• Registrarse
  • Iniciar sesión


  • Resultados 1 al 8 de 8

    Se borraron de varias carpetas muchos archivos

    Tenia en la carpeta descargas juegos programas y documentos que desaparecieron de un momento a otro, restaure a un punto anterior y solo logre recuperar muy pocos...

    1. #1
      Usuario Avatar de AndresLopez13
      Registrado
      nov 2017
      Ubicación
      Colombia
      Mensajes
      6

      Se borraron de varias carpetas muchos archivos

      Tenia en la carpeta descargas juegos programas y documentos que desaparecieron de un momento a otro, restaure a un punto anterior y solo logre recuperar muy pocos

    2. #2
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.526
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de AndresLopez13
      Registrado
      nov 2017
      Ubicación
      Colombia
      Mensajes
      6

      Re: Se borraron de varias carpetas muchos archivos

      Hola, Hice el análisis profundo pero la mayor parte o lo que en realidad importa dice "irrecuperable", igual si lo recupero no funciona ninguno

    4. #4
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.526

      Re: Se borraron de varias carpetas muchos archivos

      No, si pone irrecuperable es que no estan en condiciones


      Veamos que tienes por ahi


      1-Descarga Farbar Recovery Scan Tool By Farbar (Descarga el archivo dependiendo de la arquitectura de tu sistema).>> Como saber si mi sistema es de 32 o de 64 Bits

      • La guardas en el escritorio >> Esto es muy importante..
      • Con todos los programas /ventanas cerrados, doble clic para ejecutar Frst.exe.
      • En la ventana del Disclaimer, presiona Yes.
      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.

      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.

      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta. Utiliza dos mensajes si te dice que es muy largo.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de AndresLopez13
      Registrado
      nov 2017
      Ubicación
      Colombia
      Mensajes
      6

      Re: Se borraron de varias carpetas muchos archivos

      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-11-2017 01
      Ran by Flor Lopez (administrator) on FLOR (27-11-2017 0705)
      Running from C:\Users\User\Desktop
      Loaded Profiles: Flor Lopez (Available Profiles: Flor Lopez)
      Platform: Windows 8.1 Pro (Update) (X64) Language: Español (España, internacional)
      Internet Explorer Version 11 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
      (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
      (AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
      (AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
      () C:\Program Files (x86)\No-IP\ducservice.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
      (DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
      (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
      () C:\Program Files (x86)\RocketDock\RocketDock.exe
      (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
      () C:\Program Files (x86)\No-IP\DUC40.exe
      (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
      (AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
      (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      "Path" (C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common -> %SystemRoot%\System32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SystemRoot%\System32\WindowsPowerShell\v1.0\;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;%SystemRoot%\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common) <==== Repaired successfully
      HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-11-24] (AVAST Software)
      HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3350232 2017-09-20] (ELAN Microelectronics Corp.)
      HKLM-x32\...\Run: [vmware-tray.exe] => D:\VMware\vmware-tray.exe [112104 2017-05-11] (VMware, Inc.)
      HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
      Winlogon\Notify\igfxcui: C:\Windows\System32\igfxdev.dll (Intel Corporation)
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office15\lync.exe [28164272 2017-10-17] (Microsoft Corporation)
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\Run: [NoIPDUCv4] => C:\Program Files (x86)\No-IP\DUC40.exe [347648 2015-07-20] ()
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10021040 2017-10-18] (Piriform Ltd)
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11776 2014-11-20] (Microsoft Corporation)
      AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [171896 2017-10-27] (NVIDIA Corporation)
      AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [149552 2017-10-27] (NVIDIA Corporation)
      IFEO\aips.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\AntiPetya.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\asc.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
      IFEO\AUpdate.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\AutoUpdate.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\bdpatchdownload.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\BigUpgrade_IU.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\BlueBirdInit.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\BrowserCleaner.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\BrowserProtect.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\Dashlane_Launcher.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\DSPut.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\FeedBack.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IMF.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IMFAntivirusFix.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IMFAntivirusTips.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IMFAntivirusUSB.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IMFInstaller.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IMFRegister.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IMFsrv.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IMFSrvWsc.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IMFTips.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IMF_DownConfig.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\Install_PintoStartMenu.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IObitDownloader.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IObitLiveUpdate.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IObitRegister.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IUDM.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IUPluginNotice.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IUService.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IU_InstallBeforWork.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IWsIMF.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IWsIMFXP.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\IWsIMF_AV.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\LocalLang.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\maintenanceservice.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\maintenanceservice_tmp.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\netcut_windows.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\NoteIcon.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\photoshop.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
      IFEO\Poststatdata.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\Ransomware.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\Reinforce.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\ReProcess.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\rpcapd.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\ScreenShot.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\SendBugReportNew.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\skype.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
      IFEO\SPInit.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\TrialRegister.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\unins000.exe: [Debugger] C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe
      IFEO\vmnetcfg.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
      IFEO\vmplayer.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
      IFEO\vmware.exe: [Debugger] "C:\Program Files (x86)\AVAST Software\Avast Cleanup\autoreactivator.exe"
      IFEO\WinPcap_4_1_3.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      IFEO\XmasPromote.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare\AutoReactivator.exe
      Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2017-11-24]
      ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software)
      GroupPolicy: Restriction <==== ATTENTION
      CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Tcpip\Parameters: [DhcpNameServer] 190.157.8.33 190.157.8.1
      Tcpip\..\Interfaces\{55152983-0E71-4301-9274-00AE6F84DE6E}: [DhcpNameServer] 190.157.8.33 190.157.8.1
      Tcpip\..\Interfaces\{6421BE27-FAF6-4BDF-9E98-FAA17662EF1F}: [NameServer] 77.234.40.79
      Tcpip\..\Interfaces\{727091D4-1CF3-496E-87D4-1130E975A74B}: [NameServer] 8.8.8.8,8.8.4.4,192.168.0.1
      Tcpip\..\Interfaces\{727091D4-1CF3-496E-87D4-1130E975A74B}: [DhcpNameServer] 190.157.8.33 190.157.8.1

      Internet Explorer:
      ==================
      HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Google
      HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = Google
      SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
      SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
      SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
      SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
      BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2017-09-12] (Microsoft Corporation)
      BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-11-09] (Oracle Corporation)
      BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-11-24] (AVAST Software)
      BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-11-09] (Oracle Corporation)
      BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-08-24] (Microsoft Corporation)
      BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-24] (AVAST Software)
      BHO-x32: IObit Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\IObit Malware Fighter\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2017-07-10] (IObit)
      BHO-x32: IObit Ads Removal -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files (x86)\IObit\IObit Malware Fighter\Surfing Protection\Adblock\Adblock.dll [2016-12-22] (IObit)
      Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
      StartMenuInternet: IEXPLORE.EXE - iexplore.exe

      FireFox:
      ========
      FF DefaultProfile: l4nvip5j.default
      FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\l4nvip5j.default [2017-11-26]
      FF user.js: detected! => C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\l4nvip5j.default\user.js [2017-10-18]
      FF Homepage: Mozilla\Firefox\Profiles\l4nvip5j.default -> hxxps://www.google.co/
      FF Extension: (IObit Surfing Protection & Ads Removal) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\l4nvip5j.default\Extensions\ascs[email protected] [2017-09-22]
      FF Extension: (AdBlock) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\l4nvip5j.default\Extensions\[email protected] [2017-11-17]
      FF Extension: (Avast SafePrice) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\l4nvip5j.default\Extensions\[email protected] [2017-11-24]
      FF Extension: (Avast Online Security) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\l4nvip5j.default\Extensions\[email protected] [2017-11-24]
      FF Extension: (Disable Media WMF NV12 format) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\l4nvip5j.default\features\{efbc0162-dd5f-4db2-91b5-4e4ac1369202}\[email protected] [2017-11-22] [Lagacy]
      FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\ProgramData\AVG Secure Search\FireFoxExt\13.2.0.3 => not found
      FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll [2017-11-17] ()
      FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2012-10-11] (Tracker Software Products (Canada) Ltd.)
      FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-11-09] (Oracle Corporation)
      FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-11-09] (Oracle Corporation)
      FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
      FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems)
      FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-11-17] ()
      FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2012-10-11] (Tracker Software Products (Canada) Ltd.)
      FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-09-13] (Microsoft Corporation)
      FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
      FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll [2012-12-19] (Nitro PDF)
      FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
      FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-13] (Google Inc.)
      FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
      FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems)
      FF Plugin HKU\S-1-5-21-1056408878-748133402-575150202-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2012-10-11] (Tracker Software Products (Canada) Ltd.)

      Chrome:
      =======
      CHR DefaultProfile: Default
      CHR HomePage: Default -> msn.com
      CHR StartupUrls: Default -> "hxxps://www.google.com.co/"
      CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC=__PARAM__&q={searchTerms}
      CHR DefaultSearchKeyword: Default -> bing.com
      CHR DefaultSuggestURL: Default -> hxxp://www.bing.com/osjson.aspx?FORM=__PARAM__DF&PC=__PARAM__&query={searchTerms}
      CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2017-11-27]
      CHR Extension: (AdBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-11-13]
      CHR Extension: (Nissan GT-R R35 - Full HD - Axlg) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gplbkekcdpllncencamdgeiedjndnjba [2016-10-22]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-24]
      CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-18]
      CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-11-01]
      CHR HKU\S-1-5-21-1056408878-748133402-575150202-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      S3 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated)
      S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
      S4 AIPS; C:\Program Files (x86)\arcai.com\aips.exe [1833472 2017-05-19] (Arcai.com) [File not signed]
      R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7549928 2017-11-24] (AVAST Software)
      R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-11-24] (AVAST Software)
      R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [332368 2017-11-24] (AVAST Software)
      R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [4709728 2017-11-01] (AVAST Software)
      S4 DSAService; C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe [22816 2017-09-18] (Intel)
      S4 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
      S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2012-02-01] (Intel Corporation) [File not signed]
      S4 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [1768736 2017-07-18] (IObit)
      S4 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit)
      S3 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-19] (Nitro PDF Software)
      R2 NoIPDUCService4; C:\Program Files (x86)\No-IP\ducservice.exe [12288 2015-07-20] () [File not signed]
      S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-10] (NVIDIA Corporation)
      S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-10] (NVIDIA Corporation)
      S3 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-10-27] (NVIDIA Corporation)
      S3 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460736 2017-10-10] (NVIDIA Corporation)
      S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc.)
      S4 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel Driver and Support Assistant\SUR\SurSvc.exe [157456 2017-03-07] ()
      S4 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
      S4 VMAuthdService; D:\VMware\vmware-authd.exe [99816 2017-05-11] (VMware, Inc.)
      S4 VMwareHostd; D:\VMware\vmware-hostd.exe [12482024 2017-05-11] ()
      S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-04-05] (Microsoft Corporation)
      S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-04-05] (Microsoft Corporation)
      S2 AdvancedSystemCareService10; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [X]

