• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 15

    Ayuda con mail.ru[1]

    Buenas tardes. Tengo un problema con este virus(??) Pensé que lo había eliminado, pero ahora resulta que no puedo ingresar a las sticky notes, y el explorador de internet de windows y la tienda de ...

    1. #1
      Usuario Avatar de DamaRoja
      Registrado
      oct 2009
      Ubicación
      wonderland
      Mensajes
      15

      Ayuda con mail.ru[1]

      Buenas tardes. Tengo un problema con este virus(??)

      Pensé que lo había eliminado, pero ahora resulta que no puedo ingresar a las sticky notes, y el explorador de internet de windows y la tienda de windows no es capaz de conectarse (puedo desde chrome y mozilla).

      Reporte de AdwCleaner
      # AdwCleaner 7.0.5.0 - Logfile created on Thu Dec 21 14:15:17 2017
      # Updated on 2017/29/11 by Malwarebytes
      # Database: 12-19-2017.1
      # Running on Windows 10 Home (X64)
      # Mode: scan
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      No malicious services found.

      ***** [ Folders ] *****

      No malicious folders found.

      ***** [ Files ] *****

      No malicious files found.

      ***** [ DLL ] *****

      No malicious DLLs found.

      ***** [ WMI ] *****

      No malicious WMI found.

      ***** [ Shortcuts ] *****

      No malicious shortcuts found.

      ***** [ Tasks ] *****

      No malicious tasks found.

      ***** [ Registry ] *****

      No malicious registry entries found.

      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries.

      ***** [ Chromium (and derivatives) ] *****

      No malicious Chromium entries.

      *************************



      ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########

      Reporte de Malwarebytes
      Malwarebytes
      www.malwarebytes.com

      -Detalles del registro-
      Fecha del análisis: 21/12/17
      Hora del análisis: 12:12
      Archivo de registro: 2a074916-e672-11e7-852c-d8cb8af17806.json
      Administrador: Sí

      -Información del software-
      Versión: 3.3.1.2183
      Versión de los componentes: 1.0.262
      Versión del paquete de actualización: 1.0.3538
      Licencia: Prueba

      -Información del sistema-
      SO: Windows 10 (Build 16299.125)
      CPU: x64
      Sistema de archivos: NTFS
      Usuario: DAMAROJA\suzak

      -Resumen del análisis-
      Tipo de análisis: Análisis personalizado
      Resultado: Completado
      Objetos analizados: 1404971
      Amenazas detectadas: 1
      Amenazas en cuarentena: 1
      Tiempo transcurrido: 1 hr, 46 min, 21 seg

      -Opciones de análisis-
      Memoria: Activado
      Inicio: Activado
      Sistema de archivos: Activado
      Archivo: Activado
      Rootkits: Activado
      Heurística: Activado
      PUP: Detectar
      PUM: Detectar

      -Detalles del análisis-
      Proceso: 0
      (No hay elementos maliciosos detectados)

      Módulo: 0
      (No hay elementos maliciosos detectados)

      Clave del registro: 0
      (No hay elementos maliciosos detectados)

      Valor del registro: 0
      (No hay elementos maliciosos detectados)

      Datos del registro: 0
      (No hay elementos maliciosos detectados)

      Secuencia de datos: 0
      (No hay elementos maliciosos detectados)

      Carpeta: 0
      (No hay elementos maliciosos detectados)

      Archivo: 1
      PUP.Optional.ASK, D:\DESCARGAS\79750-687143-ATUBE-CATCHER.EXE, En cuarentena, [484], [398182],1.0.3538

      Sector físico: 0
      (No hay elementos maliciosos detectados)

    2. #2
      Usuario Avatar de DamaRoja
      Registrado
      oct 2009
      Ubicación
      wonderland
      Mensajes
      15

      Re: Ayuda con mail.ru[1]

      Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-12-2017
      Ran by suzak (administrator) on DAMAROJA (21-12-2017 14:35:46)
      Running from C:\Users\suzak\Desktop
      Loaded Profiles: suzak (Available Profiles: suzak)
      Platform: Windows 10 Home Version 1709 16299.125 (X64) Language: Español (España, internacional)
      Internet Explorer Version 11 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
      (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_f507e86e308a4c50\igfxCUIService.exe
      (Microsoft Corporation) C:\Windows\System32\wlanext.exe
      (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe
      (Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe
      (Intel Corporation) C:\Windows\System32\ibtsiva.exe
      (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_f507e86e308a4c50\IntelCpHDCPSvc.exe
      (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
      (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
      (MSI) C:\Program Files (x86)\MSI\SUPER CHARGER\ChargeService.exe
      (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
      (Portrait Displays, Inc.) C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorService.exe
      (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
      (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
      (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
      (Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
      (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
      (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
      () C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe
      (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
      (Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
      () C:\Program Files (x86)\WTFast\service\WTFast.Service.exe
      (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
      (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
      (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
      (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_f507e86e308a4c50\IntelCpHeciSvc.exe
      (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
      (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
      (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
      (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
      (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
      (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
      (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
      (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_f507e86e308a4c50\igfxEM.exe
      (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avpui.exe
      (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
      (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
      (Portrait Displays, Inc.) C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColor.exe
      (Portrait Displays, Inc) C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorHelper.exe
      () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe
      (MSI) C:\Program Files (x86)\SCM\SCM.exe
      () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSISvc32.exe
      () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSISvc64.exe
      (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe
      (Graphic Tablet Company Shenzhen) C:\PenTabletDriver\TabletDriver.exe
      (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
      (Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
      (MSI) C:\Program Files (x86)\MSI\SUPER CHARGER\SUPER CHARGER.exe
      (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
      (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
      (SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
      (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
      (Corsair Components, Inc.) C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe
      (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
      (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
      (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
      (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
      (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
      (CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
      (CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
      (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
      (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
      (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
      (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
      () C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
      (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
      (Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
      (Microsoft Corporation) C:\Windows\splwow64.exe
      (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
      (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
      (Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
      () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeHost.exe
      (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
      (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      (CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
      (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
      (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
      (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksdeui.exe
      (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
      (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe

      ==================== Registry (Whitelisted) ===========================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
      HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8521968 2015-08-24] (Realtek Semiconductor)
      HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-27] (Intel Corporation)
      HKLM\...\Run: [MsiTrueColor] => C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColor.exe [3725040 2015-07-27] (Portrait Displays, Inc.)
      HKLM\...\Run: [NahimicMSIUILauncher] => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe [532448 2015-08-13] ()
      HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [299520 2015-07-15] (MSI)
      HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
      HKLM\...\Run: [TabletDriver] => C:\PenTabletDriver\TabletDriver.exe [637960 2016-03-04] (Graphic Tablet Company Shenzhen)
      HKLM-x32\...\Run: [SUPER CHARGER] => C:\Program Files (x86)\MSI\SUPER CHARGER\SUPER CHARGER.exe [1047536 2014-02-21] (MSI)
      HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated)
      HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1871344 2017-11-04] (Adobe Systems Inc.)
      HKLM-x32\...\Run: [Corsair Utility Engine] => C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe [14885552 2016-03-23] (Corsair Components, Inc.)
      HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2017-07-21] (Razer Inc.)
      HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3567928 2017-12-04] (Dropbox, Inc.)
      HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
      HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncher.exe [222160 2016-09-28] (Razer Inc.)
      HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (CANON INC.)
      HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
      HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\Run: [Lync] => C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe [23772328 2017-12-18] (Microsoft Corporation)
      HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [886768 2017-11-04] (Adobe Systems Incorporated)
      HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-12-09] (Valve Corporation)
      HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10249048 2017-12-01] (Piriform Ltd)
      HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\Run: [WTFast Tray] => C:\Program Files (x86)\WTFast\WTFast.exe [7646328 2017-05-15] (AAA Internet Publishing, Inc.)
      Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2015-08-24]
      ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks)
      Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2016-09-16]
      ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
      Startup: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Arduino Create Agent.lnk [2016-12-06]
      ShortcutTarget: Arduino Create Agent.lnk -> C:\Users\suzak\AppData\Roaming\ArduinoCreateAgent\Arduino_Create_Bridge.exe ()
      Startup: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk [2017-07-31]
      ShortcutTarget: Enviar a OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
      Startup: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2016-04-03]
      ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      ProxyServer: [S-1-5-21-2902873080-3869711474-3520166863-1001] => 212.80.167.93:3128
      Tcpip\Parameters: [DhcpNameServer] 190.157.8.33 190.157.8.1
      Tcpip\Parameters: [NameServer] 8.8.8.8
      Tcpip\..\Interfaces\{0eacf9b1-48a8-40fd-8aa1-c4ecbd90f1af}: [NameServer] 8.8.8.8
      Tcpip\..\Interfaces\{17772f8f-ecd0-4e00-80cc-bd60c1eed2c4}: [NameServer] 8.8.8.8
      Tcpip\..\Interfaces\{59309896-0a24-4734-866e-17612d9efc6e}: [NameServer] 8.8.8.8
      Tcpip\..\Interfaces\{5cb12ebd-f5d9-4c51-adc5-69acc554f90a}: [NameServer] 8.8.8.8
      Tcpip\..\Interfaces\{6527604d-2f83-40b0-864c-10fb57f0fc48}: [NameServer] 8.8.8.8
      Tcpip\..\Interfaces\{738ca5ec-669a-498f-9d8f-2899c6e10c19}: [NameServer] 8.8.8.8
      Tcpip\..\Interfaces\{b46cd346-63c9-49b9-a944-524bc2c48266}: [NameServer] 8.8.8.8,8.8.4.4
      Tcpip\..\Interfaces\{b46cd346-63c9-49b9-a944-524bc2c48266}: [DhcpNameServer] 190.157.8.33 190.157.8.1
      Tcpip\..\Interfaces\{ea976e0c-ab37-4535-b9ee-dc144e700356}: [NameServer] 8.8.8.8
      Tcpip\..\Interfaces\{f764dd48-9a6d-44d8-a661-7d5bc53e8117}: [NameServer] 8.8.8.8

      Internet Explorer:
      ==================
      HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
      SearchScopes: HKU\S-1-5-21-2902873080-3869711474-3520166863-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL =
      SearchScopes: HKU\S-1-5-21-2902873080-3869711474-3520166863-1001 -> {8264CCC3-CE32-49A8-B615-EC8104C9C0DA} URL =
      SearchScopes: HKU\S-1-5-21-2902873080-3869711474-3520166863-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://co.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10438__171219__yaie&p={searchTerms}
      BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2017-04-28] (AO Kaspersky Lab)
      BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-12-18] (Microsoft Corporation)
      BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
      BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-10-19] (Oracle Corporation)
      BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
      BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-12-18] (Microsoft Corporation)
      BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-19] (Oracle Corporation)
      BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
      BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2017-04-28] (AO Kaspersky Lab)
      BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-12-18] (Microsoft Corporation)
      BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
      BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-19] (Oracle Corporation)
      BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2016-08-11] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
      BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
      BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-12-18] (Microsoft Corporation)
      BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-19] (Oracle Corporation)
      BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
      Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
      Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
      Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\IEExt\ie_plugin.dll [2017-04-28] (AO Kaspersky Lab)
      Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
      Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
      Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2017-04-28] (AO Kaspersky Lab)
      Toolbar: HKU\S-1-5-21-2902873080-3869711474-3520166863-1001 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-12-18] (Adobe Systems Incorporated)
      Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-18] (Microsoft Corporation)
      Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-18] (Microsoft Corporation)
      Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-18] (Microsoft Corporation)
      Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-12-18] (Microsoft Corporation)

