)
      Task: {6BDBD753-5802-4272-9DC5-EB92645BAB04} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-10-03] ()
      Task: {757F6577-5B75-44E7-8D26-D361FF34558E} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-11-08] ()
      Task: {79C24E26-29EC-4839-871A-8AF57FB80DF3} - System32\Tasks\update-S-1-5-21-643759068-1701702596-2655931138-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
      Task: {85F6C372-8868-4845-9A9A-BD2C346D9405} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-10-18] (Piriform Ltd)
      Task: {943FB860-A77A-4E26-8C3A-FB3816B6E7B9} - System32\Tasks\ismnibhr => C:\Users\pc\AppData\Local\evcnjgxfkbu.bat [2017-11-05] () <==== ATTENTION
      Task: {96690885-1196-4DBA-9D07-F82779F680A4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-27] (NVIDIA Corporation)
      Task: {A1EF9152-3013-4CB9-901C-92A2096E08A0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-11-08] (Microsoft Corporation)
      Task: {C774987C-972D-444F-93FD-7CE1CB0A14D9} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-27] (NVIDIA Corporation)
      Task: {CB53F205-0C3F-417A-9346-7F18238AF365} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-27] (NVIDIA Corporation)
      Task: {D12F4D1B-2E73-45BF-B667-401D402D7608} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-27] (NVIDIA Corporation)
      Task: {D33D21EC-2452-44A1-951C-974A54EB6DE7} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: <Company name>)
      Task: {DFBA5784-F53B-4BD0-8492-8D43EC9D3407} - System32\Tasks\KMSAutoNet => C:\ProgramData\KMSAutoS\KMSAuto Net.exe [2015-08-10] (MSFree Inc.)
      Task: {E9F8B4E3-28EA-4CCD-8076-4C72E8DEA4A7} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-11-08] ()
      Task: {ED7130EA-B5E8-4F02-B4E9-FDDFDC955EDC} - System32\Tasks\knyhj => C:\Users\pc\AppData\Local\bufdurjtx.bat [2017-11-05] () <==== ATTENTION
      Task: {F9172C74-7A93-4A11-9B1B-DE4F949DFDB9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-27] (NVIDIA Corporation)

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

      Task: C:\WINDOWS\Tasks\update-S-1-5-21-643759068-1701702596-2655931138-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
      Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

      ==================== Shortcuts & WMI ========================

      (The entries could be listed to be restored or removed.)


      ==================== Loaded Modules (Whitelisted) ==============

      2017-11-03 21:53 - 2017-10-27 14:50 - 001267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
      2017-11-04 15:45 - 2017-11-04 08:16 - 000345064 _____ () C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
      2017-09-29 10:41 - 2017-09-29 10:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
      2017-11-03 21:51 - 2017-10-27 13:12 - 000133752 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
      2016-10-25 09:57 - 2016-10-25 09:57 - 000491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
      2017-11-08 14:11 - 2017-11-08 16:41 - 008931496 _____ () C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\1033\GrooveIntlResource.dll
      2017-09-29 10:42 - 2017-09-30 11:36 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
      2017-09-29 10:42 - 2017-09-30 11:36 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
      2017-11-14 09:50 - 2017-11-14 09:51 - 000022016 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
      2017-11-14 09:50 - 2017-11-14 09:51 - 055109120 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
      2017-11-03 22:07 - 2017-11-03 22:11 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
      2017-11-14 09:50 - 2017-11-14 09:52 - 000164864 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\VideoPlugin.dll
      2017-11-03 22:07 - 2017-11-03 22:10 - 000675328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\IPPNativePlugin.dll
      2017-11-14 09:50 - 2017-11-14 09:51 - 003740160 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
      2017-11-14 09:50 - 2017-11-14 09:52 - 002051584 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
      2017-11-14 09:50 - 2017-11-14 09:52 - 020759040 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
      2017-11-14 09:50 - 2017-11-14 09:51 - 003607040 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\MediaEngine.dll
      2017-11-14 09:50 - 2017-11-14 09:50 - 003150848 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
      2017-11-03 22:07 - 2017-11-03 22:11 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
      2017-11-14 09:50 - 2017-11-14 09:51 - 000046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
      2017-11-14 09:50 - 2017-11-14 09:51 - 002493440 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.People.AutoSuggest.dll
      2017-11-14 09:50 - 2017-11-14 09:51 - 000919040 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.People.PeoplePicker.dll
      2017-11-14 09:50 - 2017-11-14 09:51 - 001363968 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
      2017-11-14 09:50 - 2017-11-14 09:51 - 000084480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\MediaEngineVideoDataProvider.UWP.dll
      2017-11-03 21:53 - 2017-10-27 14:50 - 001040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
      2017-11-03 21:38 - 2017-09-09 16:25 - 000688416 _____ () C:\Program Files (x86)\Steam\SDL2.dll
      2017-11-03 21:38 - 2017-10-31 00:22 - 002546976 _____ () C:\Program Files (x86)\Steam\video.dll
      2017-11-03 21:38 - 2016-08-31 22:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
      2017-11-03 21:38 - 2016-01-27 04:49 - 000491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
      2017-11-03 21:38 - 2016-01-27 04:49 - 000332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
      2017-11-03 21:38 - 2016-01-27 04:49 - 000442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
      2017-11-03 21:38 - 2016-01-27 04:49 - 002549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
      2017-11-03 21:38 - 2016-01-27 04:49 - 000485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
      2017-11-03 21:38 - 2016-08-31 22:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
      2017-11-03 21:38 - 2016-08-31 22:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
      2017-11-03 21:38 - 2017-10-31 00:22 - 000901408 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
      2017-11-03 21:38 - 2016-07-04 19:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
      2017-11-03 21:43 - 2017-09-06 23:04 - 000678400 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
      2017-11-03 21:43 - 2017-08-16 19:28 - 073130272 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
      2017-11-03 21:38 - 2015-09-24 20:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)


      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)


      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2017-03-18 18:03 - 2017-11-06 23:12 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-643759068-1701702596-2655931138-1001\Control Panel\Desktop\\Wallpaper ->
      DNS Servers: 200.49.130.40 - 200.42.4.204
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
      Windows Firewall is enabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==

      HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
      HKLM\...\StartupApproved\Run: => "SecurityHealth"
      HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
      HKLM\...\StartupApproved\Run32: => "APSDaemon"
      HKLM\...\StartupApproved\Run32: => "SecurityHealth"
      HKU\S-1-5-21-643759068-1701702596-2655931138-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
      HKU\S-1-5-21-643759068-1701702596-2655931138-1001\...\StartupApproved\Run: => "uTorrent"
      HKU\S-1-5-21-643759068-1701702596-2655931138-1001\...\StartupApproved\Run: => "GalaxyClient"