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [183584 2017-11-24] (AVAST Software)
      R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [321032 2017-11-24] (AVAST Software s.r.o.)
      R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [198968 2017-11-24] (AVAST Software s.r.o.)
      R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343288 2017-11-24] (AVAST Software s.r.o.)
      R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57728 2017-11-24] (AVAST Software s.r.o.)
      S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [47008 2017-11-24] (AVAST Software)
      R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [148288 2017-11-24] (AVAST Software)
      R1 aswNetSec; C:\Windows\System32\drivers\aswNetSec.sys [570152 2017-11-24] (AVAST Software)
      R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110376 2017-11-24] (AVAST Software)
      R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84416 2017-11-24] (AVAST Software)
      R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1026232 2017-11-24] (AVAST Software)
      R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [455376 2017-11-24] (AVAST Software)
      R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [203976 2017-11-24] (AVAST Software)
      S3 aswTap; C:\Windows\system32\DRIVERS\aswTap.sys [53904 2017-03-18] (The OpenVPN Project)
      R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [364464 2017-11-24] (AVAST Software)
      R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [4319632 2017-10-12] (Qualcomm Atheros Communications, Inc.)
      S3 cpuz138; no ImagePath
      S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
      R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2016-10-19] (DT Soft Ltd)
      S3 GLCKIO; no ImagePath
      R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-10-24] (REALiX(tm))
      R1 IMFCameraProtect; C:\Windows\system32\drivers\IMFCameraProtect.sys [26272 2017-03-29] (IObit.com)
      S3 IMFDownProtect; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFDownProtect.sys [21360 2017-03-08] (IObit.com)
      S4 IMFFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys [22440 2017-01-06] (IObit)
      S3 IMFForceDelete; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFForceDelete.sys [16216 2017-06-30] (IObit.com)
      S1 JSWPSLWF; C:\Windows\system32\DRIVERS\jswpslwfx.sys [26624 2008-05-15] (Atheros Communications, Inc.) [File not signed]
      R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2017-09-20] ( )
      R3 ManyCam; C:\Windows\system32\DRIVERS\mcvidrv.sys [49272 2014-12-28] (Visicom Media Inc.)
      R3 mcaudrv_simple; C:\Windows\system32\drivers\mcaudrv_x64.sys [35960 2014-12-28] (Visicom Media Inc.)
      S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc.)
      S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-10] (NVIDIA Corporation)
      R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50808 2017-11-14] (NVIDIA Corporation)
      R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [57976 2017-10-27] (NVIDIA Corporation)
      S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34752 2016-12-15] (IObit.com)
      S3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [420832 2017-08-17] (Realsil Semiconductor Corporation)
      S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [12528 2017-10-28] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
      S3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
      S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
      S3 Trufos; C:\Windows\System32\DRIVERS\TRUFOS.sys [520032 2016-12-05] (BitDefender S.R.L.)
      S3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [199808 2017-10-18] (Oracle Corporation)
      S1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [210680 2017-10-18] (Oracle Corporation)
      R1 vmkbd3; C:\Windows\system32\DRIVERS\vmkbd.sys [52288 2017-05-11] (VMware, Inc.)
      R0 vsock; C:\Windows\system32\DRIVERS\vsock.sys [91712 2016-09-30] (VMware, Inc.)
      R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [38376 2017-05-05] (VMware, Inc.)
      S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-04-05] (Microsoft Corporation)
      S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-04-05] (Microsoft Corporation)
      S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-04-05] (Microsoft Corporation)
      U1 aswbdisk; no ImagePath
      S3 ewusbmbb; \SystemRoot\system32\DRIVERS\ewusbwwan.sys [X]
      S3 ew_hwusbdev; \SystemRoot\system32\DRIVERS\ew_hwusbdev.sys [X]
      S3 huawei_enumerator; \SystemRoot\System32\drivers\ew_jubusenum.sys [X]
      S3 hwdatacard; \SystemRoot\system32\DRIVERS\ewusbmdm.sys [X]

    6. #6
      Usuario Avatar de AndresLopez13
      Registrado
      nov 2017
      Ubicación
      Colombia
      Mensajes
      6