      FireFox:
      ========
      FF ProfilePath: C:\Users\suzak\AppData\Roaming\Mozilla\Firefox\Profiles\vt9iwd5p.default [2017-12-21]
      FF Homepage: Mozilla\Firefox\Profiles\vt9iwd5p.default -> hxxps://co.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10438__171219__yaie&p=el+propio+bucaramanga
      FF NewTab: Mozilla\Firefox\Profiles\vt9iwd5p.default -> hxxps://co.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10438__171219__yaff
      FF NetworkProxy: Mozilla\Firefox\Profiles\vt9iwd5p.default -> http", "165.227.53.107"
      FF NewTabOverride: Mozilla\Firefox\Profiles\vt9iwd5p.default -> Enabled: [email protected]
      FF Extension: (uBlock Origin) - C:\Users\suzak\AppData\Roaming\Mozilla\Firefox\Profiles\vt9iwd5p.default\Extensions\[email protected] [2017-12-18]
      FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
      FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2017-10-14]
      FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
      FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2017-11-27]
      FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
      FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
      FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-19] (Oracle Corporation)
      FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-19] (Oracle Corporation)
      FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems)
      FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2016-04-14] (CANON INC.)
      FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
      FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
      FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-19] (Oracle Corporation)
      FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-19] (Oracle Corporation)
      FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-12-18] (Microsoft Corporation)
      FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation)
      FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-12-18] (Microsoft Corporation)
      FF Plugin-x32: @Nero.com/KM -> C:\Program Files (x86)\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-08-28] (Nero AG)
      FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-19] (Google Inc.)
      FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-19] (Google Inc.)
      FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
      FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems)
      FF Plugin HKU\S-1-5-21-2902873080-3869711474-3520166863-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\suzak\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2017-08-28] (Zoom Video Communications, Inc.)
      FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\dsengine.js [2017-12-18] <==== ATTENTION (Points to *.cfg file)
      FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\dsengine.cfg [2017-12-18] <==== ATTENTION

      Chrome:
      =======
      CHR DefaultProfile: Default
      CHR HomePage: Default -> hxxp://www.google.com/
      CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/#inbox","hxxps://www.santoro-london.com/shop/large-fold-over-cosmetic-bag-awashed-santoros-gorjuss.html","hxxps://www.santoro-london.com/shop/gorjuss-zip-purse-i-found-my-family-in-a-book.html","hxxps://deals.gamesradar.com/sales/enhance-emergency-weather-radio-with-flashlight-hand-crank-loud-siren-and-us","hxxp://www.ebay.com/itm/Earth-Origins-Roxanne-Women-US-6-Black-Loafer-2299-/131970369919?hash=item1eba0c097f","hxxp://svc2.sipost.co/trazawebsip2/default.aspx?Buscar=RB935425040HK","hxxps://mail.google.com/mail/u/1/#inbox","hxxps://books.google.com.co/books?hl=en&lr=lang_en&id=JKc-DQAAQBAJ&oi=fnd&pg=PR8&dq=m-learning+scenario&ots=tvM-n1oX3f&sig=MRj85Gh1rhzEM6zjBNr9_Bhn-lI#v=onepage&q&f=false","hxxp://www.ebay.com/sch/i.html?_odkw=Pebeo+Gedeo+Crystal+Resin%2C+150ml&_osacat=0&_from=R40&_trksid=p2045573.m570.l1313.TR0.TRC0.H0.XSmooth-On+Silicone+Mold+Making+Rubber+Oomoo+30+-+2.8+lb+.TRS0&_nkw=Smooth-On+Silicone+Mold+Making+Rubber+Oomoo+30+-+2.8+lb+&_sacat=0","hxxp://www.ebay.com/itm/AUTHENTIC-MONT-BLANC-MB-440-028-Gold-Black-Rimless-Eyeglasses-Frames-Size-55/172366593067?_trksid=p2047675.c100005.m1851&_trkparms=aid%3D222007%26algo%3DSIC.MBE%26ao%3D1%26asc%3D39798%26meid%3D48d0567118ab4aef8b366ae2f137367d%26pid%3D100005%26rk%3D4%26rkt%3D6%26sd%3D191981627861","hxxps://www.kickstarter.com/projects/1024689211/que-bottle-the-fashionable-and-collapsible-travel?ref=FundedToday&utm_medium=referral&utm_source=53dsa.fnd.to","hxxp://cart.payments.ebay.com/sc/add?srt=0100010000005032d7b7e9fa8b553165ee5dc57d42de2def9e787f27c24cecb204ad54cdd016c5219e0f48725dbaf4f41226c4aefc4be16d6fbd9ae8d40d1eda86c0430bbdfb8ae33de94e3230cc46282506063fe77de8&ssPageName=CART:ATC&item=iid:351881933659,qty:1","hxxp://www.ebay.com/itm/Mulco-Womens-Ilusion-Ceramic-MW3-11009-083-Watch-/381422899857?hash=item58ce939291:g:544AAOSwKIpWDH1N","hxxp://www.mulco.com/products?gender=1602","hxxp://www.mulco.com/watches/gravity/jupiter/11193=gravity-jupiter","hxxp://www.mulco.com/products?relevance=2674&gender=1602","hxxps://www.youtube.com/watch?v=Z4k582CoCvs","hxxps://www.youtube.com/watch?v=mrb1x0xV6GA","hxxp://www.tutorialesprogramacionya.com/javaya/detalleconcepto.php?codigo=89&punto=&inicio=","hxxp://www.discoduroderoer.es/arrays-de-objetos-en-java/","hxxp://jagonzalez.org/arreglo-de-objetos-en-java/","hxxps://geekytheory.com/tip-java-como-ordenar-un-array-de-objetos-por-sus-atributos/","hxxp://profesores.fi-b.unam.mx/carlos/java/java_basico4_8.html","hxxp://jagonzalez.org/modificar-tamano-arreglo-en-java/","hxxp://dalila.sip.ucm.es/~manuel/JSW1/Slides/Herencia.pdf","hxxp://dalila.sip.ucm.es/~manuel/JSW1/Slides/Polimorfismo.pdf","hxxp://dalila.sip.ucm.es/~manuel/JSW1/Slides/Swing.pdf","hxxps://www.scirra.com/tutorials/307/arrays-for-beginners/es/page-1","hxxp://articulo.mercadolibre.com.co/MCO-430401161-pantalla-tactil-35-para-raspberry-pi-3-2-b-touch-lcd-_JM#redirectedFromParent","hxxp://www.sc.ehu.es/acwlaroa/SO2/Apuntes/Cap4.pdf","hxxp://www.sc.ehu.es/acwlaroa/SO2/Apuntes/Cap5.pdf","hxxp://www.sc.ehu.es/acwlaroa/SO2/Apuntes/Cap6.pdf","hxxps://raspberryparatorpes.net/instalacion/noobs-paso-a-paso-instalar-el-sistema-operativo-en-la-raspberry-pi/","hxxp://kio4.com/appinventor/index.htm","hxxp://kio4.com/appinventor/200concursoagosto16.htm","hxxp://kio4.com/appinventor/59sumauno.htm","hxxp://kio4.com/appinventor/69C_tinyBD_varios_datos.htm","hxxp://kio4.com/appinventor/12notificador.htm","hxxps://geekandchic.cl/olaplex-que-es-como-aplicarlo-y-donde-comprarlo-sin-ser-peluquera/","hxxps://www.ruby-lang.org/es/downloads/","hxxp://tiendasuiza.com/set-de-cubiertos-de-mesa-victorinox-negro.html","hxxp://mail.ru/cnt/10445?gp=811560"
      CHR NewTab: Default -> Active:"chrome-extension://hcobdfnjjaceclfdjpmmpiknimccjpmf/newtab.html", Active:"chrome-extension://mefhakmgclhhfbdadeojlkbllmecialg/public/index.html"
      CHR Session Restore: Default -> is enabled.
      CHR Profile: C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default [2017-12-21]
      CHR Extension: (Traductor de Google) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-10-21]
      CHR Extension: (Input Tab in Google Keep) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmfmbanhkhjhfeckobkcecohknhlnamb [2017-03-10]
      CHR Extension: (OneTab) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2017-05-24]
      CHR Extension: (Mendeley Importer) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dagcmkpagjlhakfdhnbomgmjdpkdklff [2017-12-01]
      CHR Extension: (ARC Welder) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\emfinbmielocnlhgmfkkmkngdoccbadn [2016-11-09]
      CHR Extension: (Kaspersky Protection) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2017-07-12]
      CHR Extension: (Taskade) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcobdfnjjaceclfdjpmmpiknimccjpmf [2017-12-19]
      CHR Extension: (Google Keep: notas y listas) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2017-12-12]
      CHR Extension: (Mate Translate – traductor, diccionario, translator) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihmgiclibbndffejedjimfjmfoabpcke [2017-12-21]
      CHR Extension: (Aeropost Plug-in) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikghdpjeomecocjlnookmmgpegfaamgl [2017-12-01]
      CHR Extension: (doink) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfpckflpocoefedlbjbiailolhdhpmli [2017-12-19]
      CHR Extension: (Botón de Google Académico) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldipcbpaocekfooobnbcddclnhejkcpn [2017-10-07]
      CHR Extension: (Tabby Cat) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\mefhakmgclhhfbdadeojlkbllmecialg [2017-12-05]
      CHR Extension: (App Runtime for Chrome (Beta)) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfaihdlpglflfgpfjcifdjdjcckigekc [2016-11-09]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
      CHR Extension: (Cite This For Me: Web Citer) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnnmhgkokpalnmbeighfomegjfkklkle [2017-09-17]
      CHR Extension: (Web Server for Chrome) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofhbbkphhbklhfoeikjpcbhemlocgigb [2017-09-22]
      CHR Extension: (BlocklyDuino Editor) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohncgafccgdbigbbikgkfbkiebahihmb [2017-02-05]
      CHR Extension: (Scopus Document Download Manager) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojplelelocihfchkdaebocpankipadmp [2017-12-18]
      CHR Extension: (myHomework Student Planner) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pembccdigcahnckbjcbehhcacplbbomj [2017-09-16]
      CHR Extension: (Evernote Web Clipper) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2017-12-16]
      CHR Extension: (Chrome Media Router) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-12]
      CHR Extension: (MIT AI2 Companion) - D:\Welder\MITAI2Companion [2016-11-09]
      CHR Extension: (Ahorcado) - D:\Welder\Ahorcado.apk_export_Kmfse [2017-03-12]
      CHR Extension: (Ryan) - D:\Welder\Is it Love Ryan Visual Novel_v1.1.89_apkpure.com.apk_export_bKNYw [2016-11-16]
      CHR Extension: (Flappy StarWars) - D:\Welder\FlappyStarWars.apk_export_RzLLh [2017-03-05]
      CHR Profile: C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-12-18]
      CHR Extension: (Google Slides) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-02]
      CHR Extension: (Google Docs) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-02]
      CHR Extension: (Google Drive) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-02]
      CHR Extension: (YouTube) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-02]
      CHR Extension: (Kaspersky Protection) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eahebamiopdhefndnmappcihfajigkka [2016-04-02]
      CHR Extension: (Adobe Acrobat) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2016-04-02]
      CHR Extension: (Google Sheets) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-02]
      CHR Extension: (Google Docs Offline) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-02]
      CHR Extension: (Chrome Web Store Payments) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
      CHR Extension: (Gmail) - C:\Users\suzak\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-02]
      CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
      CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated)
      R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
      R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
      R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7760552 2017-12-07] (Microsoft Corporation)
      S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-05-31] (Dropbox, Inc.)
      S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-05-31] (Dropbox, Inc.)
      R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51016 2017-12-04] (Dropbox, Inc.)
      S3 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
      R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-27] (Intel Corporation)
      S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
      R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
      S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
      R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation)
      R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [413696 2015-07-07] (Rivet Networks) [File not signed]
      R2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
      R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
      R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2015-07-15] (Micro-Star International Co., Ltd.) [File not signed]
      R2 MsiTrueColorService; C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorService.exe [175344 2015-07-27] (Portrait Displays, Inc.)
      R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\SUPER CHARGER\ChargeService.exe [162800 2014-02-21] (MSI)
      S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2016-02-08] ()
      R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-10] (NVIDIA Corporation)
      S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-10] (NVIDIA Corporation)
      R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-01] (NVIDIA Corporation)
      R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460736 2017-10-10] (NVIDIA Corporation)
      R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2017-07-19] ()
      S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc.)
      R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [133376 2016-09-28] (Razer Inc.)
      R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [279104 2017-05-16] (Synaptics Incorporated)
      R2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe [157456 2017-03-07] ()
      S3 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
      S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56040 2015-11-19] (Microsoft Corporation)
      S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
      S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)
      R2 WTFast.Service; C:\Program Files (x86)\WTFast\service\WTFast.Service.exe [102912 2017-05-15] () [File not signed]
      R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3833248 2016-02-08] (Intel® Corporation)
      R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      S1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys [114736 2015-07-07] (Rivet Networks, LLC.)
      R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
      R3 CorsairGamingAudioService; C:\WINDOWS\system32\DRIVERS\CorsairGamingAudioamd64.sys [123384 2016-03-03] (Corsair Components, Inc.)
      R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [47840 2016-01-20] (Corsair)
      R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21728 2016-01-20] (Corsair)
      S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
      R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77432 2017-11-29] ()
      S3 h648101; C:\WINDOWS\System32\drivers\h648101.sys [65776 2008-08-08] (Your Corporation)
      S3 h648103; C:\WINDOWS\System32\drivers\h648103.sys [62960 2008-08-08] (Your Corporation)
      R4 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [55232 2017-12-21] ()
      R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [244744 2017-04-13] (Intel Corporation)
      R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2017-09-29] (Qualcomm Atheros, Inc.)
      R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
      R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
      R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
      R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
      S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [28792 2016-03-31] (AO Kaspersky Lab)
      R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [197344 2017-10-14] (AO Kaspersky Lab)
      R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [520152 2017-07-25] (AO Kaspersky Lab)
      R3 klids; C:\ProgramData\Kaspersky Lab\AVP17.0.0\Bases\klids.sys [190832 2017-12-21] (AO Kaspersky Lab)
      R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1021656 2017-10-14] (AO Kaspersky Lab)
      R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57424 2017-04-28] (AO Kaspersky Lab)
      R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [52136 2016-05-19] (AO Kaspersky Lab)
      R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
      R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
      R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
      R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [230312 2017-11-15] (AO Kaspersky Lab)
      R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [87584 2017-12-18] (AO Kaspersky Lab)
      R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [253192 2017-12-12] (AO Kaspersky Lab)
      R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [107680 2017-12-12] (AO Kaspersky Lab)
      R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [173664 2017-11-15] (AO Kaspersky Lab)
      R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [85320 2016-06-18] (AO Kaspersky Lab)
      R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [136416 2017-04-28] (AO Kaspersky Lab)
      R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199640 2017-07-25] (AO Kaspersky Lab)
      R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [193968 2017-12-19] (Malwarebytes)
      R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [110016 2017-12-21] (Malwarebytes)
      R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [46008 2017-12-21] (Malwarebytes)
      R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2017-12-19] (Malwarebytes)
      R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [94144 2017-12-21] (Malwarebytes)
      R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7689728 2017-09-29] (Intel Corporation)
      R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc.)
      R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\SUPER CHARGER\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
      R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvmi.inf_amd64_0401a47bc69f625c\nvlddmkm.sys [14456952 2017-06-26] (NVIDIA Corporation)
      S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-10] (NVIDIA Corporation)
      R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50624 2017-10-10] (NVIDIA Corporation)
      R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-10-10] (NVIDIA Corporation)
      S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [411712 2015-08-24] (Realsil Semiconductor Corporation)
      R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [45752 2017-07-19] (Razer, Inc.)
      R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [139704 2017-07-18] (Razer, Inc.)
      S3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
      R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [259584 2017-09-29] (Microsoft Corporation)
      S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [33448 2015-08-24] (Synaptics Incorporated)
      R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44216 2016-03-28] (Synaptics Incorporated)
      R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [40568 2016-06-14] (SteelSeries ApS)
      R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [52952 2016-08-30] (SteelSeries ApS)
      R3 ssps2; C:\WINDOWS\System32\drivers\ssps2.sys [33896 2016-06-14] (SteelSeries ApS)
      S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
      R3 USBPcap; C:\WINDOWS\system32\DRIVERS\USBPcap.sys [41720 2015-12-10] (USBPcap)
      R1 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [119712 2016-07-18] (Oracle Corporation)
      S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [135768 2016-07-18] (Oracle Corporation)
      R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [19504 2016-01-13] (Windows (R) Win 7 DDK provider)
      S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
      S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
      S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)
      R3 WINIO; C:\Program Files (x86)\MSI\Dragon Gaming Center\winio64.sys [15160 2010-06-07] ()
      R2 WtfEngineDrv; C:\WINDOWS\system32WtfEngineDrv.sys [40352 2016-12-16] (AAA Internet Publishing, Inc.)
      R3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [26200 2015-05-25] (SplitmediaLabs Limited)