      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [{7A5DF8D8-60CC-46AD-AC59-D58318D03B8E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Miscreated\Miscreated.exe
      FirewallRules: [{6D0288DE-D2DC-47C2-8E53-D0486CECF19D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Miscreated\Miscreated.exe
      FirewallRules: [{33C68EF6-7CB4-4E96-A682-0FDE3A41292C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
      FirewallRules: [{6E417C19-B72E-40A7-9C84-83BF9AF36663}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
      FirewallRules: [{88FA1AE1-BDE6-4D11-93CA-0E69E3D8DFC8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
      FirewallRules: [{71C5F106-A644-49C3-B877-A8A4D8B6F398}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe
      FirewallRules: [{522F2797-3045-46F8-B7C8-2E124EB1D49E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Outlast\OutlastLauncher.exe
      FirewallRules: [{A0CD2467-E527-426D-9EE5-947EF278BA3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Outlast\OutlastLauncher.exe
      FirewallRules: [{603001C9-7F51-455B-B4BF-4272A6E22528}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe
      FirewallRules: [{94A63245-3162-4FD7-8E34-DBC914DA40D9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe
      FirewallRules: [UDP Query User{5C9F6ACB-60CD-434A-ABBB-8E345E1F2938}C:\users\pc\downloads\juegos\pro evolution soccer 2018\pes2018.exe] => (Allow) C:\users\pc\downloads\juegos\pro evolution soccer 2018\pes2018.exe
      FirewallRules: [TCP Query User{68E4C93F-9600-49EE-A46C-234359F2505D}C:\users\pc\downloads\juegos\pro evolution soccer 2018\pes2018.exe] => (Allow) C:\users\pc\downloads\juegos\pro evolution soccer 2018\pes2018.exe
      FirewallRules: [{FE787F94-5B34-477E-965B-8B93A5410CFD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metal Slug X\mslugx.exe
      FirewallRules: [{D9DA0199-EE4B-4ABC-A9D5-0D29143ED323}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metal Slug X\mslugx.exe
      FirewallRules: [{AA7DA431-02BC-442B-87DF-9621D5B6C94F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
      FirewallRules: [{D3FE6512-B1B6-4354-9278-7D51D083D7A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
      FirewallRules: [{69999AA0-7352-4F83-99F6-EA6689776242}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 2\hl2.exe
      FirewallRules: [{48D09122-5FC5-4C06-8C99-6AEA2C832C25}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 2\hl2.exe
      FirewallRules: [{AA65F69D-6D86-42FE-B549-06A72ADDC632}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Machinarium\Machinarium.exe
      FirewallRules: [{5525BCE6-0E18-4D51-BFBF-62476C5EE0F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Machinarium\Machinarium.exe
      FirewallRules: [{F5BC5C25-D908-47B4-8D8A-3E404A56EC02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\skse_steam_boot.exe
      FirewallRules: [{B68C3A20-C81F-4047-BD62-3F899774EB57}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\skse_steam_boot.exe
      FirewallRules: [{E540331F-A764-4605-9BF1-8878C1740014}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
      FirewallRules: [{1936E507-9342-46A0-9A4E-F7F87FD8381E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
      FirewallRules: [{AEC29BC9-5715-4642-B8A3-69C32BA7EABF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
      FirewallRules: [{BA12D4D4-39F4-457E-BAA0-79B4F80A1486}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
      FirewallRules: [{E610B07B-8242-470D-A71E-E401B87115C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stronghold\Stronghold.exe
      FirewallRules: [{9419806B-C151-4B0F-B62D-117DDF668DED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stronghold\Stronghold.exe
      FirewallRules: [{F08F2C70-5360-4248-BC36-6749516DBE04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
      FirewallRules: [{57F35213-3D1A-4973-89A0-FA9670D29745}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
      FirewallRules: [{8E8EDC96-DA40-45F0-B3A2-0AD245940362}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guilty Gear XX Accent Core Plus R\GGXXACPR_Win.exe
      FirewallRules: [{992F2C82-B7DB-4562-9971-F52AA34DBEF4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Guilty Gear XX Accent Core Plus R\GGXXACPR_Win.exe
      FirewallRules: [{9041E79F-CDD6-4907-A6B0-445985C66B24}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\METAL SLUG\mslug1.exe
      FirewallRules: [{4374BA65-CAB1-425E-B600-B6CDA52117A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\METAL SLUG\mslug1.exe
      FirewallRules: [{751D766D-8A3A-4819-9488-822CD956CB6B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cuphead\Cuphead.exe
      FirewallRules: [{F5BA1993-8420-4473-AA0F-A76B5349B718}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cuphead\Cuphead.exe
      FirewallRules: [{D6249895-E254-4BD1-8A87-5EBB0F4372AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metal Slug 3\mslug3.exe
      FirewallRules: [{829C18A4-6ACF-49B3-B732-3EE48FAECB13}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metal Slug 3\mslug3.exe
      FirewallRules: [{E67197F8-A452-4458-8D7F-21D0C9149AD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
      FirewallRules: [{06B894A0-7078-49B7-84DD-E2A395F69BC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
      FirewallRules: [{13366CAE-B789-461C-B8BC-C8A381331733}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
      FirewallRules: [{0C5948B5-5F9D-4456-8238-D20174B85F3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
      FirewallRules: [{6FAFE1D5-C280-46FD-95FE-0459D92643CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
      FirewallRules: [{2417A7FF-98FC-4F24-B46A-836CEB3844AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
      FirewallRules: [{E966D16C-BCE0-422D-99BF-87F976C17BAE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTA5.exe
      FirewallRules: [{57AAE5E5-6A5C-469E-AADE-B38680FF0B1D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTA5.exe
      FirewallRules: [{4465876D-9ED9-41E8-9C13-B02BBD361B4F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
      FirewallRules: [{C368E6BF-8C83-4B09-BAF9-388EDAC148A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
      FirewallRules: [{0CD840E2-1E6A-4E7B-9382-2C4A5A2642C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe
      FirewallRules: [{786B0C57-8762-4306-B773-423716083C18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe
      FirewallRules: [{874EAF53-90BC-4842-9AD1-EB27307C1F56}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.66.478.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
      FirewallRules: [{03AE6F83-DD9C-47EA-83E1-24F7A0F0FC0C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.66.478.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
      FirewallRules: [{8208FC77-1B95-459E-B9DB-846DEE0BC38B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.66.478.0_x86__zpdnekdrzrea0\Spotify.exe
      FirewallRules: [{17C95B4E-B8E2-49BC-ABB3-1F8EA78DE8CD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.66.478.0_x86__zpdnekdrzrea0\Spotify.exe
      FirewallRules: [{31215DB8-20FB-4595-A78C-978449DAAC27}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.66.478.0_x86__zpdnekdrzrea0\Spotify.exe
      FirewallRules: [{BE9B99BF-E466-4B1E-B973-2F8F7991B945}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.66.478.0_x86__zpdnekdrzrea0\Spotify.exe
      FirewallRules: [{ADA2B635-FC00-4D1E-84AB-DED2B9AA13B1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.66.478.0_x86__zpdnekdrzrea0\Spotify.exe
      FirewallRules: [{D3BB7BCD-3970-4AAE-99A0-D99952B0B519}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.66.478.0_x86__zpdnekdrzrea0\Spotify.exe
      FirewallRules: [{A198DAE6-021A-44EF-99CC-D5B383621D49}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.66.478.0_x86__zpdnekdrzrea0\Spotify.exe
      FirewallRules: [{5A98EAA1-CAC0-4B35-8CE6-0A946E06E972}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.66.478.0_x86__zpdnekdrzrea0\Spotify.exe
      FirewallRules: [{7A732DCA-E6CE-48F8-B0C7-3670D0DF285D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blender\blender.exe
      FirewallRules: [{AC2047B8-C18C-4F8C-88A0-CAD9E6185307}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blender\blender.exe
      FirewallRules: [{89FA646C-2849-47F9-B1CC-20285BEF48B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe
      FirewallRules: [{0719D750-2322-4D6A-9471-561EFE3FF95D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe
      FirewallRules: [{615D684C-0ECD-4E64-904A-65B3CD20CFB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
      FirewallRules: [{99A73204-5A7D-499D-85BB-DED533B617BB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
      FirewallRules: [{8268EB50-BAD1-4650-B9B6-AB4F4731122A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      FirewallRules: [{4A78FFDA-A985-4763-AC57-592E5B1D09A2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
      FirewallRules: [{8A3D1985-54AA-4D3D-B536-97E280C6F9E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
      FirewallRules: [{98BBC5B3-AACC-45CF-BDA5-F18607FF0A42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
      FirewallRules: [{522B7F60-3B17-4686-BF49-5CB3FBC1205E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
      FirewallRules: [{6E54994C-2345-40C0-ABCF-1FC77A2199A3}] => (Allow) C:\Users\pc\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{C937C85E-32F9-4B06-9BB8-0BEBC0BB94BE}] => (Allow) C:\Users\pc\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{A050717A-84B1-42DC-BF17-5AAEEEF279A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Alien Swarm Reactive Drop\reactivedrop.exe
      FirewallRules: [{762CCC7D-449C-4DFD-8B70-03C6E02A9B93}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Alien Swarm Reactive Drop\reactivedrop.exe
      FirewallRules: [{BC9DB01B-7FB7-4D56-A369-CA01367D2B43}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
      FirewallRules: [{1B287FA1-A88F-474A-8DCC-BA4F99BC62D8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
      FirewallRules: [{564056A4-7BB5-4A02-8636-0F0AAA5E95CF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      FirewallRules: [{D8FA715A-A7D0-4F9F-9C0E-1D2AFD8776B2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      FirewallRules: [{29940DA0-DDA9-4A73-8A7B-B43EDB661F4E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      FirewallRules: [{A459D7A8-BA91-40C9-B1C5-A6109168BA44}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      FirewallRules: [{5C475EAA-EC41-43E3-BE58-11C377179D40}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
      FirewallRules: [{C894E185-272E-4E82-96D5-0D9DC2853D18}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
      FirewallRules: [{4754F871-2464-47DB-BC49-5100FAC30D73}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
      FirewallRules: [{B9E22448-83A0-4F98-B905-724B09DF6425}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
      FirewallRules: [{583A9FBC-3B7E-4F32-8C3A-B659250E264F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
      FirewallRules: [{6E5C790E-150A-4289-AE4A-A2D089CF16AE}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
      FirewallRules: [{A541BF74-E3FF-4C35-A496-34D5AEE2A824}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
      FirewallRules: [{BCBF59F1-B2E0-42CD-930D-B4D2BE3A6B4D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout Shelter\FalloutShelter.exe
      FirewallRules: [{A27A0DC2-E3D7-4A06-8CC1-BE0C1AB03815}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout Shelter\FalloutShelter.exe
      FirewallRules: [{291DDA99-6A27-4F8B-AC1B-B0CFB920DE07}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viridi\Viridi.exe
      FirewallRules: [{0B67C741-6335-4DB4-9B8D-2BFC5A453C30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Viridi\Viridi.exe
      FirewallRules: [{21AFC67E-186D-491E-92EE-D78BB0A94D29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Limbo\limbo.exe
      FirewallRules: [{522AC60B-9B4E-4525-84D7-5E176EDB5CC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Limbo\limbo.exe
      FirewallRules: [{2A05F97A-1441-41AC-99BB-B1F5AB5BC094}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\INSIDE\INSIDE.exe
      FirewallRules: [{EB05BD63-7E37-4D57-81F3-4BCCB09B63A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\INSIDE\INSIDE.exe
      FirewallRules: [{DA77DAFA-6845-402C-807A-E48C7EAAA023}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade With Fire and Sword\mb_wfas.exe
      FirewallRules: [{0E3633DA-3AD4-4F65-8066-F07DA655D9FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade With Fire and Sword\mb_wfas.exe
      FirewallRules: [{826AA8F9-CC54-423A-9282-37B11821B24B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
      FirewallRules: [{90B33D96-4B47-4419-A800-F905CC5B1B86}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
      FirewallRules: [{B55A619A-579F-4EC8-8315-46828E70738A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Walking Dead\WalkingDead101.exe
      FirewallRules: [{DDED0E5B-A6B3-4B7C-881A-23928E8C3B8A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Walking Dead\WalkingDead101.exe
      FirewallRules: [{7533C520-B4CB-4EAA-8FD6-6263A3FF8F02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SUPERHOT\SUPERHOT.exe
      FirewallRules: [{BEA2C5D3-3C19-4A35-B01D-032B62088F4B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SUPERHOT\SUPERHOT.exe
      FirewallRules: [{82529CA6-B2EF-4EDB-A4B2-567F689A1C9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Stanley Parable\stanley.exe
      FirewallRules: [{C5C83EB1-AA48-4E10-907C-A15253C8A7FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Stanley Parable\stanley.exe
      FirewallRules: [{38130353-DC92-47CB-BF10-0FD7D01248C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
      FirewallRules: [{EF9D4BDE-19FD-469C-815B-D10B6723BDCF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
      FirewallRules: [{71869152-BA6A-45D7-9E85-497083F696DD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
      FirewallRules: [{2B873F5B-D67C-4098-B042-A0BC54072D36}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
      FirewallRules: [{1ABEA670-BF86-4B62-9D22-99C29FC9B5E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shelter2\Shelter2.exe
      FirewallRules: [{C0B591E1-34A2-46B8-A3D7-F5E53F3C2881}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shelter2\Shelter2.exe
      FirewallRules: [{226B6E6A-0562-41A2-9532-266DB0C894E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout\FalloutLauncher.exe
      FirewallRules: [{59CD2E97-55C6-4A46-8F81-478D4BBC8AEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout\FalloutLauncher.exe
      FirewallRules: [{FD915C4B-C605-48C5-98F1-226548877658}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 2\Fallout2Launcher.exe
      FirewallRules: [{7DCB8587-9AED-4643-846A-3CED23115E40}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout 2\Fallout2Launcher.exe
      FirewallRules: [{8060202C-827F-4845-ACDC-2A3F7C8D5420}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      FirewallRules: [{D8220A64-0CD6-4EEC-BE17-F481771C6C6D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Way\theway.exe
      FirewallRules: [{4A7D687E-0D91-4B58-8049-87CB021CF245}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Way\theway.exe

      ==================== Restore Points =========================

      10-11-2017 16:49:06 Instalado Microsoft Visual C++ 2005 Redistributable
      12-11-2017 20:58:18 Instalador de Módulos de Windows

      ==================== Faulty Device Manager Devices =============

      Name: Teclado PS/2 estándar
      Description: Teclado PS/2 estándar
      Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
      Manufacturer: (Teclados estándar)
      Service: i8042prt
      Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
      Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
      Devices stay in this state if they have been prepared for removal.
      After you remove the device, this error disappears.Remove the device, and this error should be resolved.

      Name: Mouse PS/2 de Microsoft
      Description: Mouse PS/2 de Microsoft
      Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
      Manufacturer: Microsoft
      Service: i8042prt
      Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
      Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
      Devices stay in this state if they have been prepared for removal.
      After you remove the device, this error disappears.Remove the device, and this error should be resolved.

    6. #6
      Usuario Avatar de Stomno
      Registrado
      nov 2017
      Ubicación
      Argentina
      Mensajes
      8