      Re: Se borraron de varias carpetas muchos archivos

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-11-27 07:10 - 2017-11-27 07:10 - 000027779 _____ C:\Users\User\Desktop\FRST.txt
      2017-11-27 06:35 - 2017-11-27 06:35 - 000002888 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Flor Lopez)
      2017-11-26 23:59 - 2017-11-26 23:59 - 000003872 _____ C:\Windows\System32\Tasks\CCleaner Update
      2017-11-26 23:35 - 2017-11-26 23:35 - 000000000 ____D C:\Users\User\AppData\Local\ESET
      2017-11-26 23:02 - 2017-11-27 07:10 - 000000000 ____D C:\FRST
      2017-11-26 23:01 - 2017-11-26 23:01 - 002391552 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
      2017-11-26 13:16 - 2017-11-26 13:16 - 000257153 _____ C:\Users\User\Desktop\Acne 2.pdf
      2017-11-26 12:58 - 2017-11-26 12:58 - 000077702 _____ C:\Users\User\Desktop\Acne.pdf
      2017-11-25 10:31 - 2017-11-25 10:31 - 000000000 ____D C:\ProgramData\SWCUTemp
      2017-11-25 09:59 - 2017-11-25 09:59 - 000422178 _____ C:\Users\User\Downloads\Dialnet-GermenesMultirresistentesPerdiendoLaBatallaAPropos-5030467.pdf
      2017-11-24 21:04 - 2017-11-24 21:04 - 000000000 ____D C:\ProgramData\SystemAcCrux
      2017-11-24 20:55 - 2017-11-24 20:55 - 000000742 _____ C:\Users\Public\Desktop\EaseUS Data Recovery Wizard.lnk
      2017-11-24 20:55 - 2017-11-24 20:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Data Recovery Wizard
      2017-11-24 20:38 - 2017-11-24 20:38 - 000000000 ____D C:\Users\User\AppData\Local\Wondershare
      2017-11-24 20:38 - 2017-11-24 20:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
      2017-11-24 20:38 - 2017-11-24 20:38 - 000000000 ____D C:\Program Files (x86)\Wondershare
      2017-11-24 20:33 - 2017-11-24 20:33 - 000000000 ____D C:\Program Files (x86)\EASEUS
      2017-11-24 20:26 - 2017-11-17 10:37 - 004168704 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
      2017-11-24 14:10 - 2017-11-25 14:22 - 000000000 ____D C:\Program Files\Recuva
      2017-11-24 14:10 - 2017-11-24 14:10 - 000001670 _____ C:\Users\Public\Desktop\Recuva.lnk
      2017-11-24 14:10 - 2017-11-24 14:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
      2017-11-24 14:00 - 2017-11-24 14:00 - 000003936 _____ C:\Windows\System32\Tasks\Avast TUNEUP Update
      2017-11-24 13:58 - 2017-11-24 13:58 - 000455376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
      2017-11-24 13:58 - 2017-11-24 13:58 - 000003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update
      2017-11-24 13:58 - 2017-11-24 13:57 - 001026232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
      2017-11-24 13:58 - 2017-11-24 13:57 - 000570152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
      2017-11-24 13:58 - 2017-11-24 13:57 - 000455384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys.151154993045303
      2017-11-24 13:58 - 2017-11-24 13:57 - 000365168 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
      2017-11-24 13:58 - 2017-11-24 13:57 - 000364464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
      2017-11-24 13:58 - 2017-11-24 13:57 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
      2017-11-24 13:58 - 2017-11-24 13:57 - 000321032 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
      2017-11-24 13:58 - 2017-11-24 13:57 - 000203976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
      2017-11-24 13:58 - 2017-11-24 13:57 - 000198968 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
      2017-11-24 13:58 - 2017-11-24 13:57 - 000183584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
      2017-11-24 13:58 - 2017-11-24 13:57 - 000148288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
      2017-11-24 13:58 - 2017-11-24 13:57 - 000110376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
      2017-11-24 13:58 - 2017-11-24 13:57 - 000084416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
      2017-11-24 13:58 - 2017-11-24 13:57 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
      2017-11-24 13:58 - 2017-11-24 13:57 - 000047008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
      2017-11-23 12:53 - 2017-11-23 13:02 - 000006144 ____H C:\Users\User\Documents\photothumb.db
      2017-11-22 19:47 - 2017-11-24 13:36 - 000000000 ____D C:\Users\User\AppData\Roaming\Collaborate
      2017-11-22 17:41 - 2017-11-23 09:23 - 000000000 ____D C:\Users\User\AppData\Roaming\Avast Tuneup
      2017-11-22 17:07 - 2017-11-22 17:07 - 000000000 ____D C:\Program Files (x86)\AVAST Software
      2017-11-21 12:39 - 2017-11-21 12:39 - 000000031 _____ C:\Users\User\Desktop\claro .txt
      2017-11-21 02:11 - 2017-11-24 13:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag
      2017-11-20 18:55 - 2017-11-21 01:29 - 000000684 _____ C:\Windows\SysWOW64\rsatest.txt
      2017-11-20 18:55 - 2017-11-21 01:29 - 000000256 _____ C:\Windows\SysWOW64\aes.txt
      2017-11-20 18:54 - 2017-11-20 18:55 - 000000000 ____D C:\Program Files (x86)\arcai.com
      2017-11-20 18:54 - 2017-11-20 18:54 - 000000123 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\netcut.url
      2017-11-20 18:54 - 2017-11-20 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
      2017-11-20 18:54 - 2017-11-20 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\netcut
      2017-11-20 18:54 - 2017-11-20 18:54 - 000000000 ____D C:\Program Files (x86)\WinPcap
      2017-11-18 11:31 - 2017-11-21 01:25 - 000004478 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
      2017-11-18 11:31 - 2017-11-18 11:31 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
      2017-11-14 22:03 - 2017-11-03 19:41 - 000835568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
      2017-11-14 22:03 - 2017-11-03 19:41 - 000177648 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
      2017-11-14 18:53 - 2017-11-14 18:53 - 000001703 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackboard Collaborate Launcher.lnk
      2017-11-14 18:08 - 2017-10-17 14:11 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
      2017-11-14 18:08 - 2017-10-16 13:38 - 002013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
      2017-11-14 18:08 - 2017-10-14 08:04 - 001548624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
      2017-11-14 18:08 - 2017-10-14 03:38 - 025731584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
      2017-11-14 18:08 - 2017-10-14 03:13 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
      2017-11-14 18:08 - 2017-10-14 03:11 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
      2017-11-14 18:08 - 2017-10-14 03:09 - 005979648 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
      2017-11-14 18:08 - 2017-10-14 03:01 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
      2017-11-14 18:08 - 2017-10-14 02:30 - 015266816 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
      2017-11-14 18:08 - 2017-10-14 02:29 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
      2017-11-14 18:08 - 2017-10-14 02:27 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
      2017-11-14 18:08 - 2017-10-14 02:21 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
      2017-11-14 18:08 - 2017-10-14 02:14 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
      2017-11-14 18:08 - 2017-10-14 02:09 - 001544704 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
      2017-11-14 18:08 - 2017-10-14 02:05 - 015431680 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
      2017-11-14 18:08 - 2017-10-14 01:53 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
      2017-11-14 18:08 - 2017-10-14 01:50 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
      2017-11-14 18:08 - 2017-10-14 01:45 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
      2017-11-14 18:08 - 2017-10-14 01:33 - 004542464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
      2017-11-14 18:08 - 2017-10-14 01:28 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
      2017-11-14 18:08 - 2017-10-14 01:24 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
      2017-11-14 18:08 - 2017-10-14 01:23 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
      2017-11-14 18:08 - 2017-10-14 01:14 - 013317632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
      2017-11-14 18:08 - 2017-10-14 01:10 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
      2017-11-14 18:08 - 2017-10-14 01:07 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
      2017-11-14 18:08 - 2017-10-10 11:36 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
      2017-11-14 18:08 - 2017-10-10 10:38 - 003631616 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
      2017-11-14 18:08 - 2017-10-10 10:38 - 000425984 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll
      2017-11-14 18:08 - 2017-10-10 10:11 - 002749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
      2017-11-14 18:08 - 2017-10-10 10:08 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll
      2017-11-14 18:07 - 2017-10-14 02:36 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
      2017-11-14 18:07 - 2017-10-14 02:31 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
      2017-11-14 18:07 - 2017-10-14 02:30 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
      2017-11-14 18:07 - 2017-10-14 02:30 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
      2017-11-14 18:07 - 2017-10-14 01:58 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
      2017-11-14 18:07 - 2017-10-14 01:28 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
      2017-11-14 18:07 - 2017-10-14 01:25 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
      2017-11-14 18:07 - 2017-10-14 01:24 - 000331776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
      2017-11-14 18:07 - 2017-10-14 01:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
      2017-11-14 17:56 - 2017-10-11 02:35 - 000143016 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
      2017-11-14 17:56 - 2017-10-10 10:21 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
      2017-11-14 17:56 - 2017-10-10 08:18 - 002023936 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
      2017-11-14 17:56 - 2017-10-10 08:18 - 001570304 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
      2017-11-14 17:56 - 2017-10-10 08:18 - 000670208 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
      2017-11-14 17:56 - 2017-10-10 08:18 - 000605184 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
      2017-11-14 17:56 - 2017-10-10 08:18 - 000603648 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
      2017-11-14 17:56 - 2017-10-10 08:18 - 000402944 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
      2017-11-14 17:56 - 2017-10-10 08:18 - 000370688 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
      2017-11-14 17:56 - 2017-10-10 08:18 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
      2017-11-14 17:56 - 2017-10-10 08:18 - 000181760 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
      2017-11-14 11:50 - 2017-11-14 11:50 - 000001714 _____ C:\Users\User\Desktop\Photoshop.lnk
      2017-11-14 11:46 - 2017-11-21 01:25 - 000003506 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-FLOR-Flor Lopez
      2017-11-14 11:46 - 2017-11-14 11:46 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
      2017-11-14 11:43 - 2017-11-14 11:43 - 000001070 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2018.lnk
      2017-11-14 11:05 - 2017-11-14 11:05 - 000000000 ___RD C:\Users\User\Creative Cloud Files
      2017-11-14 11:02 - 2017-11-14 11:02 - 000000000 ____D C:\Users\User\AppData\Roaming\PDAppFlex
      2017-11-14 10:59 - 2017-11-14 11:43 - 000000000 ____D C:\Users\User\Documents\Adobe
      2017-11-14 10:50 - 2017-11-14 11:43 - 000000000 ____D C:\Program Files\Common Files\Adobe
      2017-11-14 10:50 - 2017-11-14 10:50 - 000000000 ____D C:\Program Files\Adobe
      2017-11-14 10:46 - 2017-11-14 10:46 - 000001219 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
      2017-11-14 01:53 - 2017-11-14 01:53 - 000050808 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
      2017-11-14 01:50 - 2017-11-14 01:50 - 000986080 _____ (Realtek ) C:\Windows\system32\Drivers\Rt630x64.sys
      2017-11-14 01:50 - 2017-11-14 01:50 - 000122848 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
      2017-11-14 01:25 - 2017-11-24 21:15 - 000002834 _____ C:\Windows\System32\Tasks\ASC10_SkipUac_Flor Lopez
      2017-11-14 01:02 - 2017-11-26 12:05 - 000000000 ____D C:\Users\User\AppData\Local\ManyCam
      2017-11-14 01:02 - 2017-11-14 01:02 - 000000963 _____ C:\Users\Public\Desktop\ManyCam.lnk
      2017-11-14 01:02 - 2017-11-14 01:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam
      2017-11-14 01:01 - 2017-11-14 01:03 - 000000000 ____D C:\Program Files (x86)\ManyCam
      2017-11-14 01:01 - 2017-11-14 01:02 - 000000000 ____D C:\Users\User\AppData\Roaming\ManyCam
      2017-11-13 17:25 - 2017-11-13 17:25 - 000002426 _____ C:\Windows\system32\default_error_stack-000024-000000.txt
      2017-11-13 10:25 - 2017-11-13 10:25 - 000002426 _____ C:\Windows\system32\default_error_stack-000023-000000.txt
      2017-11-10 11:03 - 2017-11-10 11:03 - 000002426 _____ C:\Windows\system32\default_error_stack-000022-000000.txt
      2017-11-09 10:04 - 2017-11-09 10:04 - 000002426 _____ C:\Windows\system32\default_error_stack-000021-000000.txt
      2017-11-09 05:24 - 2017-11-09 05:24 - 000002426 _____ C:\Windows\system32\default_error_stack-000020-000000.txt
      2017-11-09 01:28 - 2017-11-09 01:28 - 000110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
      2017-11-08 01:07 - 2017-11-08 01:07 - 000002426 _____ C:\Windows\system32\default_error_stack-000019-000000.txt
      2017-11-08 01:03 - 2017-11-24 14:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
      2017-11-08 00:38 - 2017-11-08 00:38 - 000002426 _____ C:\Windows\system32\default_error_stack-000018-000000.txt
      2017-11-08 00:02 - 2017-11-08 00:02 - 000002426 _____ C:\Windows\system32\default_error_stack-000017-000000.txt
      2017-11-07 20:07 - 2017-11-07 20:06 - 001020536 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.151010328073407
      2017-11-07 12:30 - 2017-11-07 12:30 - 000002426 _____ C:\Windows\system32\default_error_stack-000016-000000.txt
      2017-11-07 08:08 - 2017-11-07 08:08 - 000003232 _____ C:\Windows\System32\Tasks\{D18B0DFE-3301-46F1-B003-6D0A34592ACE}
      2017-11-06 15:56 - 2017-11-06 15:56 - 000002426 _____ C:\Windows\system32\default_error_stack-000015-000000.txt
      2017-11-06 15:54 - 2017-11-24 13:38 - 000000000 ____D C:\Windows\Minidump
      2017-11-06 15:54 - 2017-11-06 15:55 - 000337624 _____ C:\Windows\Minidump\110617-143406-01.dmp
      2017-11-05 09:17 - 2017-11-05 09:17 - 000002426 _____ C:\Windows\system32\default_error_stack-000014-000000.txt
      2017-11-04 12:34 - 2017-11-04 12:34 - 000002426 _____ C:\Windows\system32\default_error_stack-000013-000000.txt
      2017-11-04 12:24 - 2017-11-04 12:24 - 000002426 _____ C:\Windows\system32\default_error_stack-000012-000000.txt
      2017-11-03 11:03 - 2017-11-03 11:03 - 000000000 ____D C:\Users\User\aTubeCatcher
      2017-11-03 00:03 - 2017-11-03 00:03 - 000002426 _____ C:\Windows\system32\default_error_stack-000011-000000.txt
      2017-11-02 23:32 - 2017-05-11 00:50 - 000366568 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
      2017-11-02 23:32 - 2017-05-11 00:43 - 000088128 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys
      2017-11-02 23:32 - 2017-05-11 00:43 - 000052288 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmkbd.sys
      2017-11-02 23:32 - 2016-09-30 01:12 - 000091712 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys
      2017-11-02 23:32 - 2016-09-30 01:12 - 000069104 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
      2017-11-02 23:32 - 2016-09-30 01:12 - 000065016 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
      2017-11-02 23:31 - 2017-11-02 23:31 - 000000604 _____ C:\Users\Public\Desktop\VMware Workstation Pro.lnk
      2017-11-02 23:31 - 2017-11-02 23:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
      2017-11-02 23:31 - 2017-05-11 00:49 - 001149416 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll
      2017-11-02 23:31 - 2017-05-11 00:49 - 000400872 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
      2017-11-02 23:31 - 2017-05-11 00:29 - 000066520 _____ (VMware, Inc.) C:\Windows\system32\vnetinst.dll
      2017-11-02 23:31 - 2017-05-11 00:29 - 000046032 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnet.sys
      2017-11-02 23:31 - 2017-05-11 00:29 - 000043992 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys
      2017-11-02 23:30 - 2017-11-02 23:30 - 000000000 ____D C:\Users\Public\Documents\Shared Virtual Machines
      2017-11-02 23:30 - 2017-11-02 23:30 - 000000000 ____D C:\Program Files\Common Files\VMware
      2017-11-02 23:23 - 2017-02-20 08:02 - 000083008 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys
      2017-11-01 10:56 - 2017-11-03 00:15 - 000000000 ____D C:\Users\User\Documents\Virtual Machines
      2017-11-01 10:41 - 2017-11-12 01:33 - 000000000 ____D C:\Users\User\AppData\Roaming\VMware
      2017-11-01 10:41 - 2017-11-12 00:10 - 000000000 ____D C:\Users\User\AppData\Local\VMware
      2017-11-01 10:35 - 2017-11-01 10:35 - 000002426 _____ C:\Windows\system32\default_error_stack-000010-000000.txt
      2017-11-01 10:28 - 2017-11-02 23:31 - 001870168 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
      2017-11-01 10:28 - 2017-11-01 10:28 - 000001024 _____ C:\Windows\SysWOW64\%TMP%
      2017-11-01 10:27 - 2017-11-13 17:25 - 000000000 ____D C:\ProgramData\VMware
      2017-11-01 10:27 - 2017-11-02 23:30 - 000000000 ____D C:\Program Files (x86)\VMware
      2017-11-01 05:57 - 2017-11-01 05:57 - 000002426 _____ C:\Windows\system32\default_error_stack-000009-000000.txt
      2017-10-31 15:19 - 2017-10-31 15:19 - 000002426 _____ C:\Windows\system32\default_error_stack-000008-000000.txt
      2017-10-31 13:05 - 2017-11-14 07:14 - 000000600 _____ C:\Users\User\PUTTY.RND
      2017-10-31 11:53 - 2017-11-01 06:38 - 000000000 ____D C:\Users\User\VirtualBox VMs
      2017-10-31 09:36 - 2017-11-01 10:04 - 000000000 ____D C:\Users\User\.VirtualBox
      2017-10-30 23:47 - 2017-10-30 23:47 - 000000000 ____D C:\Windows\SysWOW64\NV
      2017-10-30 23:47 - 2017-10-30 23:47 - 000000000 ____D C:\Windows\system32\NV
      2017-10-30 23:36 - 2017-10-30 23:36 - 000000000 ____D C:\Program Files (x86)\VulkanRT
      2017-10-30 23:36 - 2017-10-27 11:12 - 000607168 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
      2017-10-30 23:36 - 2017-10-27 11:12 - 000123000 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
      2017-10-30 23:36 - 2017-10-27 11:12 - 000081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
      2017-10-30 23:36 - 2017-09-13 18:20 - 000798008 _____ C:\Windows\SysWOW64\vulkan-1.dll
      2017-10-30 23:36 - 2017-09-13 18:20 - 000490296 _____ C:\Windows\SysWOW64\vulkaninfo.exe
      2017-10-30 23:36 - 2017-09-13 18:19 - 000927544 _____ C:\Windows\system32\vulkan-1.dll
      2017-10-30 23:36 - 2017-09-13 18:19 - 000591160 _____ C:\Windows\system32\vulkaninfo.exe
      2017-10-30 23:31 - 2017-10-27 12:46 - 040237688 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 036194424 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 035156928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 029236344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 023262464 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 021744632 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 019037416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 019012232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 018207248 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 016763000 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
      2017-10-30 23:31 - 2017-10-27 12:46 - 015027984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 013864232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 013254520 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 011779328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 010882720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 004284496 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 003807680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 003799032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 003346552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 001989056 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438813.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 001673848 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438813.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 001135464 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 001099200 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 001030592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 000981112 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 000932472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 000885680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 000492048 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 000407064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 000171896 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 000154392 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 000149552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 000132256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
      2017-10-30 23:31 - 2017-10-27 12:46 - 000057976 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
      2017-10-30 23:31 - 2017-10-27 12:46 - 000046182 _____ C:\Windows\system32\nvinfo.pb
      2017-10-30 23:31 - 2017-10-27 12:46 - 000038336 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
      2017-10-29 08:22 - 2017-10-29 08:22 - 000000000 ____D C:\Users\User\Documents\Ubisoft
      2017-10-29 08:18 - 2017-10-29 08:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
      2017-10-29 08:08 - 2017-10-29 08:08 - 000000000 ____D C:\Program Files (x86)\Ubisoft
      2017-10-28 17:08 - 2017-10-28 17:08 - 000012528 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\SysWOW64\Drivers\SECDRV.SYS
      2017-10-28 17:06 - 2017-11-03 04:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty
      2017-10-28 17:06 - 2017-10-28 17:06 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Call of Duty
      2017-10-28 17:02 - 2017-10-28 17:06 - 000000761 _____ C:\Windows\CoD.INI
      2017-10-28 12:48 - 2017-11-01 06:03 - 000004072 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1509212885
      2017-10-28 12:48 - 2017-10-28 12:51 - 000000000 ____D C:\Users\User\AppData\Roaming\Opera Software
      2017-10-28 12:48 - 2017-10-28 12:51 - 000000000 ____D C:\Users\User\AppData\Local\Opera Software