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

    3. #3
      Usuario Avatar de DamaRoja
      Registrado
      oct 2009
      Ubicación
      wonderland
      Mensajes
      15

      Re: Ayuda con mail.ru[1]

      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-12-21 14:35 - 2017-12-21 14:36 - 000046841 _____ C:\Users\suzak\Desktop\FRST.txt
      2017-12-21 14:23 - 2017-12-21 14:23 - 000000000 ____D C:\Users\suzak\AppData\Local\ESET
      2017-12-21 14:20 - 2017-12-21 14:35 - 000000000 ____D C:\FRST
      2017-12-21 14:14 - 2017-12-21 14:14 - 000055232 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
      2017-12-21 14:05 - 2017-12-21 14:05 - 000000000 ___HD C:\OneDriveTemp
      2017-12-21 12:38 - 2017-12-21 12:38 - 036251728 _____ (Adlice Software ) C:\Users\suzak\Desktop\RogueKiller_setup_ref3.exe
      2017-12-21 12:36 - 2017-12-21 12:36 - 002392064 _____ (Farbar) C:\Users\suzak\Desktop\FRST64.exe
      2017-12-21 12:23 - 2017-12-21 12:23 - 000000000 ____D C:\Program Files\HitmanPro
      2017-12-21 09:13 - 2017-12-21 14:09 - 000000000 ____D C:\AdwCleaner
      2017-12-21 09:10 - 2017-12-21 09:10 - 008187336 _____ (Malwarebytes) C:\Users\suzak\Desktop\AdwCleaner.exe
      2017-12-21 03:32 - 2017-12-21 14:08 - 000028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
      2017-12-21 03:31 - 2017-12-21 14:07 - 000000901 _____ C:\Users\Public\Desktop\RogueKiller.lnk
      2017-12-21 03:31 - 2017-12-21 14:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
      2017-12-21 03:31 - 2017-12-21 14:07 - 000000000 ____D C:\Program Files\RogueKiller
      2017-12-21 03:31 - 2017-12-21 03:34 - 000000000 ____D C:\ProgramData\RogueKiller
      2017-12-21 03:30 - 2017-12-21 03:30 - 000003642 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
      2017-12-21 03:28 - 2017-12-21 03:30 - 000000658 _____ C:\DelFix.txt
      2017-12-21 03:28 - 2017-12-21 03:28 - 000000000 ____D C:\WINDOWS\ERUNT
      2017-12-21 03:26 - 2017-12-21 03:27 - 006975096 _____ (ESET spol. s r.o.) C:\Users\suzak\Desktop\ESETOnlineScanner_ESN.exe
      2017-12-21 03:14 - 2017-12-21 14:19 - 000000000 ____D C:\ProgramData\HitmanPro
      2017-12-21 03:03 - 2017-12-21 03:04 - 011584088 _____ (SurfRight B.V.) C:\Users\suzak\Desktop\hitmanpro_x64.exe
      2017-12-19 15:00 - 2017-12-19 15:00 - 000000000 ____D C:\Program Files (x86)\GUMF387.tmp
      2017-12-19 14:25 - 2017-12-19 14:25 - 000193968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
      2017-12-19 14:24 - 2017-12-21 14:04 - 000110016 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
      2017-12-19 14:24 - 2017-12-21 14:04 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
      2017-12-19 14:24 - 2017-12-21 14:04 - 000046008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
      2017-12-19 14:24 - 2017-12-19 14:24 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
      2017-12-19 14:24 - 2017-12-19 14:24 - 000001914 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
      2017-12-19 14:24 - 2017-12-19 14:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
      2017-12-19 14:24 - 2017-12-19 14:24 - 000000000 ____D C:\ProgramData\Malwarebytes
      2017-12-19 14:24 - 2017-12-19 14:24 - 000000000 ____D C:\Program Files\Malwarebytes
      2017-12-19 14:24 - 2017-11-29 09:11 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
      2017-12-18 19:32 - 2017-12-18 19:32 - 000087584 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_kimul.sys
      2017-12-18 19:11 - 2017-12-21 03:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
      2017-12-14 02:24 - 2017-12-14 02:24 - 000003938 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
      2017-12-12 23:55 - 2017-12-08 01:52 - 000666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
      2017-12-12 23:55 - 2017-12-07 18:34 - 001925296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
      2017-12-12 23:55 - 2017-12-07 18:34 - 001634288 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
      2017-12-12 23:55 - 2017-12-07 18:34 - 000059800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bam.sys
      2017-12-12 23:55 - 2017-12-07 18:31 - 008590744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
      2017-12-12 23:55 - 2017-12-07 18:31 - 000779440 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
      2017-12-12 23:55 - 2017-12-07 18:30 - 000166296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
      2017-12-12 23:55 - 2017-12-07 18:28 - 000710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
      2017-12-12 23:55 - 2017-12-07 18:28 - 000630752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcrt.dll
      2017-12-12 23:55 - 2017-12-07 18:27 - 004504456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
      2017-12-12 23:55 - 2017-12-07 18:27 - 003903784 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
      2017-12-12 23:55 - 2017-12-07 18:27 - 000184984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
      2017-12-12 23:55 - 2017-12-07 18:26 - 007385088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
      2017-12-12 23:55 - 2017-12-07 18:26 - 002709200 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
      2017-12-12 23:55 - 2017-12-07 18:26 - 000525208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
      2017-12-12 23:55 - 2017-12-07 18:25 - 000374032 _____ (Microsoft Corporation) C:\WINDOWS\system32\vac.exe
      2017-12-12 23:55 - 2017-12-07 18:24 - 000705944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
      2017-12-12 23:55 - 2017-12-07 18:24 - 000437144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
      2017-12-12 23:55 - 2017-12-07 18:24 - 000246168 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
      2017-12-12 23:55 - 2017-12-07 18:23 - 005905752 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
      2017-12-12 23:55 - 2017-12-07 18:23 - 000677272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
      2017-12-12 23:55 - 2017-12-07 18:22 - 001003104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
      2017-12-12 23:55 - 2017-12-07 18:22 - 000979352 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
      2017-12-12 23:55 - 2017-12-07 18:22 - 000137544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
      2017-12-12 23:55 - 2017-12-07 18:22 - 000129432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
      2017-12-12 23:55 - 2017-12-07 18:21 - 007676296 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
      2017-12-12 23:55 - 2017-12-07 18:20 - 001170000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
      2017-12-12 23:55 - 2017-12-07 18:19 - 021352136 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
      2017-12-12 23:55 - 2017-12-07 18:16 - 001776272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
      2017-12-12 23:55 - 2017-12-07 18:16 - 000603920 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
      2017-12-12 23:55 - 2017-12-07 18:15 - 001426152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
      2017-12-12 23:55 - 2017-12-07 18:15 - 000721592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
      2017-12-12 23:55 - 2017-12-07 18:14 - 000571288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
      2017-12-12 23:55 - 2017-12-07 18:12 - 000401304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
      2017-12-12 23:55 - 2017-12-07 18:10 - 000362904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
      2017-12-12 23:55 - 2017-12-07 17:58 - 000123512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
      2017-12-12 23:55 - 2017-12-07 17:57 - 000649304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
      2017-12-12 23:55 - 2017-12-07 17:56 - 001528904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
      2017-12-12 23:55 - 2017-12-07 17:55 - 001490328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
      2017-12-12 23:55 - 2017-12-07 17:55 - 000097144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
      2017-12-12 23:55 - 2017-12-07 17:39 - 006092664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
      2017-12-12 23:55 - 2017-12-07 17:37 - 001145104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
      2017-12-12 23:55 - 2017-12-07 17:36 - 000769096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcrt.dll
      2017-12-12 23:55 - 2017-12-07 17:34 - 003484840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
      2017-12-12 23:55 - 2017-12-07 17:34 - 002192112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
      2017-12-12 23:55 - 2017-12-07 17:33 - 000747416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
      2017-12-12 23:55 - 2017-12-07 17:33 - 000592280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
      2017-12-12 23:55 - 2017-12-07 17:32 - 020286120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
      2017-12-12 23:55 - 2017-12-07 17:31 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
      2017-12-12 23:55 - 2017-12-07 17:31 - 001246432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
      2017-12-12 23:55 - 2017-12-07 17:31 - 000982016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
      2017-12-12 23:55 - 2017-12-07 17:23 - 006478528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
      2017-12-12 23:55 - 2017-12-07 17:22 - 025245696 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
      2017-12-12 23:55 - 2017-12-07 17:13 - 002905600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
      2017-12-12 23:55 - 2017-12-07 17:13 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
      2017-12-12 23:55 - 2017-12-07 17:12 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
      2017-12-12 23:55 - 2017-12-07 17:12 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
      2017-12-12 23:55 - 2017-12-07 17:12 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
      2017-12-12 23:55 - 2017-12-07 17:11 - 003669504 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
      2017-12-12 23:55 - 2017-12-07 17:10 - 018916352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
      2017-12-12 23:55 - 2017-12-07 17:10 - 006466048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
      2017-12-12 23:55 - 2017-12-07 17:10 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
      2017-12-12 23:55 - 2017-12-07 17:10 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
      2017-12-12 23:55 - 2017-12-07 17:10 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
      2017-12-12 23:55 - 2017-12-07 17:10 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
      2017-12-12 23:55 - 2017-12-07 17:10 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
      2017-12-12 23:55 - 2017-12-07 17:10 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
      2017-12-12 23:55 - 2017-12-07 17:09 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\batmeter.dll
      2017-12-12 23:55 - 2017-12-07 17:09 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
      2017-12-12 23:55 - 2017-12-07 17:09 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
      2017-12-12 23:55 - 2017-12-07 17:09 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
      2017-12-12 23:55 - 2017-12-07 17:09 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gamingtcui.dll
      2017-12-12 23:55 - 2017-12-07 17:08 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
      2017-12-12 23:55 - 2017-12-07 17:08 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
      2017-12-12 23:55 - 2017-12-07 17:08 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
      2017-12-12 23:55 - 2017-12-07 17:08 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
      2017-12-12 23:55 - 2017-12-07 17:08 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
      2017-12-12 23:55 - 2017-12-07 17:08 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
      2017-12-12 23:55 - 2017-12-07 17:07 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
      2017-12-12 23:55 - 2017-12-07 17:07 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\PushToInstall.dll
      2017-12-12 23:55 - 2017-12-07 17:07 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
      2017-12-12 23:55 - 2017-12-07 17:07 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
      2017-12-12 23:55 - 2017-12-07 17:07 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
      2017-12-12 23:55 - 2017-12-07 17:07 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
      2017-12-12 23:55 - 2017-12-07 17:07 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
      2017-12-12 23:55 - 2017-12-07 17:06 - 023652864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
      2017-12-12 23:55 - 2017-12-07 17:06 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
      2017-12-12 23:55 - 2017-12-07 17:06 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
      2017-12-12 23:55 - 2017-12-07 17:06 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcui.dll
      2017-12-12 23:55 - 2017-12-07 17:06 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
      2017-12-12 23:55 - 2017-12-07 17:05 - 006037504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
      2017-12-12 23:55 - 2017-12-07 17:05 - 001670656 _____ (Microsoft Corporation) C:\WINDOWS\system32\batmeter.dll
      2017-12-12 23:55 - 2017-12-07 17:05 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
      2017-12-12 23:55 - 2017-12-07 17:05 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
      2017-12-12 23:55 - 2017-12-07 17:05 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
      2017-12-12 23:55 - 2017-12-07 17:05 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
      2017-12-12 23:55 - 2017-12-07 17:05 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
      2017-12-12 23:55 - 2017-12-07 17:05 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
      2017-12-12 23:55 - 2017-12-07 17:05 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
      2017-12-12 23:55 - 2017-12-07 17:05 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
      2017-12-12 23:55 - 2017-12-07 17:05 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
      2017-12-12 23:55 - 2017-12-07 17:05 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
      2017-12-12 23:55 - 2017-12-07 17:05 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
      2017-12-12 23:55 - 2017-12-07 17:05 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
      2017-12-12 23:55 - 2017-12-07 17:04 - 003678208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
      2017-12-12 23:55 - 2017-12-07 17:04 - 001498112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
      2017-12-12 23:55 - 2017-12-07 17:04 - 001321472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
      2017-12-12 23:55 - 2017-12-07 17:04 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
      2017-12-12 23:55 - 2017-12-07 17:03 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
      2017-12-12 23:55 - 2017-12-07 17:03 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
      2017-12-12 23:55 - 2017-12-07 17:03 - 001230848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
      2017-12-12 23:55 - 2017-12-07 17:03 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
      2017-12-12 23:55 - 2017-12-07 17:03 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
      2017-12-12 23:55 - 2017-12-07 17:03 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
      2017-12-12 23:55 - 2017-12-07 17:03 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
      2017-12-12 23:55 - 2017-12-07 17:03 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
      2017-12-12 23:55 - 2017-12-07 17:03 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
      2017-12-12 23:55 - 2017-12-07 17:03 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\hascsp.dll
      2017-12-12 23:55 - 2017-12-07 17:02 - 007545344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
      2017-12-12 23:55 - 2017-12-07 17:02 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
      2017-12-12 23:55 - 2017-12-07 17:02 - 002117632 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
      2017-12-12 23:55 - 2017-12-07 17:02 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
      2017-12-12 23:55 - 2017-12-07 17:02 - 000813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
      2017-12-12 23:55 - 2017-12-07 17:02 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
      2017-12-12 23:55 - 2017-12-07 17:01 - 008097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
      2017-12-12 23:55 - 2017-12-07 17:01 - 004592640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
      2017-12-12 23:55 - 2017-12-07 17:01 - 001980928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
      2017-12-12 23:55 - 2017-12-07 17:01 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
      2017-12-12 23:55 - 2017-12-07 17:01 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
      2017-12-12 23:55 - 2017-12-07 17:00 - 004740608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
      2017-12-12 23:55 - 2017-12-07 17:00 - 002862080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
      2017-12-12 23:55 - 2017-12-07 17:00 - 001509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
      2017-12-12 23:55 - 2017-12-07 16:59 - 003121664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
      2017-12-12 23:55 - 2017-12-07 16:59 - 002105856 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
      2017-12-12 23:55 - 2017-12-07 16:59 - 001666048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
      2017-12-12 23:55 - 2017-12-07 16:59 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
      2017-12-12 23:55 - 2017-12-07 16:59 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