      Re: svchost y googleupdateservice usando 100% de mi CPU

      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (11/14/2017 09:48:47 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: GoogleUpdate_239926033.exe, versión: 0.0.0.0, marca de tiempo: 0x2a425e19
      Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x25ffc08b
      Identificador del proceso con errores: 0x314
      Hora de inicio de la aplicación con errores: 0x01d35d46e5103c99
      Ruta de acceso de la aplicación con errores: C:\Users\pc\AppData\Local\Temp\is-AOO5V.tmp\GoogleUpdate_239926033.exe
      Ruta de acceso del módulo con errores: unknown
      Identificador del informe: 9e10f326-9704-4b95-aba8-ab243dd91206
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (11/14/2017 09:48:47 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: GoogleUpdate_239926033.exe, versión: 0.0.0.0, marca de tiempo: 0x2a425e19
      Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x25ffc08b
      Identificador del proceso con errores: 0x314
      Hora de inicio de la aplicación con errores: 0x01d35d46e5103c99
      Ruta de acceso de la aplicación con errores: C:\Users\pc\AppData\Local\Temp\is-AOO5V.tmp\GoogleUpdate_239926033.exe
      Ruta de acceso del módulo con errores: unknown
      Identificador del informe: 8ae8cdcc-0318-454f-917e-51b46c61ec27
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (11/14/2017 09:48:46 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: GoogleUpdate_239926033.exe, versión: 0.0.0.0, marca de tiempo: 0x2a425e19
      Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x25ffc08b
      Identificador del proceso con errores: 0x314
      Hora de inicio de la aplicación con errores: 0x01d35d46e5103c99
      Ruta de acceso de la aplicación con errores: C:\Users\pc\AppData\Local\Temp\is-AOO5V.tmp\GoogleUpdate_239926033.exe
      Ruta de acceso del módulo con errores: unknown
      Identificador del informe: 47d628a4-2299-482f-a367-69862d8fa195
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (11/14/2017 09:48:46 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: GoogleUpdate_239926033.exe, versión: 0.0.0.0, marca de tiempo: 0x2a425e19
      Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x25ffc08b
      Identificador del proceso con errores: 0x314
      Hora de inicio de la aplicación con errores: 0x01d35d46e5103c99
      Ruta de acceso de la aplicación con errores: C:\Users\pc\AppData\Local\Temp\is-AOO5V.tmp\GoogleUpdate_239926033.exe
      Ruta de acceso del módulo con errores: unknown
      Identificador del informe: 6f3e65d1-ecd8-4496-b25d-b616a865f6f0
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (11/14/2017 09:48:45 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: GoogleUpdate_239926033.exe, versión: 0.0.0.0, marca de tiempo: 0x2a425e19
      Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x25ffc08b
      Identificador del proceso con errores: 0x314
      Hora de inicio de la aplicación con errores: 0x01d35d46e5103c99
      Ruta de acceso de la aplicación con errores: C:\Users\pc\AppData\Local\Temp\is-AOO5V.tmp\GoogleUpdate_239926033.exe
      Ruta de acceso del módulo con errores: unknown
      Identificador del informe: 3aa5106f-1631-4153-819d-c8a3e8e77643
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (11/14/2017 09:48:44 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: GoogleUpdate_239926033.exe, versión: 0.0.0.0, marca de tiempo: 0x2a425e19
      Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x25ffc08b
      Identificador del proceso con errores: 0x314
      Hora de inicio de la aplicación con errores: 0x01d35d46e5103c99
      Ruta de acceso de la aplicación con errores: C:\Users\pc\AppData\Local\Temp\is-AOO5V.tmp\GoogleUpdate_239926033.exe
      Ruta de acceso del módulo con errores: unknown
      Identificador del informe: 416799a7-e338-4d34-9af7-29e3ba63b007
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (11/14/2017 09:48:44 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: GoogleUpdate_239926033.exe, versión: 0.0.0.0, marca de tiempo: 0x2a425e19
      Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x25ffc08b
      Identificador del proceso con errores: 0x314
      Hora de inicio de la aplicación con errores: 0x01d35d46e5103c99
      Ruta de acceso de la aplicación con errores: C:\Users\pc\AppData\Local\Temp\is-AOO5V.tmp\GoogleUpdate_239926033.exe
      Ruta de acceso del módulo con errores: unknown
      Identificador del informe: 12359846-95d4-4117-a40e-dab9500dbd9e
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (11/14/2017 09:48:42 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: GoogleUpdate_239926033.exe, versión: 0.0.0.0, marca de tiempo: 0x2a425e19
      Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x25ffc08b
      Identificador del proceso con errores: 0x314
      Hora de inicio de la aplicación con errores: 0x01d35d46e5103c99
      Ruta de acceso de la aplicación con errores: C:\Users\pc\AppData\Local\Temp\is-AOO5V.tmp\GoogleUpdate_239926033.exe
      Ruta de acceso del módulo con errores: unknown
      Identificador del informe: 28960ba6-fc92-41b5-b7ad-19f041532a7b
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (11/14/2017 09:48:42 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: GoogleUpdate_239926033.exe, versión: 0.0.0.0, marca de tiempo: 0x2a425e19
      Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x25ffc08b
      Identificador del proceso con errores: 0x314
      Hora de inicio de la aplicación con errores: 0x01d35d46e5103c99
      Ruta de acceso de la aplicación con errores: C:\Users\pc\AppData\Local\Temp\is-AOO5V.tmp\GoogleUpdate_239926033.exe
      Ruta de acceso del módulo con errores: unknown
      Identificador del informe: ae63809f-1110-4f9c-a408-3a16cbcb1849
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (11/14/2017 09:48:42 AM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: GoogleUpdate_239926033.exe, versión: 0.0.0.0, marca de tiempo: 0x2a425e19
      Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x25ffc08b
      Identificador del proceso con errores: 0x314
      Hora de inicio de la aplicación con errores: 0x01d35d46e5103c99
      Ruta de acceso de la aplicación con errores: C:\Users\pc\AppData\Local\Temp\is-AOO5V.tmp\GoogleUpdate_239926033.exe
      Ruta de acceso del módulo con errores: unknown
      Identificador del informe: 3b78d75d-061f-4962-ae1d-09e60f04e3ed
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:


      System errors:
      =============
      Error: (11/14/2017 11:16:48 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3NMB5L7)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario DESKTOP-3NMB5L7\pc con SID (S-1-5-21-643759068-1701702596-2655931138-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (11/14/2017 11:03:40 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3NMB5L7)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario DESKTOP-3NMB5L7\pc con SID (S-1-5-21-643759068-1701702596-2655931138-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (11/14/2017 10:59:00 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3NMB5L7)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario DESKTOP-3NMB5L7\pc con SID (S-1-5-21-643759068-1701702596-2655931138-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (11/14/2017 10:47:04 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3NMB5L7)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario DESKTOP-3NMB5L7\pc con SID (S-1-5-21-643759068-1701702596-2655931138-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (11/14/2017 10:34:58 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3NMB5L7)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario DESKTOP-3NMB5L7\pc con SID (S-1-5-21-643759068-1701702596-2655931138-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (11/14/2017 09:45:37 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3NMB5L7)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario DESKTOP-3NMB5L7\pc con SID (S-1-5-21-643759068-1701702596-2655931138-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (11/14/2017 08:58:06 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-3NMB5L7)
      Description: El servidor {D63B10C5-BB46-4990-A94F-E40B9D520160} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (11/14/2017 03:39:07 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3NMB5L7)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario DESKTOP-3NMB5L7\pc con SID (S-1-5-21-643759068-1701702596-2655931138-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (11/14/2017 03:15:23 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3NMB5L7)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario DESKTOP-3NMB5L7\pc con SID (S-1-5-21-643759068-1701702596-2655931138-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (11/14/2017 02:29:36 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-3NMB5L7)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario DESKTOP-3NMB5L7\pc con SID (S-1-5-21-643759068-1701702596-2655931138-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.


      CodeIntegrity:
      ===================================
      Date: 2017-11-13 00:12:54.238
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-13 00:12:54.220
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-13 00:12:54.204
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-13 00:12:54.187
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-13 00:12:54.170
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-13 00:12:54.153
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-13 00:12:54.136
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-13 00:12:54.119
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-13 00:12:54.101
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-13 00:12:54.085
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


      ==================== Memory info ===========================

      Processor: Intel(R) Core(TM) i7-7700K CPU @ 4.20GHz
      Percentage of memory in use: 19%
      Total physical RAM: 16347.96 MB
      Available physical RAM: 13200.95 MB
      Total Virtual: 19291.96 MB
      Available Virtual: 15965.83 MB

      ==================== Drives ================================

      Drive c: () (Fixed) (Total:1862.46 GB) (Free:1079.75 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)

      Partition: GPT.

      ==================== End of Addition.txt ============================

    7. #7
      Usuario Avatar de Stomno
      Registrado
      nov 2017
      Ubicación
      Argentina
      Mensajes
      8

      Re: svchost y googleupdateservice usando 100% de mi CPU

      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-11-2017 03
      Ran by pc (administrator) on DESKTOP-3NMB5L7 (14-11-2017 11:20:08)
      Running from C:\Users\pc\Desktop
      Loaded Profiles: pc (Available Profiles: pc)
      Platform: Windows 10 Pro Version 1709 16299.19 (X64) Language: Español (México)
      Internet Explorer Version 11 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
      (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
      (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
      () C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe
      (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
      (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
      (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
      (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
      (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
      (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
      (Microsoft Corporation) C:\Windows\System32\smartscreen.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
      HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
      HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
      HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2384984 2016-12-09] (Adobe Systems Incorporated)
      HKU\S-1-5-21-643759068-1701702596-2655931138-1001\...\Run: [uTorrent] => C:\Users\pc\AppData\Roaming\uTorrent\uTorrent.exe [1985984 2017-11-03] (BitTorrent Inc.)
      HKU\S-1-5-21-643759068-1701702596-2655931138-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10021040 2017-10-18] (Piriform Ltd)
      HKU\S-1-5-21-643759068-1701702596-2655931138-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [5345672 2017-11-09] (Nota Inc.)
      HKU\S-1-5-21-643759068-1701702596-2655931138-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [5187648 2017-10-19] (GOG.com)
      GroupPolicy: Restriction <==== ATTENTION
      GroupPolicy\User: Restriction <==== ATTENTION

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Tcpip\Parameters: [DhcpNameServer] 200.49.130.40 200.42.4.204
      Tcpip\..\Interfaces\{f3bf9ed5-a36c-4cdf-a40a-bac6280ed09d}: [DhcpNameServer] 200.49.130.40 200.42.4.204

      Internet Explorer:
      ==================
      HKU\S-1-5-21-643759068-1701702596-2655931138-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
      SearchScopes: HKU\S-1-5-21-643759068-1701702596-2655931138-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL =
      BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-11-08] (Microsoft Corporation)
      BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-11-08] (Microsoft Corporation)
      BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-11-08] (Microsoft Corporation)
      BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-11-03] (Oracle Corporation)
      BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-11-08] (Microsoft Corporation)
      BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-11-03] (Oracle Corporation)
      Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
      Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
      Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)
      Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-11-08] (Microsoft Corporation)

      FireFox:
      ========
      FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-12-09] (Adobe Systems)
      FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-11-03] (Oracle Corporation)
      FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-11-03] (Oracle Corporation)
      FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-11-08] (Microsoft Corporation)
      FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-11-08] (Microsoft Corporation)
      FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation)
      FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation)
      FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
      FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
      FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
      FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-12-09] (Adobe Systems)
      FF Plugin HKU\S-1-5-21-643759068-1701702596-2655931138-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\pc\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-08] (Unity Technologies ApS)