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-11-27 06:22 - 2016-10-19 11:05 - 000003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1056408878-748133402-575150202-1001
      2017-11-27 06:15 - 2017-10-12 13:56 - 000003758 _____ C:\Windows\System32\Tasks\AutoKMS
      2017-11-27 06:12 - 2013-08-22 09:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
      2017-11-27 00:11 - 2016-12-11 16:33 - 000000000 ___RD C:\Users\User\Downloads\Programas
      2017-11-26 23:59 - 2016-12-08 11:36 - 000002792 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
      2017-11-26 23:59 - 2016-12-08 11:36 - 000000000 ____D C:\Program Files\CCleaner
      2017-11-26 12:08 - 2017-10-05 11:28 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla
      2017-11-26 09:38 - 2013-08-22 08:36 - 000000000 ____D C:\Windows\Inf
      2017-11-25 10:31 - 2013-08-22 09:44 - 000482464 _____ C:\Windows\system32\FNTCACHE.DAT
      2017-11-25 01:39 - 2013-08-22 10:20 - 000000000 ____D C:\Windows\CbsTemp
      2017-11-25 00:55 - 2013-08-22 08:25 - 000262144 ___SH C:\Windows\system32\config\BBI
      2017-11-24 21:54 - 2017-04-07 18:41 - 000000000 ___RD C:\Vicky
      2017-11-24 19:34 - 2016-10-19 10:59 - 000000000 ____D C:\Users\User\AppData\Local\Packages
      2017-11-24 16:15 - 2016-10-22 19:18 - 000000000 ____D C:\Users\User\AppData\Roaming\Nitro PDF
      2017-11-24 13:38 - 2017-10-26 15:22 - 000000000 ____D C:\Program Files (x86)\DiRT 2
      2017-11-24 13:38 - 2017-10-18 09:44 - 000000000 ___RD C:\Users\User\Desktop\Games
      2017-11-24 13:38 - 2017-10-05 11:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
      2017-11-24 13:38 - 2017-06-10 15:45 - 000000000 ___RD C:\Users\User\Downloads\libros
      2017-11-24 13:38 - 2017-05-30 21:16 - 000000000 ____D C:\Windows\System32\Tasks\Intel
      2017-11-24 13:38 - 2017-02-01 14:58 - 000000000 ___RD C:\Users\User\Downloads\Peliculas
      2017-11-24 13:38 - 2016-12-06 23:41 - 000000000 ___RD C:\Users\User\Downloads\Temas Windows
      2017-11-24 13:38 - 2016-12-06 23:11 - 000000000 ___RD C:\Users\User\Downloads\Universidad
      2017-11-24 13:38 - 2016-12-06 23:08 - 000000000 ___RD C:\Users\User\Downloads\Juegos
      2017-11-24 13:38 - 2016-11-24 15:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
      2017-11-24 13:38 - 2016-11-01 18:47 - 000000000 ____D C:\Users\User\AppData\Roaming\PhotoScape
      2017-11-24 13:38 - 2016-10-24 16:04 - 000000000 ____D C:\ProgramData\IObit
      2017-11-24 13:38 - 2016-10-19 11:33 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
      2017-11-24 13:38 - 2016-10-19 11:20 - 000000000 ____D C:\Users\User\AppData\Local\Microsoft Help
      2017-11-24 13:38 - 2014-11-21 04:52 - 000000000 ___SD C:\Windows\system32\CompatTel
      2017-11-24 13:38 - 2013-08-22 10:36 - 000000000 __RSD C:\Windows\Media
      2017-11-24 13:38 - 2013-08-22 10:36 - 000000000 ___RD C:\Windows\ToastData
      2017-11-24 13:38 - 2013-08-22 10:36 - 000000000 ____D C:\Windows\PolicyDefinitions
      2017-11-24 13:38 - 2013-08-22 08:36 - 000000000 ____D C:\Windows\system32\Sysprep
      2017-11-24 13:38 - 2013-08-22 08:36 - 000000000 ____D C:\Windows\servicing
      2017-11-24 13:37 - 2017-04-14 10:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
      2017-11-24 13:37 - 2016-10-24 16:08 - 000000000 ____D C:\ProgramData\ProductData
      2017-11-24 13:37 - 2016-10-24 16:04 - 000000000 ____D C:\Users\User\AppData\LocalLow\IObit
      2017-11-24 13:37 - 2016-10-24 16:03 - 000000000 ____D C:\Users\User\AppData\Roaming\IObit
      2017-11-24 13:37 - 2016-10-19 11:40 - 000000000 ____D C:\Users\User\AppData\Roaming\Skype
      2017-11-24 13:35 - 2013-08-22 10:36 - 000000000 ___HD C:\Program Files\WindowsApps
      2017-11-24 13:30 - 2013-08-22 10:36 - 000000000 ____D C:\Windows\registration
      2017-11-24 13:20 - 2017-10-05 11:28 - 000000000 ____D C:\Users\User\AppData\Local\Mozilla
      2017-11-24 13:19 - 2016-10-19 11:40 - 000000000 ____D C:\ProgramData\Skype
      2017-11-24 13:19 - 2016-10-19 11:31 - 000000000 ____D C:\ProgramData\AVAST Software
      2017-11-24 13:19 - 2016-10-19 11:07 - 000000000 ____D C:\ProgramData\Apple Computer
      2017-11-24 13:16 - 2016-10-24 16:04 - 000000000 ____D C:\Program Files (x86)\IObit
      2017-11-24 13:15 - 2016-10-19 11:20 - 000000000 __RHD C:\MSOCache
      2017-11-24 12:32 - 2017-10-12 08:25 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
      2017-11-22 17:43 - 2017-09-21 12:28 - 000000000 ____D C:\ProgramData\NVIDIA
      2017-11-21 12:42 - 2013-08-22 10:36 - 000000000 ____D C:\Windows\system32\NDF
      2017-11-21 01:41 - 2017-04-14 10:58 - 000003256 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
      2017-11-21 01:25 - 2017-04-16 17:14 - 000004334 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
      2017-11-20 09:53 - 2016-10-22 13:21 - 000000000 ____D C:\Users\User\AppData\Local\Adobe
      2017-11-19 14:55 - 2016-10-19 14:08 - 000000000 ____D C:\Andres
      2017-11-18 11:49 - 2017-10-05 11:28 - 000000954 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
      2017-11-18 11:49 - 2017-10-05 11:28 - 000000000 ____D C:\Users\User\AppData\Roaming\Mozilla
      2017-11-18 11:49 - 2017-10-05 11:28 - 000000000 ____D C:\Program Files\Mozilla Firefox
      2017-11-17 18:22 - 2013-08-22 10:36 - 000000000 ____D C:\Windows\rescache
      2017-11-17 13:41 - 2013-08-22 10:36 - 000000000 ____D C:\Windows\system32\Macromed
      2017-11-17 13:40 - 2013-08-22 10:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
      2017-11-17 08:45 - 2013-08-22 10:36 - 000000000 ____D C:\Windows\AppReadiness
      2017-11-16 00:41 - 2016-10-22 13:06 - 000002173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2017-11-15 11:43 - 2016-10-24 00:06 - 000000000 ____D C:\Windows\system32\appraiser
      2017-11-14 22:20 - 2016-10-19 11:22 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
      2017-11-14 22:17 - 2016-10-23 17:56 - 000000000 ____D C:\Windows\system32\MRT
      2017-11-14 22:05 - 2017-10-11 10:13 - 127017032 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
      2017-11-14 22:05 - 2016-10-23 17:56 - 127017032 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
      2017-11-14 21:55 - 2013-08-22 08:25 - 000000167 _____ C:\Windows\win.ini
      2017-11-14 18:52 - 2017-10-06 14:42 - 000000000 ____D C:\Users\User\AppData\Local\Blackboard
      2017-11-14 11:55 - 2016-10-19 10:59 - 000000000 ____D C:\Users\User\AppData\Roaming\Adobe
      2017-11-14 11:05 - 2016-10-22 13:26 - 000000000 ____D C:\ProgramData\Adobe
      2017-11-14 11:04 - 2016-10-22 13:27 - 000000000 ____D C:\Program Files (x86)\Adobe
      2017-11-14 10:45 - 2016-12-11 23:55 - 000000000 ____D C:\ProgramData\Package Cache
      2017-11-14 10:38 - 2017-04-16 17:14 - 000004504 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
      2017-11-14 01:33 - 2017-10-12 01:07 - 000003212 _____ C:\Windows\System32\Tasks\USER_ESRV_SVC_QUEENCREEK
      2017-11-14 01:24 - 2016-12-09 15:34 - 000000000 ____D C:\Users\User\AppData\Local\JDownloader v2.0
      2017-11-14 01:14 - 2017-10-19 22:46 - 000003740 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-14 01:14 - 2017-10-19 22:46 - 000003732 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-14 01:14 - 2017-10-19 22:46 - 000003556 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-14 01:14 - 2016-11-05 17:36 - 000003162 _____ C:\Windows\System32\Tasks\{CD909063-E6A1-41D1-9D6E-974450684C65}
      2017-11-14 01:13 - 2017-10-19 22:47 - 000004148 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-14 01:13 - 2017-10-19 22:47 - 000003816 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-14 01:13 - 2017-10-19 22:47 - 000003800 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-14 01:13 - 2017-10-19 22:46 - 000003740 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-14 01:13 - 2017-10-19 22:46 - 000003496 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-11-13 21:59 - 2016-10-22 13:03 - 000003468 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
      2017-11-13 21:59 - 2016-10-22 13:03 - 000003340 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
      2017-11-12 11:59 - 2017-10-18 09:37 - 000000000 ___RD C:\Users\User\Desktop\Informática
      2017-11-09 07:19 - 2017-10-23 19:12 - 000000000 ____D C:\Google plugins
      2017-11-09 01:28 - 2016-10-24 15:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
      2017-11-09 01:27 - 2016-10-24 15:45 - 000000000 ____D C:\Program Files\Java
      2017-11-09 01:14 - 2017-10-12 01:08 - 000000000 ____D C:\Program Files (x86)\Intel Driver and Support Assistant
      2017-11-06 19:08 - 2014-11-20 21:14 - 001848604 _____ C:\Windows\system32\PerfStringBackup.INI
      2017-11-06 19:08 - 2014-11-20 20:24 - 000817420 _____ C:\Windows\system32\perfh00A.dat
      2017-11-06 19:08 - 2014-11-20 20:24 - 000169672 _____ C:\Windows\system32\perfc00A.dat
      2017-11-06 15:54 - 2016-10-19 10:52 - 705123123 _____ C:\Windows\MEMORY.DMP
      2017-11-05 12:42 - 2017-10-18 10:59 - 000001761 _____ C:\Users\User\Desktop\Vicky.lnk
      2017-11-04 12:23 - 2017-10-23 19:12 - 000000000 ____D C:\Users\User\AppData\Roaming\Imminent
      2017-11-03 04:31 - 2016-10-19 11:14 - 000000000 ____D C:\Users\User\AppData\Roaming\DAEMON Tools Pro
      2017-11-03 00:01 - 2013-08-22 08:25 - 000262144 ___SH C:\Windows\system32\config\BBI(5405)
      2017-11-01 15:00 - 2016-10-24 16:17 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
      2017-11-01 10:35 - 2017-09-20 14:07 - 000000426 _____ C:\Windows\Tasks\Driver Easy Scheduled Scan.job
      2017-11-01 06:03 - 2017-09-20 14:07 - 000003824 _____ C:\Windows\System32\Tasks\Driver Easy Scheduled Scan
      2017-10-30 23:36 - 2017-10-12 03:04 - 000000000 ____D C:\Users\User\AppData\Local\NVIDIA
      2017-10-30 23:26 - 2016-10-19 11:45 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
      2017-10-28 17:20 - 2016-10-19 10:59 - 000000000 ____D C:\Users\User\AppData\Local\VirtualStore