      2017-12-12 23:55 - 2017-12-07 16:58 - 003478016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
      2017-12-12 23:55 - 2017-12-07 16:58 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
      2017-12-12 23:55 - 2017-12-07 16:58 - 001547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
      2017-12-12 23:55 - 2017-12-07 16:58 - 001353728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
      2017-12-12 23:55 - 2017-12-07 16:58 - 000812032 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
      2017-12-12 23:55 - 2017-12-07 16:57 - 001822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
      2017-12-12 23:55 - 2017-12-07 16:57 - 001487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
      2017-12-12 23:55 - 2017-12-07 16:56 - 002666496 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
      2017-12-12 23:55 - 2017-12-07 16:56 - 001739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
      2017-12-12 23:55 - 2017-12-07 16:56 - 000685056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
      2017-12-12 23:55 - 2017-12-07 16:54 - 002510336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
      2017-12-12 23:55 - 2017-12-07 16:54 - 001570816 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
      2017-12-12 23:55 - 2017-12-07 16:54 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
      2017-12-12 19:14 - 2017-12-12 19:14 - 000253192 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
      2017-12-12 19:13 - 2017-12-12 19:13 - 000107680 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
      2017-12-10 16:12 - 2017-12-10 20:27 - 000000000 ____D C:\Users\suzak\.conda
      2017-12-10 16:12 - 2017-12-10 16:12 - 000000043 _____ C:\Users\suzak\.condarc
      2017-12-10 16:12 - 2017-12-10 16:12 - 000000000 ____D C:\Users\suzak\AppData\Local\conda
      2017-12-10 16:12 - 2017-12-10 16:12 - 000000000 ____D C:\Users\suzak\.anaconda
      2017-12-10 16:05 - 2017-12-10 16:05 - 000000000 ____D C:\Users\suzak\OneDrive\Documentos\Python Scripts
      2017-12-10 16:05 - 2017-12-10 16:05 - 000000000 ____D C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)
      2017-12-09 03:29 - 2017-12-09 03:29 - 000002068 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
      2017-12-09 03:29 - 2017-12-09 03:29 - 000001222 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
      2017-12-06 23:25 - 2017-12-06 23:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
      2017-12-04 20:06 - 2017-12-04 20:06 - 000051016 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
      2017-12-04 20:06 - 2017-12-04 20:06 - 000045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
      2017-12-04 20:06 - 2017-12-04 20:06 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
      2017-12-04 20:06 - 2017-12-04 20:06 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
      2017-12-03 23:44 - 2017-12-03 23:44 - 000641696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
      2017-12-03 23:44 - 2017-12-03 23:44 - 000389296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib140.dll
      2017-12-03 23:44 - 2017-12-03 23:44 - 000331432 _____ (Microsoft Corporation) C:\WINDOWS\system32\concrt140.dll
      2017-12-03 23:44 - 2017-12-03 23:44 - 000087728 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
      2017-12-03 23:38 - 2017-12-03 23:38 - 000440128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140.dll
      2017-12-03 23:38 - 2017-12-03 23:38 - 000263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vccorlib140.dll
      2017-12-03 23:38 - 2017-12-03 23:38 - 000242496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\concrt140.dll
      2017-12-03 23:38 - 2017-12-03 23:38 - 000083792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140.dll
      2017-12-03 09:33 - 2017-12-03 09:33 - 000044453 _____ C:\Users\suzak\Desktop\eHosts.pdf
      2017-12-01 12:02 - 2017-12-01 12:02 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
      2017-12-01 12:01 - 2017-12-01 12:01 - 000000000 ___HD C:\Users\suzak\MicrosoftEdgeBackups
      2017-12-01 12:01 - 2017-12-01 12:01 - 000000000 ____D C:\ProgramData\USOShared
      2017-12-01 12:00 - 2017-12-21 03:10 - 000000000 ___RD C:\Users\suzak\3D Objects
      2017-12-01 12:00 - 2017-12-01 12:00 - 000000020 ___SH C:\Users\suzak\ntuser.ini
      2017-12-01 11:53 - 2017-12-21 14:23 - 000004206 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D66DF874-A035-46DC-B7C9-CC40CBCAF419}
      2017-12-01 11:53 - 2017-12-21 14:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
      2017-12-01 11:53 - 2017-12-19 15:01 - 000003416 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
      2017-12-01 11:53 - 2017-12-19 15:01 - 000003292 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
      2017-12-01 11:53 - 2017-12-13 00:02 - 000004612 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
      2017-12-01 11:53 - 2017-12-13 00:02 - 000004430 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
      2017-12-01 11:53 - 2017-12-06 02:20 - 000003364 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2902873080-3869711474-3520166863-1001
      2017-12-01 11:53 - 2017-12-01 11:54 - 000003438 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
      2017-12-01 11:53 - 2017-12-01 11:54 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-12-01 11:53 - 2017-12-01 11:54 - 000003176 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-12-01 11:53 - 2017-12-01 11:54 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-12-01 11:53 - 2017-12-01 11:54 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-12-01 11:53 - 2017-12-01 11:54 - 000002412 _____ C:\WINDOWS\System32\Tasks\NahimicMSIUILauncherRun
      2017-12-01 11:53 - 2017-12-01 11:54 - 000002318 _____ C:\WINDOWS\System32\Tasks\{2F2B31C7-63CE-4F3E-B5EF-3AF58CA5B64E}
      2017-12-01 11:53 - 2017-12-01 11:53 - 000007623 _____ C:\WINDOWS\diagwrn.xml
      2017-12-01 11:53 - 2017-12-01 11:53 - 000007623 _____ C:\WINDOWS\diagerr.xml
      2017-12-01 11:53 - 2017-12-01 11:53 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
      2017-12-01 11:53 - 2017-12-01 11:53 - 000003214 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
      2017-12-01 11:53 - 2017-12-01 11:53 - 000003114 _____ C:\WINDOWS\System32\Tasks\MSI_Help_Desk_Agent
      2017-12-01 11:53 - 2017-12-01 11:53 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-12-01 11:53 - 2017-12-01 11:53 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-12-01 11:53 - 2017-12-01 11:53 - 000002810 _____ C:\WINDOWS\System32\Tasks\[email protected]
      2017-12-01 11:53 - 2017-12-01 11:53 - 000002786 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-12-01 11:53 - 2017-12-01 11:53 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
      2017-12-01 11:53 - 2017-12-01 11:53 - 000002584 _____ C:\WINDOWS\System32\Tasks\USER_ESRV_SVC_QUEENCREEK
      2017-12-01 11:53 - 2017-12-01 11:53 - 000002502 _____ C:\WINDOWS\System32\Tasks\MSI_Dragon Gaming Center
      2017-12-01 11:53 - 2017-12-01 11:53 - 000002400 _____ C:\WINDOWS\System32\Tasks\NahimicMSIsvc64Run
      2017-12-01 11:53 - 2017-12-01 11:53 - 000002392 _____ C:\WINDOWS\System32\Tasks\NahimicMSIsvc32Run
      2017-12-01 11:53 - 2017-12-01 11:53 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
      2017-12-01 11:53 - 2017-12-01 11:53 - 000002218 _____ C:\WINDOWS\System32\Tasks\PDVDServ12 Task
      2017-12-01 11:53 - 2017-12-01 11:53 - 000000000 ____D C:\WINDOWS\System32\Tasks\Nero
      2017-12-01 11:53 - 2017-12-01 11:53 - 000000000 ____D C:\WINDOWS\System32\Tasks\MEGA
      2017-12-01 11:53 - 2017-12-01 11:53 - 000000000 ____D C:\WINDOWS\System32\Tasks\Intel
      2017-12-01 11:48 - 2017-12-01 11:48 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
      2017-12-01 11:47 - 2017-12-12 21:53 - 000000000 ____D C:\Users\suzak\AppData\Local\Packages
      2017-12-01 11:47 - 2017-09-29 08:41 - 002241024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
      2017-12-01 11:46 - 2017-12-21 14:10 - 002603918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
      2017-12-01 11:46 - 2017-12-20 00:51 - 000000000 ____D C:\Users\suzak
      2017-12-01 11:46 - 2017-12-01 11:46 - 000000000 _SHDL C:\Users\suzak\Reciente
      2017-12-01 11:46 - 2017-12-01 11:46 - 000000000 _SHDL C:\Users\suzak\Plantillas
      2017-12-01 11:46 - 2017-12-01 11:46 - 000000000 _SHDL C:\Users\suzak\Mis documentos
      2017-12-01 11:46 - 2017-12-01 11:46 - 000000000 _SHDL C:\Users\suzak\Menú Inicio
      2017-12-01 11:46 - 2017-12-01 11:46 - 000000000 _SHDL C:\Users\suzak\Impresoras
      2017-12-01 11:46 - 2017-12-01 11:46 - 000000000 _SHDL C:\Users\suzak\Entorno de red
      2017-12-01 11:46 - 2017-12-01 11:46 - 000000000 _SHDL C:\Users\suzak\Datos de programa
      2017-12-01 11:46 - 2017-12-01 11:46 - 000000000 _SHDL C:\Users\suzak\Configuración local
      2017-12-01 11:46 - 2017-12-01 11:46 - 000000000 _SHDL C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
      2017-12-01 11:46 - 2017-12-01 11:46 - 000000000 _SHDL C:\Users\suzak\AppData\Local\Historial
      2017-12-01 11:46 - 2017-12-01 11:46 - 000000000 _SHDL C:\Users\suzak\AppData\Local\Datos de programa
      2017-12-01 11:46 - 2017-12-01 11:46 - 000000000 _SHDL C:\Users\suzak\AppData\Local\Archivos temporales de Internet
      2017-12-01 11:45 - 2017-07-31 14:28 - 000132208 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
      2017-12-01 11:45 - 2017-07-31 14:28 - 000108656 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
      2017-12-01 11:44 - 2017-12-21 14:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
      2017-12-01 11:44 - 2017-12-21 03:09 - 000751576 _____ C:\WINDOWS\system32\FNTCACHE.DAT
      2017-12-01 05:34 - 2017-12-01 05:40 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
      2017-12-01 05:33 - 2017-12-01 05:34 - 000000000 ____D C:\WINDOWS\ServiceProfiles
      2017-12-01 05:33 - 2017-12-01 05:33 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
      2017-12-01 05:32 - 2017-12-01 05:32 - 021754368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 017159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 017084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 013703168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 013655552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 012829696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 012687360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 011923456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 007831248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 006791472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 006015200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 005615968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 004814848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 004772352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 004648528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 004487968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 004385280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 004249600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 003578368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 003331520 _____ C:\WINDOWS\system32\Windows.Mirage.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 003186688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 003163648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 003010720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002972672 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002890240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002869760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002783744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002717392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002633216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002596352 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 002573208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 002491112 _____ C:\WINDOWS\SysWOW64\Windows.Mirage.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002465848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002446744 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002412168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002395032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002339296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002269080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 002208768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001990160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001970520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001954048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001806336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001694224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001642520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001636376 _____ (Microsoft Corporation)
      C:\WINDOWS\system32\gdi32full.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001615720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001585376 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001558856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001554216 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001507736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001488792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001474680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001463856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001454568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001432816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001425408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001424896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001413760 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
      2017-12-01 05:32 - 2017-12-01 05:32 - 001377080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001323840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001280000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001277848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 001261864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001259344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001208184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 001200536 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 001167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001148216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001124760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001090440 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
      2017-12-01 05:32 - 2017-12-01 05:32 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001054720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001053592 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 001015008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001012120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000975872 _____ C:\WINDOWS\system32\FaceProcessor.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000924136 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000902416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000891800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000840440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9on12.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000823808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000791960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000768512 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000749976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000746904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000739696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000713624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000703568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000703536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000661664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000654048 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000615768 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000612760 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000610712 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000597160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000591872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000590944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000559512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9on12.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000555416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
      2017-12-01 05:32 - 2017-12-01 05:32 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000519152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000506256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000495000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000479912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000474112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000471960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000464408 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000442880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000436120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000428952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000418712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000404888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000398744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000373656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000362176 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe

    4. #4
      Usuario Avatar de DamaRoja
      Registrado
      oct 2009
      Ubicación
      wonderland
      Mensajes
      15

      Re: Ayuda con mail.ru[1]

      2017-12-01 05:32 - 2017-12-01 05:32 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000354200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000353848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000353688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicRuntimes.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000319352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WwaApi.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000285080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000269696 _____ C:\WINDOWS\system32\FaceProcessorCore.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000264040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExecModelClient.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000230296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000198888 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000187288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ContentDeliveryManager.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000149400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000147864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000097792 _____ C:\WINDOWS\system32\runexehelper.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000082840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XblAuthTokenBrokerExt.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acppage.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000060824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\urscx01000.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadjcsp.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcSpecfc.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000048112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdrleakdiag.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000045464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdrleakdiag.exe
      2017-12-01 05:32 - 2017-12-01 05:32 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
      2017-12-01 05:32 - 2017-12-01 05:32 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcVSp1res.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcVSp1res.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
      2017-12-01 05:30 - 2017-12-01 05:40 - 000000000 ____D C:\Program Files (x86)\MSBuild
      2017-12-01 05:30 - 2017-12-01 05:30 - 001166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
      2017-12-01 05:30 - 2017-12-01 05:30 - 000778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
      2017-12-01 05:30 - 2017-12-01 05:30 - 000124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
      2017-12-01 05:30 - 2017-12-01 05:30 - 000103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
      2017-12-01 05:30 - 2017-12-01 05:30 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
      2017-12-01 05:30 - 2017-12-01 05:30 - 000035456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
      2017-12-01 05:30 - 2017-12-01 05:30 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
      2017-12-01 05:30 - 2017-12-01 05:30 - 000000000 ____D C:\Program Files\Reference Assemblies
      2017-12-01 05:30 - 2017-12-01 05:30 - 000000000 ____D C:\Program Files\MSBuild
      2017-12-01 05:30 - 2017-12-01 05:30 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
      2017-12-01 05:25 - 2017-12-01 05:25 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
      2017-12-01 00:14 - 2017-12-01 12:07 - 000000000 ___DC C:\WINDOWS\Panther
      2017-11-25 22:51 - 2017-11-25 22:51 - 000000716 _____ C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bienvenida seminario.lnk