      Chrome:
      =======
      CHR HomePage: Default -> inline.go.mail.ru
      CHR StartupUrls: Default -> "hxxp://mail.ru/cnt/10445?gp=811138"
      CHR DefaultSearchURL: Default -> hxxps://inline.go.mail.ru/search?inline_comp=dse&q={searchTerms}&fr=chxtn12.0.23
      CHR DefaultSearchKeyword: Default -> inline.go.mail.ru
      CHR DefaultSuggestURL: Default -> hxxp://suggests.go.mail.ru/chrome?q={searchTerms}
      CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default [2017-11-14]
      CHR Extension: (Google Traductor) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-11-05]
      CHR Extension: (Presentaciones) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-05]
      CHR Extension: (Theme Creator) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\akpelnjfckgfiplcikojhomllgombffc [2017-11-05]
      CHR Extension: (Documentos) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-05]
      CHR Extension: (Google Drive) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-11-05]
      CHR Extension: (Adguard AdBlocker) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2017-11-06]
      CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-11-05]
      CHR Extension: (Google+) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdidnckmm [2017-11-05]
      CHR Extension: (Hojas*de*cálculo) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-05]
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-11-05]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-05]
      CHR Extension: (Gmail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-11-05]
      CHR Extension: (Chrome Media Router) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-14]
      CHR HKU\S-1-5-21-643759068-1701702596-2655931138-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [753240 2016-12-09] (Adobe Systems Incorporated)
      R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
      R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8063656 2017-10-31] (Microsoft Corporation)
      S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [536128 2017-10-19] (GOG.com)
      S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8256576 2017-10-19] (GOG.com)
      R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518264 2017-10-27] (NVIDIA Corporation)
      S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518264 2017-10-27] (NVIDIA Corporation)
      R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-10-27] (NVIDIA Corporation)
      R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460920 2017-10-27] (NVIDIA Corporation)
      S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4297920 2017-09-30] (Microsoft Corporation)
      R2 Wallpaper Engine Service; C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [345064 2017-11-04] ()
      R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
      R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R1 MpKsle39aab3b; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{24AF5DDA-9A62-452B-B5E4-81827AF1765A}\MpKsle39aab3b.sys [58120 2017-11-14] (Microsoft Corporation)
      R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f936d37e592b25aa\nvlddmkm.sys [16936048 2017-10-28] (NVIDIA Corporation)
      S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-10-27] (NVIDIA Corporation)
      R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50808 2017-10-27] (NVIDIA Corporation)
      R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57976 2017-10-27] (NVIDIA Corporation)
      R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-09-29] (Realtek )
      R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2016-10-24] ()
      S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
      R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
      R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-11-14 11:20 - 2017-11-14 11:20 - 000014624 _____ C:\Users\pc\Desktop\FRST.txt
      2017-11-14 11:16 - 2017-11-13 15:22 - 002392576 _____ (Farbar) C:\Users\pc\Desktop\FRST64.exe
      2017-11-14 09:47 - 2017-11-14 09:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
      2017-11-13 21:22 - 2017-11-13 21:48 - 000000000 ____D C:\Users\pc\AppData\Local\The Way
      2017-11-13 21:22 - 2017-11-13 21:22 - 000000000 ____D C:\Users\pc\.oracle_jre_usage
      2017-11-13 21:21 - 2017-11-13 21:21 - 000000000 ____D C:\GOG Games
      2017-11-13 16:14 - 2017-11-13 16:14 - 000000000 ____D C:\Users\pc\AppData\Roaming\.mono
      2017-11-13 16:13 - 2017-11-13 16:13 - 000000000 ____D C:\Users\pc\AppData\LocalLow\CDProjektRED
      2017-11-13 16:13 - 2017-11-13 16:13 - 000000000 ____D C:\ProgramData\CDProjekt RED
      2017-11-13 16:09 - 2017-11-13 19:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gwent [GOG.com]
      2017-11-13 15:38 - 2017-11-13 16:09 - 000000000 ____D C:\ProgramData\GOG.com
      2017-11-13 15:38 - 2017-11-13 16:08 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
      2017-11-13 15:38 - 2017-11-13 15:38 - 000000000 ____D C:\Users\pc\AppData\Local\GOG.com
      2017-11-13 15:38 - 2017-11-13 15:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
      2017-11-13 15:22 - 2017-11-14 11:20 - 000000000 ____D C:\FRST
      2017-11-13 13:32 - 2017-11-13 13:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Composite Editor
      2017-11-13 13:32 - 2017-11-13 13:32 - 000000000 ____D C:\Program Files\Microsoft Research
      2017-11-13 13:25 - 2017-11-13 13:26 - 000000000 ____D C:\ProgramData\Gyazo
      2017-11-13 13:10 - 2017-11-13 13:10 - 000000000 ____D C:\WINDOWS\System32\Tasks\Apple
      2017-11-13 13:10 - 2017-11-13 13:10 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
      2017-11-12 21:03 - 2017-11-12 21:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam Customizer
      2017-11-12 21:03 - 2017-11-12 21:03 - 000000000 ____D C:\Program Files (x86)\Steam Customizer
      2017-11-12 21:01 - 2017-11-12 21:01 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
      2017-11-12 21:00 - 2017-11-12 21:00 - 000000000 ____D C:\Program Files\Reference Assemblies
      2017-11-12 21:00 - 2017-11-12 21:00 - 000000000 ____D C:\Program Files\MSBuild
      2017-11-12 21:00 - 2017-11-12 21:00 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
      2017-11-12 21:00 - 2017-11-12 21:00 - 000000000 ____D C:\Program Files (x86)\MSBuild
      2017-11-12 21:00 - 2017-09-22 18:19 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
      2017-11-12 21:00 - 2017-09-22 18:19 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
      2017-11-12 21:00 - 2017-09-22 18:19 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
      2017-11-12 20:59 - 2017-09-28 15:50 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
      2017-11-12 20:59 - 2017-09-28 15:50 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
      2017-11-12 20:59 - 2017-09-28 15:50 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
      2017-11-12 09:38 - 2017-11-13 23:25 - 000000000 ____D C:\Users\pc\AppData\Local\Skyrim
      2017-11-11 20:20 - 2017-11-11 20:20 - 000000000 ____D C:\Users\pc\Documents\My Mods
      2017-11-11 08:57 - 2017-11-11 08:57 - 000000000 ____D C:\Users\pc\AppData\Local\FalloutShelter
      2017-11-10 18:05 - 2017-11-10 18:05 - 000000000 ____D C:\Users\pc\AppData\Roaming\PhotoScape
      2017-11-10 18:04 - 2017-11-10 18:05 - 000000000 ____D C:\Program Files (x86)\PhotoScape
      2017-11-10 18:04 - 2017-11-10 18:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
      2017-11-10 16:50 - 2017-11-10 16:50 - 000000000 ____D C:\Users\pc\AppData\Roaming\Guitar Pro 6
      2017-11-10 16:50 - 2017-11-10 16:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guitar Pro 6
      2017-11-10 16:50 - 2017-11-10 16:50 - 000000000 ____D C:\ProgramData\Guitar Pro 6
      2017-11-10 16:48 - 2017-11-10 16:49 - 000000000 ____D C:\Program Files (x86)\Guitar Pro 6
      2017-11-09 23:58 - 2017-09-28 19:05 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
      2017-11-09 23:58 - 2017-09-28 19:05 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
      2017-11-09 23:58 - 2017-09-28 18:56 - 006347776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
      2017-11-09 23:58 - 2017-09-28 18:44 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
      2017-11-09 23:58 - 2017-09-28 18:38 - 005484032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
      2017-11-08 18:43 - 2017-11-08 18:43 - 000000000 ____D C:\ProgramData\boost_interprocess
      2017-11-08 17:45 - 2017-11-08 17:45 - 000000000 ____D C:\Users\pc\AppData\Local\PackageStaging
      2017-11-08 14:17 - 2017-11-08 14:17 - 000003786 _____ C:\WINDOWS\System32\Tasks\KMSAutoNet
      2017-11-08 14:17 - 2017-11-08 14:17 - 000000000 ____D C:\ProgramData\KMSAutoS
      2017-11-08 14:15 - 2017-11-08 14:17 - 000000000 ____D C:\Users\pc\AppData\Local\MSfree Inc
      2017-11-08 14:13 - 2017-11-08 14:13 - 000002325 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
      2017-11-08 14:10 - 2017-11-08 14:10 - 000002534 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
      2017-11-08 14:10 - 2017-11-08 14:10 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
      2017-11-08 14:10 - 2017-11-08 14:10 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
      2017-11-08 14:10 - 2017-11-08 14:10 - 000002492 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
      2017-11-08 14:10 - 2017-11-08 14:10 - 000002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
      2017-11-08 14:10 - 2017-11-08 14:10 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
      2017-11-08 14:10 - 2017-11-08 14:10 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
      2017-11-08 14:10 - 2017-11-08 14:10 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
      2017-11-08 14:10 - 2017-11-08 14:10 - 000002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
      2017-11-08 14:10 - 2017-11-08 14:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016 Tools
      2017-11-08 14:06 - 2017-11-08 16:45 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
      2017-11-08 14:06 - 2017-11-08 14:06 - 000000000 ____D C:\Program Files\Microsoft Office 15
      2017-11-08 13:51 - 2017-11-08 13:52 - 000000000 ____D C:\Users\pc\AppData\Local\paint.net
      2017-11-08 13:51 - 2017-11-08 13:51 - 000001114 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
      2017-11-08 13:51 - 2017-11-08 13:51 - 000000000 ____D C:\Program Files\paint.net
      2017-11-08 13:49 - 2017-11-08 13:49 - 000151552 _____ C:\WINDOWS\SysWOW64\nvRegDev.dll
      2017-11-08 13:49 - 2017-11-08 13:49 - 000061440 _____ C:\WINDOWS\SysWOW64\nvPhotoshopUtil.dll
      2017-11-08 13:49 - 2017-11-08 13:49 - 000040960 _____ C:\WINDOWS\SysWOW64\nvISWOW64.dll
      2017-11-08 13:37 - 2017-11-08 13:37 - 000000000 ____D C:\WINDOWS\system32\appmgmt
      2017-11-08 13:35 - 2017-11-08 13:35 - 000000000 ____D C:\Users\pc\AppData\Roaming\OpenOffice
      2017-11-08 10:11 - 2017-11-10 16:13 - 000001481 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vídeos.lnk
      2017-11-08 02:34 - 2017-11-08 17:45 - 000000000 ____D C:\Users\pc\AppData\Local\PlaceholderTileLogoFolder
      2017-11-07 22:20 - 2017-11-07 19:42 - 000000000 ____D C:\Windows.old
      2017-11-07 22:19 - 2017-11-07 22:20 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
      2017-11-07 22:18 - 2017-11-07 22:19 - 000000000 ____D C:\WINDOWS\ServiceProfiles
      2017-11-07 22:18 - 2017-11-07 22:18 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
      2017-11-07 22:17 - 2017-11-07 22:17 - 025246208 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 023664128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 021752832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 019343360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 018913792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 017080832 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 008592280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
      2017-11-07 22:17 - 2017-11-07 22:17 - 008097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 006032896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 005906264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 004744192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 003681280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 003672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 003312432 _____ C:\WINDOWS\system32\Windows.Mirage.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 002905600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 002869248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 002573208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 002474080 _____ C:\WINDOWS\SysWOW64\Windows.Mirage.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 002400664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 002106880 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 001856000 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001633744 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001587200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001554216 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001528912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001463856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001436432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001323840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001261864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001200024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
      2017-11-07 22:17 - 2017-11-07 22:17 - 001165824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 001053592 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
      2017-11-07 22:17 - 2017-11-07 22:17 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000812032 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
      2017-11-07 22:17 - 2017-11-07 22:17 - 000769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000739696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000677280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000649304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
      2017-11-07 22:17 - 2017-11-07 22:17 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000597160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000591872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000559000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000464416 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 000418712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000373656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 000353688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicRuntimes.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 000246168 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000232344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 000184984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000139672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000060824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\urscx01000.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 000045976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
      2017-11-07 22:17 - 2017-11-07 22:17 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
      2017-11-07 22:17 - 2017-11-07 22:17 - 000000000 ____D C:\WINDOWS\containers
      2017-11-07 19:45 - 2017-11-07 19:45 - 000000000 ____D C:\Users\pc\AppData\Roaming\Apple Computer
      2017-11-07 19:44 - 2017-11-07 19:44 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
      2017-11-07 19:43 - 2017-11-07 19:43 - 000000000 ___HD C:\Users\pc\MicrosoftEdgeBackups
      2017-11-07 19:42 - 2017-11-07 19:42 - 000000020 ___SH C:\Users\pc\ntuser.ini
      2017-11-07 19:42 - 2017-11-07 19:42 - 000000000 ___RD C:\Users\pc\3D Objects
      2017-11-07 19:40 - 2017-11-12 18:25 - 001899758 _____ C:\WINDOWS\system32\PerfStringBackup.INI
      2017-11-07 19:38 - 2017-11-14 09:47 - 000004212 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{59351D72-1D84-4CDB-8DDD-AB817ACC2CA4}
      2017-11-07 19:38 - 2017-11-13 23:15 - 000003554 _____

    8. #8
      Usuario Avatar de Stomno
      Registrado
      nov 2017
      Ubicación
      Argentina
      Mensajes
      8