      ==================== Files in the root of some directories =======

      2016-12-05 22:32 - 2016-08-25 17:51 - 000000243 _____ () C:\Program Files\Instrucciones.txt
      2017-03-20 14:33 - 2017-03-20 14:33 - 000000001 _____ () C:\Users\User\AppData\Local\llftool.4.40.agreement
      2017-10-17 23:34 - 2017-10-17 23:34 - 000007610 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg

      Some files in TEMP:
      ====================
      2017-11-09 00:43 - 1997-03-25 05:02 - 000162816 _____ () C:\Users\User\AppData\Local\Temp\baeng32.dll
      2017-11-09 00:48 - 2000-08-22 13:46 - 000070144 _____ () C:\Users\User\AppData\Local\Temp\bamgr32.dll
      2017-11-09 00:43 - 1997-03-25 05:02 - 000167936 _____ () C:\Users\User\AppData\Local\Temp\bscob32.dll
      2017-11-09 00:43 - 1997-03-25 05:02 - 000049152 _____ () C:\Users\User\AppData\Local\Temp\bump.exe
      2017-11-09 00:48 - 2000-08-22 13:55 - 000055168 _____ () C:\Users\User\AppData\Local\Temp\decomp16.exe
      2017-11-09 00:43 - 1997-03-25 05:02 - 000010240 _____ () C:\Users\User\AppData\Local\Temp\dll32.dll
      2017-11-09 00:43 - 1997-03-25 05:02 - 000123904 _____ () C:\Users\User\AppData\Local\Temp\idapinst.dll
      2017-11-09 00:43 - 1997-03-25 05:02 - 000053248 _____ () C:\Users\User\AppData\Local\Temp\instbor.dll
      2017-11-09 00:43 - 1997-03-25 05:02 - 000199168 _____ () C:\Users\User\AppData\Local\Temp\instcui.dll
      2017-11-09 00:43 - 1998-12-15 14:30 - 000139776 _____ () C:\Users\User\AppData\Local\Temp\instrrf.dll
      2017-11-09 00:48 - 2000-08-22 15:15 - 000339488 _____ () C:\Users\User\AppData\Local\Temp\instrun.exe
      2017-11-14 01:13 - 2017-11-14 01:13 - 000040448 _____ () C:\Users\User\AppData\Local\Temp\proxy_vole1633414763238546411.dll
      2017-11-14 01:13 - 2017-11-14 01:13 - 000040448 _____ () C:\Users\User\AppData\Local\Temp\proxy_vole7028664313394774469.dll
      2017-11-14 01:12 - 2017-11-14 01:12 - 000040448 _____ () C:\Users\User\AppData\Local\Temp\proxy_vole8133644592796281035.dll

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\Windows\system32\winlogon.exe => File is digitally signed
      C:\Windows\system32\wininit.exe => File is digitally signed
      C:\Windows\explorer.exe => File is digitally signed
      C:\Windows\SysWOW64\explorer.exe => File is digitally signed
      C:\Windows\system32\svchost.exe => File is digitally signed
      C:\Windows\SysWOW64\svchost.exe => File is digitally signed
      C:\Windows\system32\services.exe => File is digitally signed
      C:\Windows\system32\User32.dll => File is digitally signed
      C:\Windows\SysWOW64\User32.dll => File is digitally signed
      C:\Windows\system32\userinit.exe => File is digitally signed
      C:\Windows\SysWOW64\userinit.exe => File is digitally signed
      C:\Windows\system32\rpcss.dll => File is digitally signed
      C:\Windows\system32\dnsapi.dll => File is digitally signed
      C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
      C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2017-11-23 15:56

      ==================== End of FRST.txt ============================

    7. #7
      Usuario Avatar de AndresLopez13
      Registrado
      nov 2017
      Ubicación
      Colombia
      Mensajes
      6

      Re: Se borraron de varias carpetas muchos archivos

      Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-11-2017 01
      Ran by Flor Lopez (27-11-2017 07:11:39)
      Running from C:\Users\User\Desktop
      Windows 8.1 Pro (Update) (X64) (2016-10-19 15:59:27)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-1056408878-748133402-575150202-500 - Administrator - Disabled)
      Flor Lopez (S-1-5-21-1056408878-748133402-575150202-1001 - Administrator - Enabled) => C:\Users\User
      Invitado (S-1-5-21-1056408878-748133402-575150202-501 - Limited - Disabled)