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-12-21 14:10 - 2017-09-30 09:41 - 001105262 _____ C:\WINDOWS\system32\perfh00A.dat
      2017-12-21 14:10 - 2017-09-30 09:41 - 000258678 _____ C:\WINDOWS\system32\perfc00A.dat
      2017-12-21 14:07 - 2016-03-28 19:29 - 000000000 ____D C:\ProgramData\Kaspersky Lab
      2017-12-21 14:06 - 2017-08-20 11:48 - 000000000 ____D C:\ProgramData\NVIDIA
      2017-12-21 14:06 - 2016-03-28 18:49 - 000000000 ___RD C:\Users\suzak\Creative Cloud Files
      2017-12-21 14:06 - 2016-03-28 18:39 - 000000000 ____D C:\Users\suzak\AppData\Local\Adobe
      2017-12-21 14:05 - 2016-03-28 16:40 - 000000000 ___RD C:\Users\suzak\OneDrive
      2017-12-21 14:04 - 2016-03-28 16:36 - 000000000 __SHD C:\Users\suzak\IntelGraphicsProfiles
      2017-12-21 12:55 - 2016-11-24 17:19 - 000000000 ____D C:\Users\suzak\AppData\LocalLow\Mozilla
      2017-12-21 12:10 - 2017-09-29 03:45 - 001572864 _____ C:\WINDOWS\system32\config\BBI
      2017-12-21 10:28 - 2016-05-04 20:24 - 000000000 ____D C:\Users\suzak\AppData\Local\CrashDumps
      2017-12-21 03:17 - 2017-09-29 08:44 - 000000000 ____D C:\WINDOWS\INF
      2017-12-21 03:10 - 2017-09-29 08:46 - 000000000 ___HD C:\Program Files\WindowsApps
      2017-12-21 03:10 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\AppReadiness
      2017-12-21 03:10 - 2016-02-13 12:04 - 000000000 __RHD C:\Users\Public\AccountPictures
      2017-12-21 03:08 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\TextInput
      2017-12-21 03:08 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
      2017-12-21 03:08 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\system32\oobe
      2017-12-21 03:08 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\system32\appraiser
      2017-12-21 03:08 - 2017-09-29 03:45 - 000000000 ____D C:\WINDOWS\system32\Dism
      2017-12-21 02:43 - 2017-09-29 08:37 - 000000000 ____D C:\WINDOWS\CbsTemp
      2017-12-19 14:44 - 2016-11-09 20:14 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2017-12-19 14:34 - 2016-09-21 23:18 - 000000000 ____D C:\Users\suzak\AppData\Local\ConnectedDevicesPlatform
      2017-12-19 14:09 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\system32\NDF
      2017-12-19 12:22 - 2016-11-16 20:41 - 000000000 ____D C:\Users\suzak\Desktop\Mercadolibre
      2017-12-18 20:05 - 2017-09-29 08:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
      2017-12-18 20:02 - 2015-07-17 11:39 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
      2017-12-18 19:45 - 2016-04-10 21:33 - 000000000 ____D C:\Users\suzak\AppData\Roaming\uTorrent
      2017-12-18 19:40 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
      2017-12-18 19:27 - 2016-05-25 23:33 - 000000000 ____D C:\Program Files\CCleaner
      2017-12-18 19:26 - 2017-09-29 03:45 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
      2017-12-18 19:24 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
      2017-12-18 19:24 - 2015-07-10 06:04 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
      2017-12-18 19:11 - 2016-11-24 00:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
      2017-12-18 19:10 - 2016-04-10 21:34 - 000002686 _____ C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
      2017-12-17 01:33 - 2016-07-15 19:07 - 000000000 ____D C:\Users\suzak\AppData\Roaming\obs-studio
      2017-12-15 10:40 - 2016-03-28 19:19 - 000000000 ____D C:\Program Files\Common Files\Adobe
      2017-12-15 10:40 - 2016-03-28 18:48 - 000000000 ____D C:\ProgramData\Adobe
      2017-12-13 00:07 - 2017-04-02 01:25 - 000000000 ____D C:\Users\suzak\AppData\Roaming\discord
      2017-12-13 00:06 - 2017-04-02 01:25 - 000000000 ____D C:\Users\suzak\AppData\Local\Discord
      2017-12-13 00:02 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
      2017-12-13 00:02 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
      2017-12-13 00:02 - 2016-03-29 17:24 - 000000000 ____D C:\WINDOWS\system32\MRT
      2017-12-12 23:57 - 2017-10-10 18:33 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
      2017-12-12 23:57 - 2016-03-29 17:24 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
      2017-12-11 02:10 - 2017-01-21 13:15 - 000000000 ____D C:\Users\suzak\OneDrive\Documentos\Facturas digitales
      2017-12-10 20:13 - 2016-06-11 17:48 - 000000000 ____D C:\Users\suzak\AppData\Local\Nero
      2017-12-10 15:59 - 2016-05-01 14:06 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
      2017-12-10 12:06 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
      2017-12-09 22:49 - 2017-06-29 15:36 - 000000000 ____D C:\Users\suzak\OneDrive\Documentos\Crédito Alexandra
      2017-12-09 03:29 - 2016-05-01 14:06 - 000001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
      2017-12-09 03:29 - 2016-04-07 02:09 - 000000000 ____D C:\Program Files (x86)\Wireshark
      2017-12-08 15:43 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\rescache
      2017-12-06 23:25 - 2016-05-31 19:29 - 000000000 ____D C:\Program Files (x86)\Dropbox
      2017-12-06 02:20 - 2016-03-28 16:40 - 000002401 _____ C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
      2017-12-04 10:45 - 2016-06-12 22:34 - 000545440 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
      2017-12-03 17:38 - 2017-09-29 08:49 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
      2017-12-03 17:38 - 2017-09-29 08:49 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
      2017-12-02 11:27 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\appcompat
      2017-12-01 22:43 - 2016-03-28 22:05 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
      2017-12-01 12:01 - 2017-09-29 08:46 - 000000000 ____D C:\ProgramData\USOPrivate
      2017-12-01 12:00 - 2016-03-29 17:26 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
      2017-12-01 12:00 - 2016-03-29 17:12 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
      2017-12-01 12:00 - 2016-03-28 16:36 - 000000000 ____D C:\Users\suzak\AppData\Local\TileDataLayer
      2017-12-01 11:54 - 2017-09-29 08:46 - 000000000 ____D C:\Program Files\windows nt
      2017-12-01 11:53 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\Registration
      2017-12-01 11:52 - 2017-09-29 08:46 - 000000000 __RSD C:\WINDOWS\media
      2017-12-01 11:52 - 2016-03-22 01:56 - 000023064 _____ C:\WINDOWS\system32\emptyregdb.dat
      2017-12-01 11:50 - 2017-08-28 19:27 - 000000000 ____D C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
      2017-12-01 11:50 - 2017-08-22 23:12 - 000000000 ____D C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intel XDK
      2017-12-01 11:50 - 2016-10-30 01:50 - 000000000 ____D C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome
      2017-12-01 11:50 - 2016-09-04 17:12 - 000000000 ____D C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.4
      2017-12-01 11:50 - 2016-08-29 23:16 - 000000000 ____D C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BlueJ
      2017-12-01 11:50 - 2016-08-16 19:00 - 000000000 ____D C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Stencyl
      2017-12-01 11:50 - 2016-04-05 18:21 - 000000000 ____D C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.5
      2017-12-01 11:50 - 2016-04-02 20:44 - 000000000 ____D C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
      2017-12-01 11:50 - 2016-03-30 23:03 - 000000000 ____D C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
      2017-12-01 11:50 - 2016-03-28 22:51 - 000000000 ____D C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
      2017-12-01 11:48 - 2017-09-29 08:46 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
      2017-12-01 11:47 - 2017-04-02 01:25 - 000000000 ____D C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
      2017-12-01 11:46 - 2017-09-29 03:45 - 000000000 ____D C:\WINDOWS\system32\Sysprep
      2017-12-01 11:46 - 2017-08-20 11:48 - 001974174 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
      2017-12-01 11:46 - 2017-08-20 11:48 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
      2017-12-01 11:46 - 2017-08-20 11:48 - 000000000 ____D C:\WINDOWS\system32\DAX2
      2017-12-01 11:46 - 2017-08-20 11:48 - 000000000 ____D C:\Program Files\NVIDIA Corporation
      2017-12-01 11:46 - 2017-08-20 11:48 - 000000000 ____D C:\Program Files (x86)\Razer
      2017-12-01 11:45 - 2017-08-20 11:47 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
      2017-12-01 05:44 - 2017-09-29 08:46 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
      2017-12-01 05:40 - 2017-10-03 17:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mendeley Desktop
      2017-12-01 05:40 - 2017-09-30 09:41 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
      2017-12-01 05:40 - 2017-09-30 09:41 - 000000000 ____D C:\WINDOWS\system32\WCN
      2017-12-01 05:40 - 2017-09-29 08:49 - 000000000 ____D C:\WINDOWS\Setup
      2017-12-01 05:40 - 2017-09-29 08:46 - 000000000 __RHD C:\Users\Public\Libraries
      2017-12-01 05:40 - 2017-09-29 08:46 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
      2017-12-01 05:40 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
      2017-12-01 05:40 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\system32\spool
      2017-12-01 05:40 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\Help
      2017-12-01 05:40 - 2017-09-29 08:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
      2017-12-01 05:40 - 2017-08-20 11:47 - 000000000 ____D C:\Program Files\Intel
      2017-12-01 05:40 - 2017-08-05 20:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PenTabletDriver
      2017-12-01 05:40 - 2017-07-25 02:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
      2017-12-01 05:40 - 2017-07-12 00:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
      2017-12-01 05:40 - 2017-07-06 21:42 - 000000000 ____D C:\Program Files\UNP
      2017-12-01 05:40 - 2017-06-05 13:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WTFast
      2017-12-01 05:40 - 2017-05-09 21:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vensim
      2017-12-01 05:40 - 2017-03-26 00:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
      2017-12-01 05:40 - 2017-03-19 00:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
      2017-12-01 05:40 - 2017-03-18 23:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
      2017-12-01 05:40 - 2017-03-18 16:03 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
      2017-12-01 05:40 - 2017-03-12 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameMaker Studio 2
      2017-12-01 05:40 - 2017-01-18 00:43 - 000000000 ____D C:\WINDOWS\SysWOW64\GPBAK
      2017-12-01 05:40 - 2017-01-01 15:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 5.5.0f3 (64-bit)
      2017-12-01 05:40 - 2016-12-06 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arduino Create Agent
      2017-12-01 05:40 - 2016-11-16 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registro de usuario de Canon G3000 series
      2017-12-01 05:40 - 2016-11-16 17:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon G3000 series Manual
      2017-12-01 05:40 - 2016-10-27 00:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cyberduck
      2017-12-01 05:40 - 2016-10-26 14:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDFormatter
      2017-12-01 05:40 - 2016-10-12 23:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Greenfoot
      2017-12-01 05:40 - 2016-10-07 23:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 3.5
      2017-12-01 05:40 - 2016-09-22 01:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
      2017-12-01 05:40 - 2016-09-10 14:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote
      2017-12-01 05:40 - 2016-09-04 17:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameMaker Player
      2017-12-01 05:40 - 2016-08-30 22:18 - 000000000 ____D C:\WINDOWS\SysWOW64\SysWow
      2017-12-01 05:40 - 2016-08-23 19:37 - 000000000 ____D C:\WINDOWS\system32\STRING
      2017-12-01 05:40 - 2016-08-17 23:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSPad editor
      2017-12-01 05:40 - 2016-07-15 19:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
      2017-12-01 05:40 - 2016-07-11 23:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
      2017-12-01 05:40 - 2016-06-29 00:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
      2017-12-01 05:40 - 2016-05-25 23:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
      2017-12-01 05:40 - 2016-05-25 23:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
      2017-12-01 05:40 - 2016-05-04 21:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair Utility Engine
      2017-12-01 05:40 - 2016-05-02 00:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Flash Builder 4.7
      2017-12-01 05:40 - 2016-04-24 20:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit
      2017-12-01 05:40 - 2016-04-07 17:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Screencast-O-Matic v2.0
      2017-12-01 05:40 - 2016-04-07 02:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
      2017-12-01 05:40 - 2016-04-05 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
      2017-12-01 05:40 - 2016-03-30 22:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
      2017-12-01 05:40 - 2016-03-30 16:55 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
      2017-12-01 05:40 - 2016-03-29 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
      2017-12-01 05:40 - 2016-03-29 17:31 - 000000000 ____D C:\Program Files\IIS
      2017-12-01 05:40 - 2016-03-29 17:16 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
      2017-12-01 05:40 - 2016-03-29 17:12 - 000000000 ____D C:\WINDOWS\system32\1033
      2017-12-01 05:40 - 2016-03-29 00:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Gaming SDK 1.4
      2017-12-01 05:40 - 2016-03-28 22:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
      2017-12-01 05:40 - 2016-03-28 22:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBeans
      2017-12-01 05:40 - 2016-03-28 22:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
      2017-12-01 05:40 - 2016-03-28 22:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
      2017-12-01 05:40 - 2016-03-28 20:58 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
      2017-12-01 05:40 - 2016-03-28 19:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2016
      2017-12-01 05:40 - 2016-03-28 19:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
      2017-12-01 05:40 - 2016-03-28 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office 2016
      2017-12-01 05:40 - 2015-08-24 17:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
      2017-12-01 05:40 - 2015-08-24 17:46 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 12
      2017-12-01 05:40 - 2015-08-24 17:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BurnRecovery
      2017-12-01 05:40 - 2015-08-24 17:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nahimic for MSI
      2017-12-01 05:40 - 2015-08-24 17:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI True Color
      2017-12-01 05:40 - 2015-08-24 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
      2017-12-01 05:40 - 2015-08-24 17:13 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
      2017-12-01 05:40 - 2015-08-24 17:08 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
      2017-12-01 05:40 - 2015-08-24 17:02 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
      2017-12-01 05:34 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\OCR
      2017-12-01 05:34 - 2017-09-30 09:41 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
      2017-12-01 05:34 - 2017-09-30 09:41 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
      2017-12-01 05:34 - 2017-09-30 09:41 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
      2017-12-01 05:34 - 2017-09-30 09:41 - 000000000 ____D C:\WINDOWS\system32\winrm
      2017-12-01 05:34 - 2017-09-30 09:41 - 000000000 ____D C:\WINDOWS\system32\slmgr
      2017-12-01 05:34 - 2017-09-30 09:41 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
      2017-12-01 05:34 - 2017-09-29 08:46 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
      2017-12-01 05:34 - 2017-09-29 08:46 - 000000000 ___SD C:\WINDOWS\system32\F12
      2017-12-01 05:34 - 2017-09-29 08:46 - 000000000 ___SD C:\WINDOWS\system32\dsc
      2017-12-01 05:34 - 2017-09-29 08:46 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
      2017-12-01 05:34 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
      2017-12-01 05:34 - 2017-09-29 08:46 - 000000000 ____D C:\Program Files\Windows Photo Viewer
      2017-12-01 05:34 - 2017-09-29 08:46 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
      2017-12-01 05:34 - 2017-08-20 11:48 - 000000000 ____D C:\Program Files\Realtek
      2017-12-01 05:34 - 2017-08-20 11:47 - 000000000 ____D C:\Program Files\Synaptics
      2017-12-01 05:34 - 2016-10-19 02:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\High-Logic
      2017-12-01 05:34 - 2016-08-23 19:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
      2017-12-01 05:34 - 2016-06-29 00:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
      2017-12-01 05:34 - 2016-05-31 18:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
      2017-12-01 05:34 - 2016-03-29 17:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
      2017-12-01 05:34 - 2016-03-29 17:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
      2017-12-01 05:34 - 2015-08-24 17:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
      2017-12-01 05:34 - 2015-08-24 17:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Networking
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\tk-TM
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\sw-KE
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\si-LK
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\prs-AF
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\mn-MN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\ky-KG
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-BD
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\yo-NG
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\wo-SN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\vi-VN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\ur-PK
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\ug-CN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\tt-RU
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\tk-TM
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\ti-ET
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\te-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\ta-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\sw-KE
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\sq-AL
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\si-LK
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\rw-RW
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\quz-PE
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\prs-AF
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\pa-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\or-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\nn-NO
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\ne-NP
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\mt-MT
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\mr-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\mn-MN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\ml-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\mk-MK
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\lo-LA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\lb-LU
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\ky-KG
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\kok-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\kn-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\km-KH
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\ka-GE
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\is-IS
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\ig-NG
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\id-ID
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\hy-AM
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\gu-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\gd-GB
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\ga-IE
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\fil-PH
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\fa-IR
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\cy-GB
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\bn-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\bn-BD
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\be-BY
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\as-IN
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\am-ET
      2017-12-01 05:32 - 2017-09-30 09:42 - 000000000 ____D C:\WINDOWS\system32\af-ZA
      2017-12-01 05:32 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
      2017-12-01 05:32 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
      2017-12-01 05:32 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
      2017-12-01 05:32 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
      2017-12-01 05:32 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\Provisioning
      2017-12-01 05:32 - 2017-09-29 08:46 - 000000000 ____D C:\Program Files\Windows Defender
      2017-12-01 05:32 - 2017-09-29 08:46 - 000000000 ____D C:\PerfLogs
      2017-12-01 05:30 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
      2017-12-01 05:30 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\system32\MUI
      2017-12-01 05:29 - 2017-09-29 08:46 - 000000000 ____D C:\WINDOWS\system32\es-MX