      Re: svchost y googleupdateservice usando 100% de mi CPU

      C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
      2017-11-07 19:38 - 2017-11-13 23:15 - 000003430 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
      2017-11-07 19:38 - 2017-11-13 13:26 - 000003532 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily
      2017-11-07 19:38 - 2017-11-13 13:26 - 000003396 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
      2017-11-07 19:38 - 2017-11-12 18:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
      2017-11-07 19:38 - 2017-11-07 19:39 - 000007623 _____ C:\WINDOWS\diagwrn.xml
      2017-11-07 19:38 - 2017-11-07 19:39 - 000007623 _____ C:\WINDOWS\diagerr.xml
      2017-11-07 19:38 - 2017-11-07 19:38 - 000023028 _____ C:\WINDOWS\system32\emptyregdb.dat
      2017-11-07 19:38 - 2017-11-07 19:38 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-07 19:38 - 2017-11-07 19:38 - 000003176 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-07 19:38 - 2017-11-07 19:38 - 000003046 _____ C:\WINDOWS\System32\Tasks\update-S-1-5-21-643759068-1701702596-2655931138-1001
      2017-11-07 19:38 - 2017-11-07 19:38 - 000003020 _____ C:\WINDOWS\System32\Tasks\DiagnosticTask
      2017-11-07 19:38 - 2017-11-07 19:38 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-07 19:38 - 2017-11-07 19:38 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-07 19:38 - 2017-11-07 19:38 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-07 19:38 - 2017-11-07 19:38 - 000002886 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
      2017-11-07 19:38 - 2017-11-07 19:38 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-07 19:38 - 2017-11-07 19:38 - 000002794 _____ C:\WINDOWS\System32\Tasks\update-sys
      2017-11-07 19:38 - 2017-11-07 19:38 - 000002786 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-07 19:38 - 2017-11-07 19:38 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-07 19:38 - 2017-11-07 19:38 - 000002486 _____ C:\WINDOWS\System32\Tasks\ismnibhr
      2017-11-07 19:38 - 2017-11-07 19:38 - 000002382 _____ C:\WINDOWS\System32\Tasks\knyhj
      2017-11-07 19:38 - 2017-11-07 19:38 - 000002218 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
      2017-11-07 19:33 - 2017-11-07 19:33 - 000000000 ____D C:\ProgramData\USOShared
      2017-11-07 19:32 - 2017-11-07 19:32 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
      2017-11-07 19:26 - 2017-11-13 21:22 - 000000000 ____D C:\Users\pc
      2017-11-07 19:26 - 2017-11-13 16:24 - 000000000 ____D C:\Users\pc\AppData\Local\Packages
      2017-11-07 19:25 - 2017-11-07 19:25 - 000000000 ____D C:\Program Files (x86)\VulkanRT
      2017-11-07 19:25 - 2017-10-27 14:50 - 000532088 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
      2017-11-07 19:25 - 2017-10-27 13:06 - 000136312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
      2017-11-07 19:25 - 2017-09-29 10:41 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
      2017-11-07 19:25 - 2017-09-13 20:20 - 000798008 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
      2017-11-07 19:25 - 2017-09-13 20:20 - 000490296 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
      2017-11-07 19:25 - 2017-09-13 20:19 - 000927544 _____ C:\WINDOWS\system32\vulkan-1.dll
      2017-11-07 19:25 - 2017-09-13 20:19 - 000591160 _____ C:\WINDOWS\system32\vulkaninfo.exe
      2017-11-07 19:22 - 2017-11-12 20:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
      2017-11-07 19:22 - 2017-11-10 17:46 - 005061056 _____ C:\WINDOWS\system32\FNTCACHE.DAT
      2017-11-07 18:45 - 2017-11-13 13:10 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
      2017-11-07 18:45 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
      2017-11-07 18:45 - 2017-11-07 18:45 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Apple Computer
      2017-11-07 18:45 - 2017-11-07 18:45 - 000000000 ____D C:\Users\pc\AppData\Local\Apple
      2017-11-07 18:45 - 2017-11-07 18:45 - 000000000 ____D C:\ProgramData\Apple Computer
      2017-11-07 18:45 - 2017-11-07 18:45 - 000000000 ____D C:\ProgramData\Apple
      2017-11-07 18:45 - 2017-11-07 18:45 - 000000000 ____D C:\Program Files (x86)\QuickTime
      2017-11-07 18:30 - 2017-11-07 18:34 - 000001151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2017.lnk
      2017-11-07 18:30 - 2017-11-07 18:30 - 000000000 ____D C:\Users\Public\Documents\Adobe
      2017-11-07 18:30 - 2017-11-07 18:30 - 000000000 ____D C:\Program Files\Common Files\Adobe
      2017-11-07 18:25 - 2017-11-07 18:25 - 000000000 ____D C:\Users\pc\Documents\Adobe
      2017-11-07 17:21 - 2017-11-07 18:30 - 000000000 ____D C:\Program Files\Adobe
      2017-11-07 17:18 - 2017-11-07 18:26 - 000001226 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
      2017-11-07 17:16 - 2017-11-07 17:16 - 000000000 ____D C:\Program Files (x86)\Adobe
      2017-11-07 16:50 - 2017-11-08 09:27 - 000000000 ___DC C:\WINDOWS\Panther
      2017-11-07 16:43 - 2017-11-13 02:24 - 000000000 ____D C:\Users\pc\AppData\Roaming\vlc
      2017-11-07 16:43 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
      2017-11-07 16:43 - 2017-11-07 16:43 - 000000000 ____D C:\Program Files (x86)\VideoLAN
      2017-11-07 14:07 - 2017-11-07 19:27 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
      2017-11-07 14:07 - 2017-11-07 14:10 - 000000000 ____D C:\Users\pc\AppData\Local\Ubisoft Game Launcher
      2017-11-07 14:07 - 2017-11-07 14:07 - 000000000 ____D C:\Program Files (x86)\Ubisoft
      2017-11-07 10:33 - 2017-11-07 10:33 - 000000000 ____D C:\Users\pc\AppData\Local\ElevatedDiagnostics
      2017-11-07 09:13 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NieRAutomata
      2017-11-07 08:56 - 2017-11-11 20:20 - 000000000 ____D C:\Program Files (x86)\NieRAutomata
      2017-11-07 08:56 - 2017-11-08 09:30 - 000000000 ____D C:\Users\pc\AppData\Roaming\Nier.Automata.Day.One.Edition.Incl.DLC.Repack
      2017-11-07 08:55 - 2017-11-07 08:55 - 000000000 ___HD C:\$SysReset
      2017-11-06 23:11 - 2017-11-06 23:11 - 000000000 ____D C:\ProgramData\Reason
      2017-11-06 23:00 - 2017-11-10 13:51 - 000001144 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AdwCleaner.lnk
      2017-11-06 23:00 - 2017-11-10 13:50 - 000001144 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HijackThis.lnk
      2017-11-06 23:00 - 2017-11-06 23:00 - 000000921 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\rkill64.lnk
      2017-11-06 22:52 - 2017-11-10 13:52 - 000000000 ____D C:\AdwCleaner
      2017-11-06 17:48 - 2017-11-06 17:48 - 000000000 ____D C:\WINDOWS\pss
      2017-11-06 17:39 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\No Mans Sky
      2017-11-06 17:32 - 2017-11-06 17:32 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Temp
      2017-11-06 16:45 - 2017-11-06 16:45 - 000000000 ____D C:\Users\pc\Documents\ARC SYSTEM WORKS
      2017-11-06 13:58 - 2017-11-06 13:58 - 000000000 ____D C:\Users\pc\Documents\CPY_SAVES
      2017-11-06 13:58 - 2017-11-06 13:58 - 000000000 ____D C:\ProgramData\KONAMI
      2017-11-06 13:56 - 2017-11-06 13:56 - 000000000 ____D C:\Users\pc\Documents\KONAMI
      2017-11-06 13:06 - 2017-11-13 00:20 - 000000000 ___RD C:\Users\pc\Downloads\uTorrent
      2017-11-06 12:55 - 2017-11-06 12:55 - 000000000 ____D C:\Users\pc\Documents\FeedbackHub
      2017-11-06 11:50 - 2017-11-06 11:50 - 000000000 ____D C:\Users\pc\AppData\Local\FalloutNV
      2017-11-06 10:04 - 2017-11-06 10:04 - 000000000 ____D C:\Users\pc\Documents\WB Games
      2017-11-06 08:33 - 2017-11-10 17:35 - 000192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
      2017-11-06 08:32 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
      2017-11-06 08:32 - 2017-11-06 08:32 - 000000000 ____D C:\ProgramData\Malwarebytes
      2017-11-06 08:32 - 2017-11-06 08:32 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
      2017-11-06 08:32 - 2016-03-10 14:09 - 000065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
      2017-11-06 08:32 - 2016-03-10 14:08 - 000140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
      2017-11-06 08:32 - 2016-03-10 14:08 - 000027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
      2017-11-06 08:27 - 2017-11-06 08:27 - 000000000 ____D C:\Users\pc\AppData\Local\MegaDownloader
      2017-11-06 07:59 - 2017-11-13 18:15 - 000002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2017-11-06 06:10 - 2017-11-06 06:10 - 000000000 ____D C:\Users\pc\AppData\Roaming\Cuphead
      2017-11-05 20:56 - 2017-11-05 20:56 - 000000000 ____D C:\Users\pc\AppData\Roaming\Gyazo
      2017-11-05 20:51 - 2017-11-05 20:51 - 000000000 ____D C:\Users\pc\AppData\Roaming\HelloGames
      2017-11-05 20:50 - 2017-11-06 07:58 - 000000000 ____D C:\Users\pc\AppData\Local\MicrosoftEdge
      2017-11-05 20:35 - 2017-11-13 13:26 - 000000000 ____D C:\Program Files (x86)\Gyazo
      2017-11-05 20:35 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
      2017-11-05 20:32 - 2017-11-05 22:06 - 000000000 ____D C:\Program Files\SE7EN
      2017-11-05 20:31 - 2017-11-05 20:42 - 000000414 _____ C:\WINDOWS\Tasks\update-sys.job
      2017-11-05 20:31 - 2017-11-05 20:42 - 000000414 _____ C:\WINDOWS\Tasks\update-S-1-5-21-643759068-1701702596-2655931138-1001.job
      2017-11-05 20:31 - 2017-11-05 20:34 - 000000059 _____ C:\Users\pc\AppData\Local\UserProducts.xml
      2017-11-05 20:31 - 2017-11-05 20:34 - 000000000 ____D C:\Program Files (x86)\Skillbrains
      2017-11-05 20:28 - 2017-11-05 20:28 - 000000000 _____ C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
      2017-11-05 19:06 - 2017-11-05 19:06 - 000000000 ____D C:\Users\pc\Documents\Rockstar Games
      2017-11-05 19:06 - 2017-11-05 19:06 - 000000000 ____D C:\Users\pc\AppData\Local\Rockstar Games
      2017-11-05 19:05 - 2017-11-05 19:05 - 000000000 ____D C:\Program Files\Rockstar Games
      2017-11-05 19:05 - 2017-11-05 19:05 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
      2017-11-05 17:00 - 2017-11-05 17:00 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Unity
      2017-11-05 17:00 - 2017-11-05 17:00 - 000000000 ____D C:\Users\pc\AppData\Local\Unity
      2017-11-05 17:00 - 2017-11-05 17:00 - 000000000 ____D C:\Program Files\WinRAR
      2017-11-05 16:49 - 2017-11-05 16:49 - 000000339 _____ C:\Users\pc\AppData\Local\vznftpaxmypq.bat
      2017-11-05 16:49 - 2017-11-05 16:49 - 000000339 _____ C:\Users\pc\AppData\Local\cxndhwy.bat
      2017-11-05 16:49 - 2017-11-05 16:49 - 000000068 _____ C:\Users\pc\AppData\Local\evcnjgxfkbu.bat
      2017-11-05 16:49 - 2017-11-05 16:49 - 000000063 _____ C:\Users\pc\AppData\Local\bufdurjtx.bat
      2017-11-05 16:49 - 2017-03-18 17:58 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\2110323.exe
      2017-11-05 16:35 - 2017-11-05 16:35 - 000000000 ____D C:\ProgramData\Elder Scrolls Online
      2017-11-05 09:29 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      2017-11-05 09:29 - 2017-11-05 09:29 - 000000000 ____D C:\Program Files\CCleaner
      2017-11-05 08:35 - 2017-11-07 19:33 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls Online
      2017-11-05 08:35 - 2017-11-05 08:35 - 000000000 ____D C:\WINDOWS\jre
      2017-11-05 08:34 - 2017-11-05 08:35 - 000000000 ___HD C:\Program Files (x86)\Zero G Registry
      2017-11-05 08:22 - 2017-11-05 08:22 - 000000000 ___HD C:\Users\pc\InstallAnywhere
      2017-11-04 22:15 - 2017-11-04 22:15 - 000001241 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\A guy who knows a guy who knows Geralt.lnk
      2017-11-04 19:21 - 2017-11-04 19:21 - 000000000 ____D C:\Users\pc\AppData\Roaming\WinRAR
      2017-11-04 19:19 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
      2017-11-04 19:19 - 2017-11-07 19:33 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
      2017-11-04 18:53 - 2017-11-12 23:18 - 000000000 ___RD C:\Users\pc\Downloads\Juegos
      2017-11-04 17:18 - 2017-11-07 19:33 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\F4SE
      2017-11-04 13:00 - 2017-11-04 13:00 - 000000000 ____D C:\Users\pc\ansel
      2017-11-04 11:41 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
      2017-11-04 11:41 - 2017-11-04 11:41 - 000000000 ____D C:\Users\pc\AppData\Roaming\Notepad++
      2017-11-04 11:41 - 2017-11-04 11:41 - 000000000 ____D C:\Users\pc\AppData\Local\Notepad++
      2017-11-04 11:41 - 2017-11-04 11:41 - 000000000 ____D C:\Program Files (x86)\Notepad++
      2017-11-04 11:26 - 2017-11-06 17:36 - 000000000 ____D C:\Games
      2017-11-04 11:24 - 2017-11-14 01:07 - 000000000 ____D C:\Users\pc\Documents\Nexus Mod Manager
      2017-11-04 11:24 - 2017-11-04 17:11 - 000000000 ____D C:\Users\pc\Documents\Fallout 4 Voces inglés
      2017-11-04 11:24 - 2017-11-04 11:24 - 000000000 ____D C:\Users\pc\AppData\Local\Black_Tree_Gaming
      2017-11-04 09:14 - 2017-11-08 18:21 - 000000132 _____ C:\Users\pc\AppData\Roaming\Prefs. de formato PNG de Adobe CC
      2017-11-04 08:52 - 2017-11-04 08:52 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Adobe
      2017-11-04 08:51 - 2017-11-07 19:44 - 000000000 ____D C:\Users\pc\AppData\Local\Adobe
      2017-11-04 08:50 - 2017-11-08 02:14 - 000001142 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Photoshop.lnk
      2017-11-04 08:50 - 2017-11-07 19:45 - 000000000 ____D C:\ProgramData\Adobe
      2017-11-04 08:46 - 2017-11-13 23:01 - 000000000 ___RD C:\Users\pc\Downloads\Programas
      2017-11-04 08:07 - 2017-11-04 08:07 - 000000000 ____D C:\Users\pc\AppData\Roaming\NVIDIA
      2017-11-04 07:35 - 2017-10-27 14:50 - 001615472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
      2017-11-04 07:35 - 2017-10-27 14:50 - 000225208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
      2017-11-04 07:35 - 2017-10-27 14:50 - 000057976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
      2017-11-04 07:35 - 2017-10-27 14:50 - 000045496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
      2017-11-04 07:03 - 2017-11-04 11:25 - 000000000 ____D C:\Users\pc\AppData\Local\Fallout4
      2017-11-04 07:03 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
      2017-11-04 07:03 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
      2017-11-04 07:03 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
      2017-11-04 07:03 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
      2017-11-04 07:03 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
      2017-11-04 07:03 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
      2017-11-04 01:08 - 2017-11-04 01:08 - 000000000 ____D C:\Users\pc\AppData\Local\PeerDistRepub
      2017-11-04 00:18 - 2017-11-12 09:38 - 000000000 ____D C:\Program Files\Nexus Mod Manager
      2017-11-04 00:18 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
      2017-11-04 00:07 - 2017-11-04 22:18 - 000002743 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Una cosita llamada co inspect.lnk
      2017-11-03 23:57 - 2017-11-05 17:45 - 000000000 ___RD C:\Users\pc\Downloads\Peliculas - Series
      2017-11-03 23:49 - 2017-11-13 17:50 - 000000000 ___RD C:\Users\pc\Downloads\Imágenes
      2017-11-03 23:49 - 2017-11-04 00:04 - 000000000 ____D C:\Users\pc\Documents\EFECTOS DE VIDEOS
      2017-11-03 23:38 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
      2017-11-03 23:37 - 2017-11-03 23:38 - 000000000 ____D C:\Program Files (x86)\obs-studio
      2017-11-03 23:14 - 2017-11-11 01:48 - 000000000 ____D C:\Users\pc\Documents\Mount&Blade Warband
      2017-11-03 23:14 - 2017-11-06 21:28 - 000000000 ____D C:\Users\pc\AppData\Roaming\Mount&Blade Warband
      2017-11-03 22:57 - 2010-06-02 07:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
      2017-11-03 22:57 - 2010-06-02 07:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
      2017-11-03 22:57 - 2010-06-02 07:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
      2017-11-03 22:57 - 2010-06-02 07:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
      2017-11-03 22:57 - 2010-06-02 07:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
      2017-11-03 22:57 - 2010-06-02 07:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
      2017-11-03 22:57 - 2010-05-26 14:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
      2017-11-03 22:57 - 2010-05-26 14:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
      2017-11-03 22:57 - 2010-05-26 14:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
      2017-11-03 22:57 - 2010-05-26 14:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
      2017-11-03 22:57 - 2010-02-04 13:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
      2017-11-03 22:57 - 2010-02-04 13:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
      2017-11-03 22:57 - 2010-02-04 13:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
      2017-11-03 22:57 - 2010-02-04 13:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
      2017-11-03 22:57 - 2010-02-04 13:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
      2017-11-03 22:57 - 2010-02-04 13:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
      2017-11-03 22:57 - 2010-02-04 13:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
      2017-11-03 22:57 - 2010-02-04 13:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
      2017-11-03 22:57 - 2009-09-04 20:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
      2017-11-03 22:57 - 2009-09-04 20:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
      2017-11-03 22:57 - 2009-09-04 20:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
      2017-11-03 22:57 - 2009-09-04 20:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
      2017-11-03 22:57 - 2009-09-04 20:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
      2017-11-03 22:57 - 2009-09-04 20:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
      2017-11-03 22:57 - 2009-09-04 20:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
      2017-11-03 22:57 - 2009-09-04 20:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
      2017-11-03 22:57 - 2009-09-04 20:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
      2017-11-03 22:57 - 2009-09-04 20:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
      2017-11-03 22:57 - 2009-09-04 20:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
      2017-11-03 22:57 - 2009-09-04 20:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
      2017-11-03 22:57 - 2009-09-04 20:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
      2017-11-03 22:57 - 2009-09-04 20:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