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
      AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AV: IObit Malware Fighter (Disabled - Up to date) {4D381C57-3C7A-6F22-07EB-639F49E836D4}
      AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
      FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      . . (HKLM\...\{8FD6FE5A-E1E1-47F3-BBE6-FE2B1364DCB8}) (Version: 7.1 - Intel) Hidden
      . . . (HKLM-x32\...\{2394186A-5445-4293-B739-352009350342}) (Version: 3.0.0.9 - Intel) Hidden
      Actualización de NVIDIA 29.1.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 29.1.0.0 - NVIDIA Corporation) Hidden
      Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 18.009.20044 - Adobe Systems Incorporated)
      Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.3.0.256 - Adobe Systems Incorporated)
      Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated)
      Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated)
      Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_0_1) (Version: 19.0.1 - Adobe Systems Incorporated)
      Advanced SystemCare 10 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 10.5.0 - IObit)
      ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
      aTube Catcher Packages (HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\aTube Catcher Packages) (Version: - ) <==== ATTENTION
      aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
      Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 17.2.3341.0 - AVAST Software)
      Avast Premier (HKLM-x32\...\Avast Antivirus) (Version: 17.8.2318 - AVAST Software)
      Blackboard Collaborate Launcher (HKLM-x32\...\{AEED1D32-C837-405A-8009-6660E3883C9E}) (Version: 1.6.4.0 - Blackboard)
      BurnAware Professional 5.5 (HKLM-x32\...\BurnAware Professional_is1) (Version: - Burnaware Technologies)
      CCleaner (HKLM\...\CCleaner) (Version: 5.36 - Piriform)
      DAEMON Tools Pro (HKLM-x32\...\DAEMON Tools Pro) (Version: 5.2.0.0348 - DT Soft Ltd)
      DirectX Packages (HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\DirectX Packages) (Version: - ) <==== ATTENTION
      DiRT 2 versión 1.1 (HKLM-x32\...\{B31EA221-6A9F-4F5B-9126-B7D67035D9E6}_is1) (Version: 1.1 - Codemasters)
      Driver Booster 4.5 (HKLM-x32\...\Driver Booster_is1) (Version: 4.5.0 - IObit)
      Driver Easy 5.5.4 (HKLM\...\DriverEasy_is1) (Version: 5.5.4 - Easeware)
      DVDFab Media Player 1.0.3.3 (22/01/2013) (HKLM-x32\...\DVDFab Media Player_is1) (Version: - Fengtao Software Inc.)
      EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
      Eines de correcció del Microsoft Office 2013: català (HKLM\...\{90150000-001F-0403-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
      ELAN Touchpad 11.5.21.6_X64_WHQL (HKLM\...\Elantech) (Version: 11.5.21.6 - ELAN Microelectronic Corp.)
      EPSON L555 Series Printer Uninstall (HKLM\...\EPSON L555 Series) (Version: - SEIKO EPSON Corporation)
      Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM\...\{90150000-001F-0456-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
      FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
      FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
      GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.14.5270 - Gretech Corporation)
      Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.)
      Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
      Halo 2 para Windows Vista (HKLM-x32\...\{0CA38F52-F0FA-4B9F-8A36-EC8A9609FBBC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
      Halo 2 para Windows Vista (HKLM-x32\...\Halo 2) (Version: - Microsoft Corporation)
      IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
      Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3308 - Intel Corporation)
      Intel® Driver & Support Assistant (HKLM-x32\...\{01f3f6b8-1a81-4b10-b51f-f69af12e1d69}) (Version: 3.0.0.9 - Intel)
      IObit Malware Fighter 5 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 5.2 - IObit)
      IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 6.1.0.510 - IObit)
      Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
      Java 8 Update 144 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
      Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
      JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
      K-Lite Codec Pack 9.7.0 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 9.7.0 - )
      ManyCam 5.0.5 (HKLM-x32\...\ManyCam) (Version: 5.0.5 - Visicom Media Inc.)
      MegaDownloader 1.7 (HKLM\...\{C12C2297-65A4-4E64-9AE1-29F0D947FDA0}}_is1) (Version: 1.7 - AppsForMega.info)
      Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
      Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
      Microsoft Halo Custom Edition (HKLM-x32\...\Halo CE) (Version: - )
      Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
      Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
      Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
      Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
      Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
      Mozilla Firefox 57.0 (x64 es-ES) (HKLM\...\Mozilla Firefox 57.0 (x64 es-ES)) (Version: 57.0 - Mozilla)
      Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0 - Mozilla)
      MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
      Need for Speed™ Most Wanted (HKLM-x32\...\{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}) (Version: - )
      netcut version 3.5.4 (HKLM-x32\...\{6BE5152F-0885-4AA5-8385-4AD2D8472C71}_is1) (Version: 3.5.4 - arcai.com)
      Nitro Pro 8 (HKLM\...\{64CF08D1-F427-4FE3-A94B-53DC009EDB30}) (Version: 8.1.1.3 - Nitro)
      No-IP DUC (HKLM-x32\...\NoIPDUC) (Version: 4.1.1 - Vitalwerks Internet Solutions LLC)
      NVIDIA Controlador de gráficos 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
      NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation)
      NVIDIA Software del sistema PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
      OpenAL (HKLM-x32\...\OpenAL) (Version: - )
      Outils de vérification linguistique 2013 de Microsoft Office*- Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
      Panel de control de NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
      Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
      PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.206.0 - Tracker Software Products Ltd)
      PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
      Prezi (HKLM-x32\...\{63B8F931-2BF3-4D5D-9C28-E2EF88D83DFD}) (Version: 5.2.8 - Nombre de su organización)
      Pro Evolution Soccer 2017 (HKLM-x32\...\{A3C10274-808C-4ADC-A13D-D94911180B58}_is1) (Version: - KONAMI)
      QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
      Rapture3D 2.4.8 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)
      Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
      Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8261 - Realtek Semiconductor Corp.)
      Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
      Resource Hacker Version 3.6.0 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
      Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM\...\{90150000-001F-0416-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
      RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software)
      Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
      Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
      Tom Clancy's Rainbow Six Vegas (HKLM-x32\...\{5731C0A8-B266-451A-8D3F-8066AA21836F}) (Version: 1.06.000 - Ubisoft)
      Update for Skype for Business 2015 (KB4011255) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{FCBDF81E-8BA7-4705-A8BB-048A3FB755D7}) (Version: - Microsoft)
      Update for Skype for Business 2015 (KB4011255) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{FCBDF81E-8BA7-4705-A8BB-048A3FB755D7}) (Version: - Microsoft)
      Update for Skype for Business 2015 (KB4011255) 64-Bit Edition (HKLM\...\{90150000-012B-0C0A-1000-0000000FF1CE}_Office15.PROPLUS_{FCBDF81E-8BA7-4705-A8BB-048A3FB755D7}) (Version: - Microsoft)
      Utilidad Intel(R) para identificación de procesadores (HKLM-x32\...\{A92A4DB0-CD37-42D1-BE1D-603D53C24328}) (Version: 1.0.0.0 - Intel Corporation)
      VMware Workstation (HKLM\...\{6F45C5AF-909A-4DA6-96C2-4086B8908C29}) (Version: 12.5.6 - VMware, Inc.)
      Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
      WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
      WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
      Wondershare Data Recovery(Build 3.0.0.27) (HKLM-x32\...\Wondershare Data Recovery_is1) (Version: 3.0.0.27 - Wondershare Software Co.,Ltd.)

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      CustomCLSID: HKU\S-1-5-21-1056408878-748133402-575150202-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
      ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-24] (AVAST Software)
      ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-24] (AVAST Software)
      ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ContextMenuHandlers1: [Advanced SystemCare] -> [CC]{2803063F-4B8D-4dc6-8874-D1802487FE2D} => -> No File
      ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-24] (AVAST Software)
      ContextMenuHandlers1: [DaemonShellExtImage] -> [CC]{40966797-8FFE-46C8-9EF8-7003F33CCF0F} => -> No File
      ContextMenuHandlers1: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2017-03-31] (IObit)
      ContextMenuHandlers1: [IObitUnstaler] -> [CC]{B19ED566-D419-470b-B111-3C89040BC027} => -> No File
      ContextMenuHandlers1: [NP8ShellExtension] -> [CC]{9C4B85B8-956C-49BF-9BA5-101384E562B2} => -> No File
      ContextMenuHandlers1: [TVCShellExt] -> [CC]{4E33A7F5-8083-4C08-9D45-C5CED88F5C04} => -> No File
      ContextMenuHandlers1: [WinRAR] -> [CC]{B41DB860-64E4-11D2-9906-E49FADC173CA} => -> No File
      ContextMenuHandlers1: [WinRAR32] -> [CC]{B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File
      ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-24] (AVAST Software)
      ContextMenuHandlers4: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2017-03-31] (IObit)
      ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd)
      ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2013-10-01] (Intel Corporation)
      ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
      ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-24] (AVAST Software)
      ContextMenuHandlers6: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2017-03-31] (IObit)
      ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd)

      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {08D5B706-C4E4-4C2D-9FFB-A07B79F5FD94} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-10] (NVIDIA Corporation)
      Task: {14AD886D-DA3A-4F37-87B0-988F52F2E579} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [2017-11-01] (AVAST Software)
      Task: {19E35899-321A-4A16-BF1F-4CF574304791} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-10] (NVIDIA Corporation)
      Task: {2F2C2FD4-C67D-4763-8A1E-64B87EAD7D3C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-11-24] (AVAST Software)
      Task: {2FA94C01-03B2-4DEB-9A1A-91A0DDC30C71} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-10-18] (Piriform Ltd)
      Task: {2FC8AA8C-EA30-413B-9ECE-87360A2A3F11} - System32\Tasks\Opera scheduled Autoupdate 1509212885 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe [2017-09-25] (Opera Software)
      Task: {48F1A317-DA05-4416-9792-C260A3AFA96C} - System32\Tasks\{436070D4-412E-48D9-A9C4-C6644E3C9FA8} => C:\Windows\system32\pcalua.exe -a C:\Users\User\AppData\Local\{C011F64D-E4B9-9AF5-8921-BF1DAD494385}\uninst.exe -c -FN=""-P=/Uninstall /s /noun /DelSelfDir
      Task: {4AA5B2C9-B4D7-4600-A26A-7E91738A6273} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-10-12] (Realtek Semiconductor)
      Task: {4D68F159-91D5-4173-9481-3600E412F87B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-10-12] (Realtek Semiconductor)
      Task: {4E0BF2A0-DC59-41E3-9B15-8A2F6162506C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-22] (Google Inc.)
      Task: {57B27890-55EB-41E9-B1CC-8C9C97FA8F68} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
      Task: {5DF75CC6-D53F-44C2-A661-536091933001} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2017-10-12] ()
      Task: {63679F9A-4026-42F5-8440-0DE52409D7C4} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
      Task: {6C2CDA75-6401-4AD7-897F-81B6E9233E04} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_187_pepper.exe [2017-11-14] (Adobe Systems Incorporated)
      Task: {72A0026C-A880-4E23-AAD0-CF1D29DDA5CE} - System32\Tasks\Driver Booster SkipUAC (Flor Lopez) => C:\Program Files (x86)\IObit\Driver Booster\4.5.0\DriverBooster.exe [2017-07-28] (IObit)
      Task: {734CDCE2-1412-42AC-9C89-FD6A17F59DCD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-10-18] (Piriform Ltd)
      Task: {760ECC0F-EF7F-4EF0-8C9A-AD5897F0E2D6} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\task.vbs"
      Task: {77A8730E-F0C6-43C4-90B1-6E9941CC9A84} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
      Task: {78D313AA-BDEA-4DDC-8E81-42D535F6D1AA} - System32\Tasks\{CD909063-E6A1-41D1-9D6E-974450684C65} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.23.0.105&LastError=404
      Task: {83BCF46F-4EF4-408B-8DDB-5611FFBB2751} - System32\Tasks\Uninstaller_SkipUac_Flor_Lopez => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-12-15] (IObit)
      Task: {9ADECEA8-AC35-43B3-AEB8-5060B6FA8602} - System32\Tasks\{D18B0DFE-3301-46F1-B003-6D0A34592ACE} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Downloads\Programas\borland c++ 5 02\SETUP.EXE" -d "C:\Users\User\Downloads\Programas\borland c++ 5 02"
      Task: {A6B86DF5-3559-4D91-B4CB-11364B482889} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-17] (Adobe Systems Incorporated)
      Task: {AFDD14BF-DD7E-4468-9705-C5914F4323BC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
      Task: {B47EBD37-3C23-4E58-9606-E7CEFF4777B6} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [2017-10-09] (Easeware)
      Task: {B545EC94-D348-4DA5-BAB1-DE71599ACBA7} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-10] (NVIDIA Corporation)
      Task: {B9AD4601-F231-4974-AA3A-FBA29781237E} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
      Task: {C8D6EFBC-5F5E-4620-BCF7-B7155D7BA43F} - System32\Tasks\ASC10_SkipUac_Flor Lopez => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2017-08-07] (IObit)
      Task: {CDF96010-99F4-4463-A329-41795422582D} - System32\Tasks\{08322A0F-EA57-4F16-9D24-89BC20B1C301} => C:\Windows\system32\pcalua.exe -a C:\Users\User\AppData\Local\{32280474-1680-68CC-7B18-4D245F70B1BC}\uninst.exe -c -FN=""-P=/Uninstall /s /noun /DelSelfDir
      Task: {CEE160DF-99EF-45B2-9449-F9D0CFB82F5C} - System32\Tasks\AdobeAAMUpdater-1.0-FLOR-Flor Lopez => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
      Task: {D255FC4E-856C-41F9-A9B9-90CB63DACC8D} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-10] (NVIDIA Corporation)
      Task: {D96AD534-7C5C-480B-BA1A-B2A59E7F6918} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
      Task: {E0500BED-F368-466E-AE34-14750913DD45} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-22] (Google Inc.)
      Task: {EB6EA8A5-E34B-4BA6-A9E4-4B98D60A6118} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-10] (NVIDIA Corporation)
      Task: {EC2A2083-8F4E-4906-83C1-AC213712823A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-10] (NVIDIA Corporation)
      Task: {F1E58D9E-984A-4464-A92F-A141992FCFC7} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-10] (NVIDIA Corporation)
      Task: {F600FD8A-8C72-4AB2-A216-5B369267D822} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.5.0\Scheduler.exe [2017-07-26] (IObit)
      Task: {F6C2F9C4-3440-4EE1-A33D-33C3DB5D0B64} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-10] (NVIDIA Corporation)