      ==================== Files in the root of some directories =======

      2016-03-31 01:16 - 2017-11-19 03:06 - 000000033 _____ () C:\Users\suzak\AppData\Roaming\AdobeWLCMCache.dat
      2016-10-27 00:45 - 2016-10-27 00:45 - 000000600 _____ () C:\Users\suzak\AppData\Roaming\winscp.rnd
      2016-10-27 00:46 - 2016-10-27 00:46 - 000000600 _____ () C:\Users\suzak\AppData\Local\PUTTY.RND
      2017-02-12 15:42 - 2017-02-12 15:42 - 000007605 _____ () C:\Users\suzak\AppData\Local\Resmon.ResmonCfg
      2016-10-07 23:43 - 2016-10-07 23:47 - 000019456 _____ () C:\Users\suzak\AppData\Local\WebpageIcons.db

      Some files in TEMP:
      ====================
      2017-12-21 03:31 - 2017-12-01 05:32 - 001954048 _____ (Microsoft Corporation) C:\Users\suzak\AppData\Local\Temp\dllnt_dump.dll

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\WINDOWS\system32\winlogon.exe => File is digitally signed
      C:\WINDOWS\system32\wininit.exe => File is digitally signed
      C:\WINDOWS\explorer.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
      C:\WINDOWS\system32\svchost.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
      C:\WINDOWS\system32\services.exe => File is digitally signed
      C:\WINDOWS\system32\User32.dll => File is digitally signed
      C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
      C:\WINDOWS\system32\userinit.exe => File is digitally signed
      C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
      C:\WINDOWS\system32\rpcss.dll => File is digitally signed
      C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
      C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
      C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2017-12-15 23:27

      ==================== End of FRST.txt ============================

    5. #5
      Usuario Avatar de DamaRoja
      Registrado
      oct 2009
      Ubicación
      wonderland
      Mensajes
      15

      Re: Ayuda con mail.ru[1]

      Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-12-2017
      Ran by suzak (21-12-2017 14:36:22)
      Running from C:\Users\suzak\Desktop
      Windows 10 Home Version 1709 16299.125 (X64) (2017-12-01 16:55:10)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-2902873080-3869711474-3520166863-500 - Administrator - Disabled)
      DefaultAccount (S-1-5-21-2902873080-3869711474-3520166863-503 - Limited - Disabled)
      Invitado (S-1-5-21-2902873080-3869711474-3520166863-501 - Limited - Disabled)
      suzak (S-1-5-21-2902873080-3869711474-3520166863-1001 - Administrator - Enabled) => C:\Users\suzak
      WDAGUtilityAccount (S-1-5-21-2902873080-3869711474-3520166863-504 - Limited - Disabled)