      2017-11-03 22:57 - 2009-09-04 20:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
      2017-11-03 22:57 - 2009-09-04 20:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
      2017-11-03 22:57 - 2009-03-16 17:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
      2017-11-03 22:57 - 2009-03-16 17:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
      2017-11-03 22:57 - 2009-03-16 17:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
      2017-11-03 22:57 - 2009-03-16 17:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
      2017-11-03 22:57 - 2009-03-16 17:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
      2017-11-03 22:57 - 2009-03-16 17:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
      2017-11-03 22:57 - 2009-03-09 18:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
      2017-11-03 22:57 - 2009-03-09 18:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
      2017-11-03 22:57 - 2009-03-09 18:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
      2017-11-03 22:57 - 2009-03-09 18:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
      2017-11-03 22:57 - 2009-03-09 18:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
      2017-11-03 22:57 - 2009-03-09 18:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
      2017-11-03 22:57 - 2008-10-27 13:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
      2017-11-03 22:57 - 2008-10-27 13:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
      2017-11-03 22:57 - 2008-10-27 13:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
      2017-11-03 22:57 - 2008-10-27 13:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
      2017-11-03 22:57 - 2008-10-27 13:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
      2017-11-03 22:57 - 2008-10-27 13:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
      2017-11-03 22:57 - 2008-10-27 13:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
      2017-11-03 22:57 - 2008-10-27 13:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
      2017-11-03 22:57 - 2008-07-31 13:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
      2017-11-03 22:57 - 2008-07-31 13:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
      2017-11-03 22:57 - 2008-07-31 13:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
      2017-11-03 22:57 - 2008-07-31 13:41 - 000068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
      2017-11-03 22:57 - 2008-07-31 13:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
      2017-11-03 22:57 - 2008-07-31 13:40 - 000509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
      2017-11-03 22:57 - 2008-07-10 14:01 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
      2017-11-03 22:57 - 2008-07-10 14:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
      2017-11-03 22:57 - 2008-07-10 14:00 - 003851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
      2017-11-03 22:57 - 2008-07-10 14:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
      2017-11-03 22:57 - 2008-07-10 14:00 - 001493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
      2017-11-03 22:57 - 2008-07-10 14:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
      2017-11-03 22:57 - 2008-05-30 17:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
      2017-11-03 22:57 - 2008-05-30 17:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
      2017-11-03 22:57 - 2008-05-30 17:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
      2017-11-03 22:57 - 2008-05-30 17:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
      2017-11-03 22:57 - 2008-05-30 17:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
      2017-11-03 22:57 - 2008-05-30 17:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
      2017-11-03 22:57 - 2008-05-30 17:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
      2017-11-03 22:57 - 2008-05-30 17:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
      2017-11-03 22:57 - 2008-05-30 17:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
      2017-11-03 22:57 - 2008-05-30 17:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
      2017-11-03 22:57 - 2008-05-30 17:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
      2017-11-03 22:57 - 2008-05-30 17:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
      2017-11-03 22:57 - 2008-05-30 17:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
      2017-11-03 22:57 - 2008-05-30 17:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
      2017-11-03 22:57 - 2008-03-05 19:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
      2017-11-03 22:57 - 2008-03-05 19:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
      2017-11-03 22:57 - 2008-03-05 19:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
      2017-11-03 22:57 - 2008-03-05 19:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
      2017-11-03 22:57 - 2008-03-05 19:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
      2017-11-03 22:57 - 2008-03-05 19:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
      2017-11-03 22:57 - 2008-03-05 18:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
      2017-11-03 22:57 - 2008-03-05 18:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
      2017-11-03 22:57 - 2008-03-05 18:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
      2017-11-03 22:57 - 2008-03-05 18:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
      2017-11-03 22:57 - 2008-02-06 02:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
      2017-11-03 22:57 - 2008-02-06 02:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
      2017-11-03 22:57 - 2007-10-22 06:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
      2017-11-03 22:57 - 2007-10-22 06:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
      2017-11-03 22:57 - 2007-10-22 06:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
      2017-11-03 22:57 - 2007-10-22 06:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
      2017-11-03 22:57 - 2007-10-12 18:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
      2017-11-03 22:57 - 2007-10-12 18:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
      2017-11-03 22:57 - 2007-10-12 18:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
      2017-11-03 22:57 - 2007-10-12 18:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
      2017-11-03 22:57 - 2007-10-02 12:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
      2017-11-03 22:57 - 2007-10-02 12:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
      2017-11-03 22:57 - 2007-07-20 03:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
      2017-11-03 22:57 - 2007-07-20 03:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
      2017-11-03 22:57 - 2007-07-19 21:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
      2017-11-03 22:57 - 2007-07-19 21:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
      2017-11-03 22:57 - 2007-07-19 21:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
      2017-11-03 22:57 - 2007-07-19 21:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
      2017-11-03 22:57 - 2007-07-19 21:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
      2017-11-03 22:57 - 2007-07-19 21:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
      2017-11-03 22:57 - 2007-06-20 23:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
      2017-11-03 22:57 - 2007-06-20 23:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
      2017-11-03 22:57 - 2007-05-16 19:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
      2017-11-03 22:57 - 2007-05-16 19:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
      2017-11-03 22:57 - 2007-05-16 19:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
      2017-11-03 22:57 - 2007-05-16 19:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
      2017-11-03 22:57 - 2007-05-16 19:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
      2017-11-03 22:57 - 2007-05-16 19:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
      2017-11-03 22:57 - 2007-04-04 21:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
      2017-11-03 22:57 - 2007-04-04 21:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
      2017-11-03 22:57 - 2007-04-04 21:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
      2017-11-03 22:57 - 2007-04-04 21:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
      2017-11-03 22:57 - 2007-03-15 19:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
      2017-11-03 22:57 - 2007-03-15 19:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
      2017-11-03 22:57 - 2007-03-12 19:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
      2017-11-03 22:57 - 2007-03-12 19:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
      2017-11-03 22:57 - 2007-03-12 19:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
      2017-11-03 22:57 - 2007-03-12 19:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
      2017-11-03 22:57 - 2007-01-24 18:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
      2017-11-03 22:57 - 2007-01-24 18:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
      2017-11-03 22:57 - 2006-12-08 15:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
      2017-11-03 22:57 - 2006-12-08 15:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
      2017-11-03 22:57 - 2006-11-29 16:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
      2017-11-03 22:57 - 2006-11-29 16:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
      2017-11-03 22:57 - 2006-11-29 16:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
      2017-11-03 22:57 - 2006-11-29 16:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
      2017-11-03 22:56 - 2007-03-05 15:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
      2017-11-03 22:56 - 2007-03-05 15:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
      2017-11-03 22:56 - 2006-09-28 19:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
      2017-11-03 22:56 - 2006-09-28 19:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
      2017-11-03 22:56 - 2006-09-28 19:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
      2017-11-03 22:56 - 2006-09-28 19:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
      2017-11-03 22:56 - 2006-07-28 12:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
      2017-11-03 22:56 - 2006-07-28 12:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
      2017-11-03 22:56 - 2006-07-28 12:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
      2017-11-03 22:56 - 2006-07-28 12:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
      2017-11-03 22:56 - 2006-05-31 10:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
      2017-11-03 22:56 - 2006-05-31 10:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
      2017-11-03 22:56 - 2006-03-31 15:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
      2017-11-03 22:56 - 2006-03-31 15:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
      2017-11-03 22:56 - 2006-03-31 15:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
      2017-11-03 22:56 - 2006-03-31 15:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
      2017-11-03 22:56 - 2006-03-31 15:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
      2017-11-03 22:56 - 2006-03-31 15:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
      2017-11-03 22:56 - 2006-02-03 11:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
      2017-11-03 22:56 - 2006-02-03 11:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
      2017-11-03 22:56 - 2006-02-03 11:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
      2017-11-03 22:56 - 2006-02-03 11:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
      2017-11-03 22:56 - 2006-02-03 11:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
      2017-11-03 22:56 - 2006-02-03 11:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
      2017-11-03 22:56 - 2005-12-05 21:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
      2017-11-03 22:56 - 2005-12-05 21:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
      2017-11-03 22:56 - 2005-07-22 22:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
      2017-11-03 22:56 - 2005-07-22 22:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
      2017-11-03 22:56 - 2005-05-26 18:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
      2017-11-03 22:56 - 2005-05-26 18:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
      2017-11-03 22:56 - 2005-03-18 20:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
      2017-11-03 22:56 - 2005-03-18 20:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
      2017-11-03 22:56 - 2005-02-05 22:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
      2017-11-03 22:56 - 2005-02-05 22:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
      2017-11-03 22:53 - 2017-11-07 19:33 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
      2017-11-03 22:53 - 2017-11-05 20:40 - 000000000 ___HD C:\WINDOWS\msdownld.tmp
      2017-11-03 22:52 - 2017-11-14 03:10 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
      2017-11-03 22:52 - 2017-11-07 19:33 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
      2017-11-03 22:51 - 2017-11-14 03:10 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
      2017-11-03 22:48 - 2017-11-12 20:45 - 000000000 ____D C:\Users\pc\AppData\Roaming\uTorrent
      2017-11-03 22:48 - 2017-11-07 08:57 - 000000873 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
      2017-11-03 22:41 - 2017-11-03 22:41 - 007649280 _____ C:\Program Files (x86)\GUT54D8.tmp
      2017-11-03 22:41 - 2017-11-03 22:41 - 000000000 ____D C:\Program Files (x86)\GUM54D7.tmp
      2017-11-03 22:10 - 2017-11-04 13:09 - 000000000 ____D C:\Users\pc\Documents\The Witcher 3
      2017-11-03 22:10 - 2017-11-03 22:10 - 000000000 ____D C:\Users\pc\Documents\Witcher 2
      2017-11-03 22:10 - 2017-11-03 22:10 - 000000000 ____D C:\Users\pc\Documents\The Witcher
      2017-11-03 22:10 - 2017-11-03 22:10 - 000000000 ____D C:\Users\pc\Documents\Stronghold Crusader
      2017-11-03 22:10 - 2017-11-03 22:10 - 000000000 ____D C:\Users\pc\Documents\Stronghold
      2017-11-03 22:10 - 2017-11-03 22:10 - 000000000 ____D C:\Users\pc\Documents\Skyrim Español
      2017-11-03 22:08 - 2017-11-03 22:10 - 000000000 ____D C:\Users\pc\Documents\Shadow of Mordor ESPAÑOL textos
      2017-11-03 22:08 - 2017-11-03 22:08 - 000000000 ____D C:\Users\pc\Documents\New Vegas Español
      2017-11-03 22:07 - 2017-11-03 22:07 - 000000000 ___RD C:\Users\pc\Documents\Nativo Limpio y Sucio
      2017-11-03 22:03 - 2017-11-07 18:45 - 000000000 ____D C:\Users\pc\AppData\Local\CrashDumps
      2017-11-03 21:56 - 2017-11-12 10:06 - 000000000 ____D C:\Users\pc\AppData\Local\NVIDIA Corporation
      2017-11-03 21:56 - 2017-11-04 08:51 - 000000000 ____D C:\Users\pc\AppData\Local\NVIDIA
      2017-11-03 21:56 - 2010-05-26 14:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
      2017-11-03 21:56 - 2010-05-26 14:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
      2017-11-03 21:56 - 2010-05-26 14:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
      2017-11-03 21:56 - 2010-05-26 14:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
      2017-11-03 21:56 - 2010-05-26 14:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
      2017-11-03 21:56 - 2010-05-26 14:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
      2017-11-03 21:53 - 2017-10-27 14:50 - 001796216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
      2017-11-03 21:53 - 2017-10-27 14:50 - 001578104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
      2017-11-03 21:53 - 2017-10-27 14:50 - 000919160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
      2017-11-03 21:52 - 2017-11-07 19:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
      2017-11-03 21:52 - 2017-10-27 14:50 - 000186488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
      2017-11-03 21:52 - 2017-10-27 14:50 - 000152696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
      2017-11-03 21:52 - 2017-10-27 14:50 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
      2017-11-03 21:51 - 2017-10-27 13:12 - 005960824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
      2017-11-03 21:51 - 2017-10-27 13:12 - 002587768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
      2017-11-03 21:51 - 2017-10-27 13:12 - 001766520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
      2017-11-03 21:51 - 2017-10-27 13:12 - 000607168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
      2017-11-03 21:51 - 2017-10-27 13:12 - 000449656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
      2017-11-03 21:51 - 2017-10-27 13:12 - 000123000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
      2017-11-03 21:51 - 2017-10-27 13:12 - 000081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
      2017-11-03 21:51 - 2017-10-25 07:33 - 007802921 _____ C:\WINDOWS\system32\nvcoproc.bin
      2017-11-03 21:50 - 2017-11-14 09:44 - 000000000 ____D C:\ProgramData\NVIDIA
      2017-11-03 21:50 - 2017-11-07 22:20 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
      2017-11-03 21:50 - 2017-10-27 13:36 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
      2017-11-03 21:46 - 2017-11-13 21:05 - 000000000 ____D C:\Users\pc\AppData\Local\Steam
      2017-11-03 21:46 - 2017-11-13 16:09 - 000000000 ____D C:\ProgramData\Package Cache
      2017-11-03 21:46 - 2017-11-03 21:46 - 000000000 ____D C:\Users\pc\AppData\Local\CEF
      2017-11-03 21:45 - 2017-10-27 14:50 - 040237688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 036239480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 035156928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 029270976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 023262280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 019037416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 013864048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 013254520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 011779328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 010882720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 004485048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 004201592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 003817584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 003614328 _____ (NVIDIA Corporation)