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

      Task: C:\Windows\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
      Task: C:\Windows\Tasks\Uninstaller_SkipUac_Flor_Lopez.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

      ==================== Shortcuts & WMI ========================

      (The entries could be listed to be restored or removed.)


      ==================== Loaded Modules (Whitelisted) ==============

      2015-07-20 10:34 - 2015-07-20 10:34 - 000012288 _____ () C:\Program Files (x86)\No-IP\ducservice.exe
      2017-09-26 02:52 - 2017-09-26 02:52 - 000491600 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
      2016-10-24 19:16 - 2007-09-02 13:58 - 000495616 _____ () C:\Program Files (x86)\RocketDock\RocketDock.exe
      2015-07-20 19:22 - 2015-07-20 19:22 - 000347648 _____ () C:\Program Files (x86)\No-IP\DUC40.exe
      2015-07-20 10:34 - 2015-07-20 10:34 - 000073728 _____ () C:\Program Files (x86)\No-IP\ducapi.dll
      2016-10-19 11:14 - 2012-12-14 20:47 - 000107520 _____ () C:\Program Files (x86)\DAEMON Tools Pro\BRD.dll
      2016-10-24 19:16 - 2007-09-02 13:57 - 000069632 _____ () C:\Program Files (x86)\RocketDock\RocketDock.dll
      2017-11-24 13:57 - 2017-11-24 13:57 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
      2017-11-24 13:57 - 2017-11-24 13:57 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
      2017-07-31 19:37 - 2017-07-31 19:37 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
      2017-11-24 13:57 - 2017-11-24 13:57 - 000237808 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
      2017-11-24 13:57 - 2017-11-24 13:57 - 000244584 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
      2017-11-24 13:57 - 2017-11-24 13:57 - 000235816 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
      2017-11-24 14:00 - 2016-09-12 14:53 - 048936448 _____ () C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)

    8. #8
      Usuario Avatar de AndresLopez13
      Registrado
      nov 2017
      Ubicación
      Colombia
      Mensajes
      6

      Re: Se borraron de varias carpetas muchos archivos

      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)

      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\008i.com -> 008i.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\008k.com -> 008k.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\00hq.com -> 00hq.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\0190-dialers.com -> 0190-dialers.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\01i.info -> 01i.info
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\05p.com -> 05p.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\0calories.net -> 0calories.net
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\0cj.net -> 0cj.net
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\0scan.com -> 0scan.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\1-se.com -> 1-se.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\1001movie.com -> 1001movie.com
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\1001night.biz -> 1001night.biz
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\100gal.net -> 100gal.net
      IE restricted site: HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\100sexlinks.com -> 100sexlinks.com

      There are 4788 more sites.


      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2013-08-22 08:25 - 2017-09-03 23:19 - 000000826 _____ C:\Windows\system32\Drivers\etc\hosts


      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-1056408878-748133402-575150202-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
      DNS Servers: 8.8.8.8 - 8.8.4.4
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
      Windows Firewall is enabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==

      HKLM\...\StartupApproved\Run32: => "QuickTime Task"
      HKLM\...\StartupApproved\Run32: => "ROC_roc_ssl_v12"
      HKLM\...\StartupApproved\Run32: => "vProt"
      HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
      HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter"
      HKLM\...\StartupApproved\Run32: => "DSATray"
      HKLM\...\StartupApproved\Run32: => "vmware-tray.exe"
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\StartupApproved\Run: => "Chromium"
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\StartupApproved\Run: => "DAEMON Tools Pro Agent"
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\StartupApproved\Run: => "Lync"
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\StartupApproved\Run: => "Skype"
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\StartupApproved\Run: => "BingSvc"
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\StartupApproved\Run: => "Advanced SystemCare 10"
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\StartupApproved\Run: => "AceStream"
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\StartupApproved\Run: => "Advanced SystemCare 9"
      HKU\S-1-5-21-1056408878-748133402-575150202-1001\...\StartupApproved\Run: => "ManyCam"

      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [{878AB956-5074-4412-A5A0-66B5B5808694}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
      FirewallRules: [{77B737A5-3B4F-407D-AF47-7ECC94EC6196}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
      FirewallRules: [{DBC773CB-F92B-42C4-A622-D4895FF53791}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
      FirewallRules: [{CBA3511C-387A-4CD9-8AE2-127E48CFAF21}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
      FirewallRules: [{F3641C5F-7CC5-4E1C-BCBE-A60D9D0E421D}] => (Allow) C:\Users\User\AppData\Local\Chromium\Application\chrome.exe
      FirewallRules: [TCP Query User{1729A610-0ECD-4842-8F4C-98FF0B5E1207}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
      FirewallRules: [UDP Query User{F5F88779-104F-488D-B8AF-D9DD86D096BA}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
      FirewallRules: [{7AC4EEF5-5C02-4A45-9039-B306205B3995}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
      FirewallRules: [{32E047C7-D0F2-4769-8874-C874232B8F5F}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
      FirewallRules: [{DF9951CA-AA40-45EB-914A-8B7CA8882A7D}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
      FirewallRules: [{DDAC19DC-2C09-4F80-891E-5BFE22790E9A}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
      FirewallRules: [{8370962A-C2F0-4742-8EEF-48112B9FD8B1}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
      FirewallRules: [{4175A1FB-2B73-429E-9F41-BF9EA1178203}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
      FirewallRules: [{87463DCA-1C98-4373-817C-EDE88E53B969}] => (Allow) C:\Program Files (x86)\Microsoft Games\Halo 2\halo2.exe
      FirewallRules: [{179D6311-37A6-4238-9759-A1CFC542A242}] => (Allow) C:\Program Files (x86)\Microsoft Games\Halo 2\halo2.exe
      FirewallRules: [TCP Query User{3DF7B402-AE01-4C6D-BB4E-5361AE0C9105}C:\users\user\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\user\appdata\local\jdownloader v2.0\jdownloader2.exe
      FirewallRules: [UDP Query User{105C213E-1D98-4AF5-86C4-3AF033C9C26F}C:\users\user\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\user\appdata\local\jdownloader v2.0\jdownloader2.exe
      FirewallRules: [TCP Query User{D0ED60C2-F780-4D5C-ACAB-B09ECEDA24C7}C:\users\user\downloads\juegos\halo online\eldewrito_0.5.1.1_release\eldorado.exe] => (Allow) C:\users\user\downloads\juegos\halo online\eldewrito_0.5.1.1_release\eldorado.exe
      FirewallRules: [UDP Query User{58371646-1D4F-4A72-B5BD-C5B8D7D59259}C:\users\user\downloads\juegos\halo online\eldewrito_0.5.1.1_release\eldorado.exe] => (Allow) C:\users\user\downloads\juegos\halo online\eldewrito_0.5.1.1_release\eldorado.exe
      FirewallRules: [TCP Query User{26B2EE57-4C6C-4C5E-94A4-1561EB6AC885}C:\program files (x86)\microsoft games\halo custom edition\haloce.exe] => (Allow) C:\program files (x86)\microsoft games\halo custom edition\haloce.exe
      FirewallRules: [UDP Query User{3B277BBE-0DFD-4DF1-B62B-E46D46576CFC}C:\program files (x86)\microsoft games\halo custom edition\haloce.exe] => (Allow) C:\program files (x86)\microsoft games\halo custom edition\haloce.exe
      FirewallRules: [TCP Query User{51C88BAE-7E1B-4987-BA08-7013D54BA3E1}C:\program files (x86)\microsoft games\halo custom edition\haloce.exe] => (Block) C:\program files (x86)\microsoft games\halo custom edition\haloce.exe
      FirewallRules: [UDP Query User{D4127AA4-D856-49E0-BD04-BBAACC203398}C:\program files (x86)\microsoft games\halo custom edition\haloce.exe] => (Block) C:\program files (x86)\microsoft games\halo custom edition\haloce.exe
      FirewallRules: [{5E385C16-C60D-4516-9132-99A384451625}] => (Allow) C:\Program Files (x86)\IObit\IObit Malware Fighter\Surfing Protection\FFNativeMessage.exe
      FirewallRules: [{351AEC82-6DAE-4C2F-A8AF-E9475053CC66}] => (Allow) C:\Program Files (x86)\IObit\IObit Malware Fighter\Surfing Protection\FFNativeMessage.exe
      FirewallRules: [TCP Query User{17161D9E-A6BB-4DDA-A90D-52E52F16433F}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
      FirewallRules: [UDP Query User{EC131321-D3FD-4945-9ED6-610210EAB97D}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
      FirewallRules: [{3ABBE5A5-5DF0-4874-988B-FD9153837166}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.5.0\DriverBooster.exe
      FirewallRules: [{6104D4E5-040F-44EA-B677-F452A42FA626}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.5.0\DriverBooster.exe
      FirewallRules: [{D582FE78-EA8A-48B6-9DA0-BFFE4D52AD03}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.5.0\DBDownloader.exe
      FirewallRules: [{05B49F11-6F9E-4FAC-9EF1-E7CD6BC75BA4}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.5.0\DBDownloader.exe
      FirewallRules: [{9F0269E8-D641-4180-813B-E2642BEB3816}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.5.0\AutoUpdate.exe
      FirewallRules: [{66D2ABF6-0074-4F48-A798-D2B04DBC3DDC}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.5.0\AutoUpdate.exe
      FirewallRules: [TCP Query User{74489A36-63AC-4D17-AF45-4290764665CA}C:\halo ce 4\halo 4 byspartangold\haloce.exe] => (Allow) C:\halo ce 4\halo 4 byspartangold\haloce.exe
      FirewallRules: [UDP Query User{6303FF0B-EB6A-48EF-93C8-E0C84EF2E8D1}C:\halo ce 4\halo 4 byspartangold\haloce.exe] => (Allow) C:\halo ce 4\halo 4 byspartangold\haloce.exe
      FirewallRules: [{5715E944-C9C7-4C35-9F85-9C2BB6ABEF1C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
      FirewallRules: [{69763C20-4B0E-498B-BE79-DD7D76EBBCB4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
      FirewallRules: [TCP Query User{FF2BE4E1-37C2-4C90-AA85-DAB679B870AF}C:\users\user\appdata\local\programs\blackboard\blackboard collaborate launcher\resources\java\jre1.7.0_80\bin\javaw.exe] => (Allow) C:\users\user\appdata\local\programs\blackboard\blackboard collaborate launcher\resources\java\jre1.7.0_80\bin\javaw.exe
      FirewallRules: [UDP Query User{84337881-176A-4365-8ADD-82409D7B1DAA}C:\users\user\appdata\local\programs\blackboard\blackboard collaborate launcher\resources\java\jre1.7.0_80\bin\javaw.exe] => (Allow) C:\users\user\appdata\local\programs\blackboard\blackboard collaborate launcher\resources\java\jre1.7.0_80\bin\javaw.exe
      FirewallRules: [{0BC56536-DA52-4799-927E-658691B754C0}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
      FirewallRules: [{DE8413CD-00EC-4F93-AE74-A3583D2CCBB6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      FirewallRules: [{1AD63596-CFFE-43D0-9555-55B53686AA2F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      FirewallRules: [{DC718229-931E-4509-8E3B-41B9CD4FC519}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
      FirewallRules: [{7A8111BA-EA81-491C-A45D-5B600086044A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
      FirewallRules: [{37F46644-2298-4570-A83A-91B1FC3BC8B1}] => (Allow) %systemroot%\system32\alg.exe
      FirewallRules: [{00214F49-3108-4E79-9812-D0F77C92E48D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      FirewallRules: [{78339132-9BF2-4203-8C9A-E24AE79844E4}] => (Allow) LPort=3003
      FirewallRules: [TCP Query User{D8A946B0-C9E4-473F-A813-2F323E042046}C:\program files (x86)\dirt 2\dirt2_game.exe] => (Allow) C:\program files (x86)\dirt 2\dirt2_game.exe
      FirewallRules: [UDP Query User{42035A12-94E3-4EFB-A2B3-49A41431B0C3}C:\program files (x86)\dirt 2\dirt2_game.exe] => (Allow) C:\program files (x86)\dirt 2\dirt2_game.exe
      FirewallRules: [{07836A50-0D06-4CB2-8E43-05EE4D107D2C}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Rainbow Six Vegas\Binaries\R6Vegas_Game.exe
      FirewallRules: [{7BF768AB-3A00-4FBB-966E-435877960994}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Rainbow Six Vegas\Binaries\R6Vegas_Game.exe
      FirewallRules: [{E978BC10-9E0A-4C1B-876C-40CA9CAC93EB}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Rainbow Six Vegas\Binaries\R6Vegas_Launcher.exe
      FirewallRules: [{9072AC1B-A11C-476C-987D-BC5A36BA4BD7}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Rainbow Six Vegas\Binaries\R6Vegas_Launcher.exe
      FirewallRules: [{E1F4D849-CC53-4710-8188-D0255CCE6891}] => (Allow) D:\VMware\vmware-authd.exe
      FirewallRules: [{73611E87-A436-47DD-A7F8-A114412A04DB}] => (Allow) D:\VMware\vmware-authd.exe
      FirewallRules: [{16968D5E-7A7D-4217-864D-BA4277097E44}] => (Allow) D:\VMware\vmware-hostd.exe
      FirewallRules: [{4012E9AA-3059-4ED9-92C8-F94D87F2BD14}] => (Allow) D:\VMware\vmware-hostd.exe
      FirewallRules: [{AB0E5BDA-225C-46F4-A9C7-5C3EB8F844C9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      FirewallRules: [{EE7D7845-6B8B-4467-B511-9F571F4B0B8D}] => (Allow) C:\Program Files (x86)\arcai.com\aips.exe
      FirewallRules: [{7A6BA26B-0B86-4EA1-BB95-F6C94A89D5BB}] => (Allow) C:\Program Files (x86)\arcai.com\aips.exe
      FirewallRules: [{E251C89C-3B87-4847-A7AD-A892BD31BE84}] => (Allow) C:\Program Files (x86)\arcai.com\netcut_windows.exe
      FirewallRules: [{ECEAAAA9-ED9D-4B3E-980F-A0D78870B86B}] => (Allow) C:\Program Files (x86)\arcai.com\netcut_windows.exe