    9. #9
      Usuario Avatar de Stomno
      Registrado
      nov 2017
      Ubicación
      Argentina
      Mensajes
      8

      Re: svchost y googleupdateservice usando 100% de mi CPU

      C:\WINDOWS\SysWOW64\nvcuvid.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 001989056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438813.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 001673848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438813.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 001331200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 001321448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 001135464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 001099712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 001044848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 001038680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 001031104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 000981112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 000932288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 000885680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 000794392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 000739448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 000634224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 000618928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 000615544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 000598464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 000505976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
      2017-11-03 21:45 - 2017-10-27 14:50 - 000050808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
      2017-11-03 21:45 - 2017-10-27 14:50 - 000048442 _____ C:\WINDOWS\system32\nvinfo.pb
      2017-11-03 21:45 - 2017-10-27 14:50 - 000000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
      2017-11-03 21:45 - 2017-10-27 14:50 - 000000669 _____ C:\WINDOWS\system32\nv-vk64.json
      2017-11-03 21:35 - 2017-11-14 10:48 - 000000000 ____D C:\Program Files (x86)\Steam
      2017-11-03 21:35 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
      2017-11-03 21:34 - 2017-11-07 19:27 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
      2017-11-03 21:34 - 2017-11-07 01:16 - 000000000 ____D C:\Users\pc\AppData\Roaming\discord
      2017-11-03 21:34 - 2017-11-03 21:34 - 000000000 ____D C:\Users\pc\AppData\Local\SquirrelTemp
      2017-11-03 21:34 - 2017-11-03 21:34 - 000000000 ____D C:\Users\pc\AppData\Local\Discord
      2017-11-03 21:32 - 2017-11-07 19:24 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
      2017-11-03 21:32 - 2017-11-03 21:32 - 000001047 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Características opcionales.lnk
      2017-11-03 21:31 - 2017-11-07 19:24 - 000000000 ____D C:\Program Files\NVIDIA Corporation
      2017-11-03 21:28 - 2017-11-03 21:28 - 000000279 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Papelera de reciclaje.lnk
      2017-11-03 21:26 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
      2017-11-03 21:26 - 2017-11-03 21:26 - 000097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
      2017-11-03 21:26 - 2017-11-03 21:26 - 000000000 ____D C:\Program Files (x86)\Java
      2017-11-03 21:07 - 2017-11-03 21:12 - 000000000 ____D C:\WINDOWS\system32\MRT
      2017-11-03 21:06 - 2017-11-03 21:06 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
      2017-11-03 21:06 - 2017-11-03 21:06 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
      2017-11-03 20:50 - 2017-11-14 02:14 - 000000000 ___RD C:\Users\pc\Google Drive
      2017-11-03 20:47 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
      2017-11-03 20:42 - 2017-11-03 20:42 - 000000000 ____D C:\Users\pc\AppData\Roaming\Sun
      2017-11-03 20:42 - 2017-11-03 20:42 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Sun
      2017-11-03 20:41 - 2017-11-03 21:29 - 000000000 ____D C:\ProgramData\Oracle
      2017-11-03 20:41 - 2017-11-03 20:14 - 000544424 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
      2017-11-03 20:15 - 2017-11-03 20:15 - 000000000 ____D C:\Users\pc\AppData\Roaming\Google
      2017-11-03 20:11 - 2017-11-07 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
      2017-11-03 20:11 - 2017-11-03 20:11 - 000000000 ____D C:\Program Files\Speccy
      2017-11-03 20:09 - 2017-11-10 16:12 - 000000000 ____D C:\Users\pc\AppData\Local\Google
      2017-11-03 20:09 - 2017-11-06 07:59 - 000000000 ____D C:\Program Files (x86)\Google
      2017-11-02 02:02 - 2017-11-08 14:13 - 000000000 ___RD C:\Users\pc\OneDrive
      2017-11-02 02:00 - 2017-11-10 16:52 - 000000000 ____D C:\Users\pc\AppData\Local\VirtualStore
      2017-11-02 02:00 - 2017-11-08 14:08 - 000000000 ____D C:\Users\pc\AppData\Local\ConnectedDevicesPlatform
      2017-11-02 02:00 - 2017-11-07 19:46 - 000000000 ____D C:\Users\pc\AppData\Roaming\Adobe
      2017-11-02 02:00 - 2017-11-07 19:42 - 000000000 __RHD C:\Users\Public\AccountPictures
      2017-11-02 02:00 - 2017-11-07 19:42 - 000000000 ____D C:\Users\pc\AppData\Local\TileDataLayer
      2017-11-02 02:00 - 2017-11-03 22:33 - 000000000 ____D C:\Users\pc\AppData\Local\Publishers
      2017-11-02 01:59 - 2017-11-02 01:59 - 000000000 ____D C:\WINDOWS\CSC
      2017-11-02 01:53 - 2017-11-02 01:53 - 000000000 _____ C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
      2017-11-01 13:32 - 2017-11-01 13:32 - 000000000 ____D C:\Users\pc\AppData\Local\DBG
      2017-11-01 12:16 - 2017-11-03 20:22 - 000000000 ____D C:\Users\pc\AppData\Local\Comms
      2017-11-01 11:55 - 2017-11-07 09:15 - 000000000 ____D C:\Users\pc\Documents\My Games
      2017-11-01 11:52 - 2017-11-03 21:52 - 000000000 ____D C:\Users\pc\Documents\Mount&Blade Warband Savegames
      2017-11-01 11:51 - 2017-11-03 21:51 - 000000000 ____D C:\Users\pc\Documents\Elder Scrolls Online

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-11-14 11:17 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
      2017-11-14 10:46 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\rescache
      2017-11-14 09:52 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\AppReadiness
      2017-11-14 09:50 - 2017-09-29 10:46 - 000000000 ___HD C:\Program Files\WindowsApps
      2017-11-12 21:01 - 2017-09-30 11:34 - 000888228 _____ C:\WINDOWS\system32\perfh00A.dat
      2017-11-12 21:01 - 2017-09-30 11:34 - 000179982 _____ C:\WINDOWS\system32\perfc00A.dat
      2017-11-12 21:01 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
      2017-11-12 21:01 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\system32\MUI
      2017-11-12 21:01 - 2017-09-29 10:37 - 000000000 ____D C:\WINDOWS\CbsTemp
      2017-11-12 21:00 - 2017-09-29 10:44 - 000000000 ____D C:\WINDOWS\INF
      2017-11-12 10:45 - 2017-09-29 05:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
      2017-11-11 01:33 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
      2017-11-10 17:45 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
      2017-11-09 23:58 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\OCR
      2017-11-08 16:46 - 2017-09-29 10:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
      2017-11-08 14:06 - 2017-09-29 10:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
      2017-11-07 22:22 - 2017-09-29 10:46 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
      2017-11-07 22:20 - 2017-09-29 10:49 - 000000000 ____D C:\WINDOWS\Setup
      2017-11-07 22:20 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
      2017-11-07 22:20 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
      2017-11-07 22:20 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\system32\spool
      2017-11-07 22:20 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\Help
      2017-11-07 22:20 - 2017-03-18 18:03 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
      2017-11-07 22:20 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
      2017-11-07 22:19 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\appcompat
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\yo-NG
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\wo-SN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\vi-VN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\ur-PK
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\ug-CN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\tt-RU
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\tk-TM
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\ti-ET
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\te-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\ta-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\sw-KE
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\sq-AL
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\si-LK
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\rw-RW
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\quz-PE
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\prs-AF
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\pa-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\or-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\nn-NO
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\ne-NP
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\mt-MT
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\mr-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\mn-MN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\ml-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\mk-MK
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\lo-LA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\lb-LU
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\ky-KG
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\kok-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\kn-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\km-KH
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\ka-GE
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\is-IS
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\ig-NG
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\id-ID
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\hy-AM
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\gu-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\gd-GB
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\ga-IE
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\fil-PH
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\fa-IR
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\cy-GB
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\bn-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\bn-BD
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\be-BY
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\as-IN
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\am-ET
      2017-11-07 22:17 - 2017-09-30 11:35 - 000000000 ____D C:\WINDOWS\system32\af-ZA
      2017-11-07 22:17 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\system32\appraiser
      2017-11-07 19:59 - 2017-09-29 10:46 - 000000000 ___RD C:\WINDOWS\PrintDialog
      2017-11-07 19:39 - 2017-09-29 05:45 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
      2017-11-07 19:38 - 2017-09-29 10:46 - 000000000 ____D C:\WINDOWS\Registration
      2017-11-07 19:37 - 2017-09-29 10:46 - 000000000 __RHD C:\Users\Public\Libraries
      2017-11-07 19:33 - 2017-09-29 10:46 - 000000000 ____D C:\ProgramData\USOPrivate
      2017-11-07 19:28 - 2017-09-29 10:46 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
      2017-11-07 19:25 - 2017-09-29 05:45 - 000000000 ____D C:\WINDOWS\system32\Sysprep
      2017-10-27 14:50 - 2017-09-30 11:36 - 000437696 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
      2017-10-26 16:54 - 2017-09-29 10:49 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
      2017-10-26 16:54 - 2017-09-29 10:49 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

      ==================== Files in the root of some directories =======

      2017-11-03 22:41 - 2017-11-03 22:41 - 007649280 _____ () C:\Program Files (x86)\GUT54D8.tmp
      2017-11-04 09:14 - 2017-11-08 18:21 - 000000132 _____ () C:\Users\pc\AppData\Roaming\Prefs. de formato PNG de Adobe CC
      2017-11-05 16:49 - 2017-11-05 16:49 - 000000063 _____ () C:\Users\pc\AppData\Local\bufdurjtx.bat
      2017-11-05 16:49 - 2017-11-05 16:49 - 000000339 _____ () C:\Users\pc\AppData\Local\cxndhwy.bat
      2017-11-05 16:49 - 2017-11-05 16:49 - 000000068 _____ () C:\Users\pc\AppData\Local\evcnjgxfkbu.bat
      2017-11-05 20:31 - 2017-11-05 20:31 - 000000003 _____ () C:\Users\pc\AppData\Local\updater.log
      2017-11-05 20:31 - 2017-11-05 20:34 - 000000059 _____ () C:\Users\pc\AppData\Local\UserProducts.xml
      2017-11-05 16:49 - 2017-11-05 16:49 - 000000339 _____ () C:\Users\pc\AppData\Local\vznftpaxmypq.bat

      Some files in TEMP:
      ====================
      2017-01-22 13:19 - 2017-01-22 13:19 - 002959376 _____ (Microsoft Corporation) C:\Users\pc\AppData\Local\Temp\dotNetFx35setup.exe
      2017-11-13 20:39 - 2017-11-13 20:39 - 000392392 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_122706541.exe
      2017-11-11 16:23 - 2017-11-11 16:23 - 000392376 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_2039128400.exe
      2017-11-12 03:47 - 2017-11-12 03:47 - 000392416 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_2306124072.exe
      2017-11-14 09:47 - 2017-11-14 09:47 - 000392400 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_239926033.exe
      2017-11-11 02:47 - 2017-11-11 02:47 - 000392368 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_2407422373.exe
      2017-11-14 08:55 - 2017-11-14 08:55 - 000392384 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_2475013945.exe
      2017-11-11 19:35 - 2017-11-11 19:35 - 000392416 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_2499422091.exe
      2017-11-11 11:23 - 2017-11-11 11:23 - 000392376 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_270622043.exe
      2017-11-11 22:47 - 2017-11-11 22:47 - 000392416 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_2982025777.exe
      2017-11-12 18:23 - 2017-11-12 18:23 - 000392368 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_3065418202.exe
      2017-11-10 21:47 - 2017-11-10 21:47 - 000392368 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_3082913330.exe
      2017-11-11 01:31 - 2017-11-11 01:31 - 000392368 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_95032568.exe

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\WINDOWS\system32\winlogon.exe => File is digitally signed
      C:\WINDOWS\system32\wininit.exe => File is digitally signed
      C:\WINDOWS\explorer.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
      C:\WINDOWS\system32\svchost.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
      C:\WINDOWS\system32\services.exe => File is digitally signed
      C:\WINDOWS\system32\User32.dll => File is digitally signed
      C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
      C:\WINDOWS\system32\userinit.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
      C:\WINDOWS\system32\rpcss.dll => File is digitally signed
      C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
      C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
      C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2017-11-07 19:22

      ==================== End of FRST.txt ============================

    10. #10
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.165

      Re: svchost y googleupdateservice usando 100% de mi CPU

      Realiza lo siguiente por favor:

      En el equipo con los demas programas cerrados:
      Inicio >>> Ejecutar >>>Escribes notepad.exe.

      Ahora copia y pega estos archivos dentro del Notepad: (Se excluye la palabra código)
      Código:
      Start
      CreateRestorePoint:
      CloseProcesses:
      
      Task: {943FB860-A77A-4E26-8C3A-FB3816B6E7B9} - System32\Tasks\ismnibhr => C:\Users\pc\AppData\Local\evcnjgxfkbu.bat [2017-11-05] () <==== ATTENTION
      C:\Users\pc\AppData\Local\evcnjgxfkbu.bat
      Task: {ED7130EA-B5E8-4F02-B4E9-FDDFDC955EDC} - System32\Tasks\knyhj => C:\Users\pc\AppData\Local\bufdurjtx.bat [2017-11-05] () <==== ATTENTION
      C:\Users\pc\AppData\Local\bufdurjtx.bat
      GroupPolicy: Restriction <==== ATTENTION
      GroupPolicy\User: Restriction <==== ATTENTION
      SearchScopes: HKU\S-1-5-21-643759068-1701702596-2655931138-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = 
      CHR StartupUrls: Default -> "hxxp://mail.ru/cnt/10445?gp=811138"
      CHR DefaultSearchURL: Default -> hxxps://inline.go.mail.ru/search?inline_comp=dse&q={searchTerms}&fr=chxtn12.0.23
      CHR DefaultSearchKeyword: Default -> inline.go.mail.ru
      CHR DefaultSuggestURL: Default -> hxxp://suggests.go.mail.ru/chrome?q={searchTerms}
      CHR HKU\S-1-5-21-643759068-1701702596-2655931138-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
      2017-11-05 16:49 - 2017-11-05 16:49 - 000000339 _____ C:\Users\pc\AppData\Local\vznftpaxmypq.bat
      2017-11-05 16:49 - 2017-11-05 16:49 - 000000339 _____ C:\Users\pc\AppData\Local\cxndhwy.bat
      2017-11-05 16:49 - 2017-11-05 16:49 - 000000068 _____ C:\Users\pc\AppData\Local\evcnjgxfkbu.bat
      2017-11-05 16:49 - 2017-11-05 16:49 - 000000063 _____ C:\Users\pc\AppData\Local\bufdurjtx.bat
      2017-11-03 22:41 - 2017-11-03 22:41 - 007649280 _____ () C:\Program Files (x86)\GUT54D8.tmp
      2017-01-22 13:19 - 2017-01-22 13:19 - 002959376 _____ (Microsoft Corporation) C:\Users\pc\AppData\Local\Temp\dotNetFx35setup.exe
      2017-11-13 20:39 - 2017-11-13 20:39 - 000392392 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_122706541.exe
      2017-11-11 16:23 - 2017-11-11 16:23 - 000392376 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_2039128400.exe
      2017-11-12 03:47 - 2017-11-12 03:47 - 000392416 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_2306124072.exe
      2017-11-14 09:47 - 2017-11-14 09:47 - 000392400 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_239926033.exe
      2017-11-11 02:47 - 2017-11-11 02:47 - 000392368 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_2407422373.exe
      2017-11-14 08:55 - 2017-11-14 08:55 - 000392384 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_2475013945.exe
      2017-11-11 19:35 - 2017-11-11 19:35 - 000392416 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_2499422091.exe
      2017-11-11 11:23 - 2017-11-11 11:23 - 000392376 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_270622043.exe
      2017-11-11 22:47 - 2017-11-11 22:47 - 000392416 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_2982025777.exe
      2017-11-12 18:23 - 2017-11-12 18:23 - 000392368 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_3065418202.exe
      2017-11-10 21:47 - 2017-11-10 21:47 - 000392368 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_3082913330.exe
      2017-11-11 01:31 - 2017-11-11 01:31 - 000392368 _____ ( ) C:\Users\pc\AppData\Local\Temp\GoogleUpdate_95032568.exe
      
      HOSTS:
      REMOVEPROXY:
      EMPTYTEMP:
      CMD: netsh winsock reset
      CMD: ipconfig /renew
      CMD: ipconfig /flushdns
      CMD: bitsadmin /reset /allusers
      END
      Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

      Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.
      Ejecutas Frst.exe.

      Presionas el botón Fix y aguardas a que termine.
      La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
      ATENCION!!!! El siguiente Script de reparación fue hecho específicamente por un miembro del staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar daños a su equipo
      Lo pegas en tu próxima respuesta, comentado como va el problema
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 1 de 2 12 ÚltimoÚltimo