      ==================== Restore Points =========================

      21-11-2017 01:41:50 Driver Booster : Realtek PCIe GBE Family Controller
      24-11-2017 1336 Operación de restauración
      24-11-2017 14:54:34 Driver Booster Restore Point

      ==================== Faulty Device Manager Devices =============

      Name: avast! SecureLine TAP Adapter v3
      Description: avast! SecureLine TAP Adapter v3
      Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
      Manufacturer: TAP-Windows Provider V9
      Service: aswTap
      Problem: : This device is disabled. (Code 22)
      Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (11/26/2017 10:39:48 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
      Description: There was an error with the Windows Location Provider database

      Error: (11/25/2017 10:34:57 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FLOR)
      Description: No se pudo activar la aplicación Microsoft.BingWeather_8wekyb3d8bbwe!App debido al error: -2144927142. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

      Error: (11/25/2017 10:34:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
      Description: El programa wwahost.exe, versión 6.3.9600.17415, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.

      Identificador de proceso: 6cc

      Hora de inicio: 01d36602e51ad7f3

      Hora de finalización: 4294967295

      Ruta de acceso de la aplicación: C:\Windows\system32\wwahost.exe

      Identificador de informe: 2d22e284-d1f6-11e7-8301-3085a974bad9

      Nombre completo de paquete con errores: Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe

      Identificador de aplicación relativa del paquete con errores: App

      Error: (11/25/2017 10:34:50 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: FLOR)
      Description: La aplicación Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe+App no se inició dentro del tiempo asignado.

      Error: (11/24/2017 09:59:55 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FLOR)
      Description: No se pudo activar la aplicación FileManager_cw5n1h2txyewy!Microsoft.Windows.FileManager debido al error: -2144927142. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

      Error: (11/24/2017 09:59:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: FLOR)
      Description: La aplicación FileManager_6.3.9600.16384_neutral_neutral_cw5n1h2txyewy+Microsoft.Windows.FileManager no se inició dentro del tiempo asignado.

      Error: (11/24/2017 09:59:11 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FLOR)
      Description: No se pudo activar la aplicación FileManager_cw5n1h2txyewy!Microsoft.Windows.FileManager debido al error: -2144927142. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

      Error: (11/24/2017 02:00:00 PM) (Source: ESENT) (EventID: 455) (User: )
      Description: svchost (1084) SRUJet: Error -1811 (0xfffff8ed) al abrir un archivo de registro C:\Windows\system32\SRU\SRU01DD0.log.

      Error: (11/24/2017 01:46:01 PM) (Source: System Restore) (EventID: 8210) (User: )
      Description: Error no especificado durante Restaurar sistema: (Driver Booster : Realtek PCIe GBE Family Controller). Información adicional: 0xc0000056.

      Error: (11/24/2017 01:42:59 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
      Description: Los Servicios de cifrado no pudieron inicializar la base de datos del catálogo. El error ESENT era: -551.


      System errors:
      =============
      Error: (11/27/2017 06:23:52 AM) (Source: DCOM) (EventID: 10010) (User: FLOR)
      Description: El servidor {1B1F472E-3221-4826-97DB-2C2324D389AE} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (11/27/2017 06:23:22 AM) (Source: DCOM) (EventID: 10010) (User: FLOR)
      Description: El servidor {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (11/27/2017 06:11:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: El servicio Advanced SystemCare Service 10 no pudo iniciarse debido al siguiente error:
      El sistema no puede encontrar el archivo especificado.

      Error: (11/27/2017 06:11:46 AM) (Source: BTHUSB) (EventID: 5) (User: )
      Description: El controlador Bluetooth esperaba un evento HCI con un tamaño determinado pero no lo recibió.

      Error: (11/27/2017 06:11:49 AM) (Source: EventLog) (EventID: 6008) (User: )
      Description: El cierre anterior del sistema a las 2:55:54 a. m. del ‎27/‎11/‎2017 resultó inesperado.

      Error: (11/26/2017 11:36:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error:
      Se ha bloqueado la descarga de este controlador

      Error: (11/26/2017 11:36:44 PM) (Source: Application Popup) (EventID: 1060) (User: )
      Description: \??\C:\Users\User\AppData\Local\Temp\ehdrv.sys

      Error: (11/26/2017 11:36:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error:
      Se ha bloqueado la descarga de este controlador

      Error: (11/26/2017 11:36:43 PM) (Source: Application Popup) (EventID: 1060) (User: )
      Description: \??\C:\Users\User\AppData\Local\Temp\ehdrv.sys

      Error: (11/26/2017 11:36:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error:
      Se ha bloqueado la descarga de este controlador


      CodeIntegrity:
      ===================================
      Date: 2017-11-27 06:11:39.181
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\jswpslwfx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-26 09:37:58.640
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\jswpslwfx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-25 10:30:46.344
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\jswpslwfx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-25 10:27:43.181
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\jswpslwfx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-25 00:56:43.400
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\jswpslwfx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-24 13:41:42.483
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\jswpslwfx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-24 12:51:38.826
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\jswpslwfx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-23 12:20:02.104
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\jswpslwfx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-23 09:16:36.766
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\jswpslwfx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

      Date: 2017-11-23 09:11:54.122
      Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\jswpslwfx.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


      ==================== Memory info ===========================

      Processor: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz
      Percentage of memory in use: 29%
      Total physical RAM: 6023.12 MB
      Available physical RAM: 4263.73 MB
      Total Virtual: 12167.12 MB
      Available Virtual: 10622.45 MB

      ==================== Drives ================================

      Drive c: () (Fixed) (Total:600.46 GB) (Free:319.78 GB) NTFS
      Drive d: (SmkWd) (Fixed) (Total:97.65 GB) (Free:89.08 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (Size: 698.6 GB) (Disk ID: ADA9DB8F)

      Partition: GPT.

      ==================== End of Addition.txt ============================

      Hola buen día, Ahí está todo, espero sirva de algo, muchas gracias!