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
      AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
      AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
      AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
      AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      . . (HKLM\...\{12B07FF1-29CB-45AC-B493-1DB88BE717BD}) (Version: 7.1 - Intel) Hidden
      . . . (HKLM-x32\...\{C01175B6-6575-4526-A55B-2BC2F10BA083}) (Version: 2.7.2.4 - Intel) Hidden
      µTorrent (HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\uTorrent) (Version: 3.4.6.42178 - BitTorrent Inc.)
      7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
      Actualización de NVIDIA 29.1.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 29.1.0.0 - NVIDIA Corporation) Hidden
      Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated)
      Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 26.0.0.127 - Adobe Systems Incorporated)
      Adobe Animate CC 2018 (HKLM-x32\...\FLPR_18_0) (Version: 18.0 - Adobe Systems Incorporated)
      Adobe Audition CC 2018 (HKLM-x32\...\AUDT_11_0_0) (Version: 11.0.0 - Adobe Systems Incorporated)
      Adobe Character Animator CC (Beta) (HKLM-x32\...\ANMLBETA_1_0_6) (Version: 1.0.6 - Adobe Systems Incorporated)
      Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.3.0.256 - Adobe Systems Incorporated)
      Adobe Dreamweaver CC 2018 (HKLM-x32\...\DRWV_18_0) (Version: 18.0 - Adobe Systems Incorporated)
      Adobe Flash Builder 4.7 (64 Bit) (HKLM-x32\...\{848DE8E1-521D-4748-A158-517708107EF3}) (Version: 4.7 - Adobe Systems Incorporated)
      Adobe Flash Player 28 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 28.0.0.126 - Adobe Systems Incorporated)
      Adobe Gaming SDK 1.4 (HKLM-x32\...\{2316BC3C-61AD-4289-8702-9DF0DFCA08ED}) (Version: 1.4 - Adobe Systems Incorporated)
      Adobe Illustrator CC 2018 (HKLM-x32\...\ILST_22_0_1) (Version: 22.0.1 - Adobe Systems Incorporated)
      Adobe Media Encoder CC 2018 (HKLM-x32\...\AME_12_0_0) (Version: 12.0.0 - Adobe Systems Incorporated)
      Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_0_1) (Version: 19.0.1 - Adobe Systems Incorporated)
      Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_0_0) (Version: 12.0.0 - Adobe Systems Incorporated)
      Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.05 - NVIDIA Corporation) Hidden
      Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{D25C9EDD-984F-444C-9229-5A58130C6B10}) (Version: 4.3.60226.3 - Microsoft Corporation)
      Arduino (HKLM-x32\...\Arduino) (Version: 1.6.8 - Arduino LLC)
      arduino-create-agent (HKLM-x32\...\arduino-create-agent 1.1) (Version: 1.1 - Arduino LLC)
      Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.26.1 - Asmedia Technology)
      aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
      Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
      AudioFXSetup (HKLM\...\{CA71D991-AA7D-4055-B344-87BD275DC8A9}) (Version: 1.2.601 - Nahimic) Hidden
      Azure AD Authentication Connected Service (HKLM-x32\...\{3FEAC561-1CF6-41D6-B0F3-BECDD9C88A1B}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
      AzureTools.Notifications (HKLM-x32\...\{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
      Battery Calibration (HKLM-x32\...\{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1508.1001 - Micro-Star International Co., Ltd.) Hidden
      Battery Calibration (HKLM-x32\...\InstallShield_{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1508.1001 - Micro-Star International Co., Ltd.)
      Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden
      BlueJ (HKLM-x32\...\{7D66971C-652B-4065-A6B1-B3EE313C254B}) (Version: 3.1.7 - BlueJ Team)
      Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Hidden
      Boot Configure (HKLM-x32\...\{DCC0B140-2270-4DD4-BE3C-236576371003}) (Version: 20.015.08113 - Micro-Star International Co., Ltd.)
      BurnRecovery (HKLM-x32\...\{92A6B009-1343-4C44-AFB1-8849137CA3F0}) (Version: 5.0.1507.1901 - Application) Hidden
      BurnRecovery (HKLM-x32\...\InstallShield_{92A6B009-1343-4C44-AFB1-8849137CA3F0}) (Version: 5.0.1507.1901 - Application)
      Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.7.0 - Canon Inc.)
      Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
      Canon G3000 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_G3000_series) (Version: 1.01 - Canon Inc.)
      Canon G3000 series On-screen Manual (HKLM-x32\...\Canon G3000 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
      Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.)
      Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.)
      Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
      Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.5.1 - Canon Inc.)
      Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.5.0 - Canon Inc.)
      Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
      Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.7.1 - Canon Inc.)
      CCleaner (HKLM\...\CCleaner) (Version: 5.38 - Piriform)
      CheckDevicesConfigurator (HKLM\...\{18C113DD-076A-4628-B6FB-4F96FB8B086C}) (Version: 1.2.601 - Nahimic) Hidden
      Cisco Packet Tracer 7.0 64Bit (HKLM\...\Cisco Packet Tracer 7.0 64Bit_is1) (Version: - Cisco Systems, Inc.)
      Construct 2 r249 (HKLM\...\Construct 2_is1) (Version: 1.0.249.0 - Scirra)
      Corsair Utility Engine (HKLM-x32\...\{46A3EEB3-8F6F-4BC4-9A53-CDE33D089D08}) (Version: 1.16.42 - Corsair)
      Cyberduck (HKLM-x32\...\{15C76DE3-B7DA-4C65-86C6-8F835C7D51E6}) (Version: 5.2.0.21317 - iterate GmbH) Hidden
      Cyberduck (HKLM-x32\...\{1abf4202-2108-4733-b0f6-debd1c41734a}) (Version: 5.2.0.21317 - iterate GmbH)
      CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5307.55 - CyberLink Corp.)
      Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
      Discord (HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\Discord) (Version: 0.0.299 - Discord Inc.)
      Dotfuscator and Analytics Community Edition 5.19.0 (HKLM-x32\...\{4C5B1DD0-7E8E-4972-9247-818E6D030552}) (Version: 5.19.0.2930 - PreEmptive Solutions) Hidden
      Dragon Gaming Center (HKLM-x32\...\{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 1.0.1501.2801 - Micro-Star International Co., Ltd.) Hidden
      Dragon Gaming Center (HKLM-x32\...\InstallShield_{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 1.0.1501.2801 - Micro-Star International Co., Ltd.)
      Dropbox (HKLM-x32\...\Dropbox) (Version: 40.4.46 - Dropbox, Inc.)
      Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
      Entity Framework 6.1.3 Tools for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation)
      Evernote v. 6.2.4 (HKLM-x32\...\{1F000A98-5FF1-11E6-8BF2-0050569584E9}) (Version: 6.2.4.3244 - Evernote Corp.)
      FontCreator 5.6 (HKLM-x32\...\FontCreator55_is1) (Version: - High-Logic)
      Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
      GameMaker Studio 2 (HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\GameMakerStudio2) (Version: - )
      GameMaker: Player (HKLM-x32\...\GameMakerPlayer) (Version: 1.4.1242.41000 - YoYo Games Ltd.)
      GameMaker-Studio 1.4 (HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\GameMaker-Studio14) (Version: - YoYo Games Ltd.)
      Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.108 - Google Inc.)
      Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
      Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.115 - Google Inc.) Hidden
      gpedt.msc 1.0 (HKLM-x32\...\{10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1) (Version: - Richard)
      Greenfoot (HKLM-x32\...\{86AC1814-F19C-4291-B79C-339CD3BE8550}) (Version: 3.0.4 - Greenfoot Team)
      Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.)
      Help Desk (HKLM-x32\...\{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 1.0.1508.1802 - Micro-Star International Co., Ltd.) Hidden
      Help Desk (HKLM-x32\...\InstallShield_{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 1.0.1508.1802 - Micro-Star International Co., Ltd.)
      IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation)
      IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - )
      IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - )
      Intel XDK (HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\ARP_for_prd_xdk_0.0.3987) (Version: 0.0.3987 - Intel Corporation)
      Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
      Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
      Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4380 - Intel Corporation)
      Intel(R) Product Improvement Program (HKLM-x32\...\{59801D62-FD8D-45AD-865D-6FC80C4C70DF}) (Version: 2.1.26 - Intel) Hidden
      Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.6.0.1029 - Intel Corporation)
      Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{5068B0F8-CE24-4B61-9C2F-301B411FFB9C}) (Version: 18.1.1611.3223 - Intel Corporation)
      Intel® Driver Update Utility (HKLM-x32\...\{954190cd-c66c-4650-bd15-f3dd85f2ae15}) (Version: 2.7.2.4 - Intel)
      Intel® PROSet/Wireless Software (HKLM-x32\...\{d5572863-793c-4ec8-872a-43cccc68b948}) (Version: 18.40.0 - Intel Corporation)
      Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
      Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
      Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
      Java SE Development Kit 7 Update 80 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0170800}) (Version: 1.7.0.800 - Oracle)
      Java SE Development Kit 8 Update 101 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180101}) (Version: 8.0.1010.13 - Oracle Corporation)
      JetBrains PyCharm Community Edition 2016.2 (HKLM-x32\...\PyCharm Community Edition 2016.2) (Version: 162.1237.1 - JetBrains s.r.o.)
      Kaspersky Internet Security (HKLM-x32\...\{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab) Hidden
      Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
      Kaspersky Secure Connection (HKLM-x32\...\{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab) Hidden
      Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
      KB9X Radio Switch Driver (HKLM\...\EC950B206B0E7722C96A318DF396BABFBB057BC0) (Version: 1.1.2.0 - ENE TECHNOLOGY INC.)
      Killer Bandwidth Control Filter Driver (HKLM\...\{17C67C84-E2A8-4443-993B-67C22EB9D4F5}) (Version: 1.1.54.1506 - Rivet Networks) Hidden
      Killer E240x Drivers (HKLM\...\{3AAE1523-FA87-456C-BD0E-165079DF5B8F}) (Version: 1.1.54.1506 - Rivet Networks) Hidden
      Killer Network Manager (HKLM\...\{E7DD97D5-B360-485B-BE49-7BBBE6FC87E6}) (Version: 1.1.54.1506 - Rivet Networks) Hidden
      Killer Performance Suite (HKLM-x32\...\{8565EDAB-EAE0-40A7-8553-5BEB1AC2051D}) (Version: 1.1.54.1506 - Rivet Networks)
      LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
      LauncherSetup (HKLM\...\{4F896CB5-C178-4414-BAF4-C4894082B91B}) (Version: 1.2.601 - Nahimic) Hidden
      League of Legends (HKLM-x32\...\{B0940880-4AC5-49F3-965E-AC0B1F712B3F}) (Version: 3.0.1 - Riot Games) Hidden
      League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
      LoLSkinsViewer 1.1.2 (only current user) (HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\274ec92e-0737-549c-ad66-743249d6c333) (Version: 1.1.2 - S. Coimbra)
      MAGIX Speed burnR (MSI) (HKLM\...\{FD98240D-B8A2-4203-8895-60DFE2749CAC}) (Version: 7.0.1.27 - MAGIX Software GmbH) Hidden
      MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{FD98240D-B8A2-4203-8895-60DFE2749CAC}) (Version: 7.0.1.27 - MAGIX Software GmbH)
      MAGIX Video deluxe 2016 (HKLM\...\{C10175A8-0C67-42B8-B3B9-DAF7CA523AED}) (Version: 15.0.0.90 - MAGIX Software GmbH) Hidden
      MAGIX Video deluxe 2016 (HKLM\...\MX.{C10175A8-0C67-42B8-B3B9-DAF7CA523AED}) (Version: 15.0.0.90 - MAGIX Software GmbH)
      Malwarebytes versión 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
      MATLAB Production Server R2015a (HKLM\...\MATLAB Production Server R2015a) (Version: 2.1 - MathWorks)
      Mendeley Desktop 1.17.11 (HKLM-x32\...\Mendeley Desktop) (Version: 1.17.11 - Mendeley Ltd.)
      Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
      Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
      Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
      Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
      Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
      Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
      Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
      Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation)
      Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
      Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
      Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
      Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
      Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
      Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.24720 - Microsoft Corporation)
      Microsoft Office 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.8730.2127 - Microsoft Corporation)
      Microsoft Office 365 ProPlus - es-es (HKLM\...\O365ProPlusRetail - es-es) (Version: 16.0.8730.2127 - Microsoft Corporation)
      Microsoft OneDrive (HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\OneDriveSetup.exe) (Version: 17.3.7131.1115 - Microsoft Corporation)
      Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
      Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation)
      Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
      Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
      Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
      Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
      Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
      Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
      Microsoft SQL Server Data Tools - enu (14.0.50616.0) (HKLM-x32\...\{58246C80-3941-4B69-AE31-264644E2ADB8}) (Version: 14.0.50616.0 - Microsoft Corporation)
      Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
      Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
      Microsoft Visio Profesional 2016 - es-es (HKLM\...\VisioProRetail - es-es) (Version: 16.0.8730.2127 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{5c75eda4-d029-43bf-a70b-a73d380f52ee}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{246dcb72-b18c-4ab9-9de9-8a996296b01d}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
      Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
      Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
      Microsoft Visual Studio Community 2015 with Update 1 (HKLM-x32\...\{1d03ad7c-fa27-4517-91b0-410bb49f94d9}) (Version: 14.0.24720.1 - Microsoft Corporation)
      Microsoft Web Deploy 3.6 (HKLM\...\{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}) (Version: 3.1238.1955 - Microsoft Corporation)
      Mozilla Firefox 57.0.2 (x64 es-ES) (HKLM\...\Mozilla Firefox 57.0.2 (x64 es-ES)) (Version: 57.0.2 - Mozilla)
      Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0.2 - Mozilla)
      MSBuild/NuGet Integration 14.0 (x86) (HKLM-x32\...\{FA0599C5-C083-41BE-8AEA-E8EB9070D128}) (Version: 14.0.24720 - Microsoft Corporation) Hidden
      MSI Remind Manager (HKLM-x32\...\{3E23F267-3E35-40F9-B6BF-BC034D214717}) (Version: 1.0.1508.1001 - Micro-Star International Co., Ltd.) Hidden
      MSI Remind Manager (HKLM-x32\...\InstallShield_{3E23F267-3E35-40F9-B6BF-BC034D214717}) (Version: 1.0.1508.1001 - Micro-Star International Co., Ltd.)
      MSI Social Media Collection (HKLM-x32\...\{7ADEC426-BE95-48EF-84D4-086BD0F4D331}) (Version: 1.14.2251 - Micro-Star International Co., Ltd.)
      MSI True Color (HKLM\...\{B4A2776D-59CD-4193-A19D-DE15CB7FC5AA}) (Version: 1.4.546 - Portrait Displays, Inc.)
      MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
      Multi-Device Hybrid Apps using C# - Templates - ENU (HKLM-x32\...\{12D99739-FFD3-3761-8AA6-F929E0FE407E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
      Nahimic for MSI (HKLM-x32\...\{673cb810-3f70-4219-b86f-224ca006d6fd}) (Version: 1.2.6 - Nahimic)
      NahimicSettingsConfigurator (HKLM\...\{B0F7C50F-9639-4EF4-ABAD-5AB7FDBB7EEB}) (Version: 1.2.601 - Nahimic) Hidden
      Nero 2016 (HKLM-x32\...\{9AFD4E43-C353-40B8-BDC6-6A80F66FA142}) (Version: 17.0.01500 - Nero AG)
      Nero CoverDesigner (HKLM-x32\...\{B883AD17-9276-4F35-82D9-E314EFB66CFC}) (Version: 17.0.00300 - Nero AG)
      Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2003 - Nero AG)
      Nero Prerequisite Installer 6.0 (HKLM-x32\...\{E5BAA2DF-F586-4319-BF9B-30AA50AD6B5D}) (Version: 18.0.00100 - Nero AG)
      Nero SoundTrax (HKLM-x32\...\{0704A6F3-6285-49D9-B2EA-77DF28D002D7}) (Version: 14.0.00800 - Nero AG)
      Nero WaveEditor (HKLM-x32\...\{D0656D0B-9712-45BD-9243-21FEBF5B05E5}) (Version: 14.0.00600 - Nero AG)
      NetBeans IDE 8.0.2 (HKLM-x32\...\nbi-nb-base-8.0.2.0.201411181905) (Version: 8.0.2 - NetBeans.org)
      Ninja 2.3 (HKLM-x32\...\Ninja) (Version: 2.3 - )
      NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation)
      NVIDIA Software del sistema PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
      NW.js v0.22.0 for Construct 2 (HKLM\...\NW.js for Construct 2_is1) (Version: 1.0.22.0 - Scirra)
      OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.1.0 - OBS Project)
      Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8730.2127 - Microsoft Corporation) Hidden
      Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8730.2127 - Microsoft Corporation) Hidden
      Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8730.2127 - Microsoft Corporation) Hidden
      Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.8730.2127 - Microsoft Corporation) Hidden
      Panel de control de NVIDIA 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.05 - NVIDIA Corporation) Hidden
      Paquete de controladores de Windows - Graphics Tablet (WinUsb) USBDevice (04/10/2014 8.33.30.0) (HKLM\...\142118DF51345EA02D2B1583E102C8FB95FD6D52) (Version: 04/10/2014 8.33.30.0 - Graphics Tablet)
      PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
      Prerequisite installer (HKLM-x32\...\{3AAB08A3-F129-4BD5-B409-AE674F93759D}) (Version: 12.0.0010 - Nero AG) Hidden
      Prerequisite installer (HKLM-x32\...\{5F284483-EE8D-447E-BEBE-2BF13B08C4BF}) (Version: 17.0.0002 - Nero AG) Hidden
      Prerequisite installer (HKLM-x32\...\{EB511CD1-C87C-490D-A7B1-D6C47F57820F}) (Version: 18.0.0003 - Nero AG) Hidden
      Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
      ProductDaemonSetup (HKLM\...\{71CA8CA1-54A4-412A-84EE-4BAF16AA176E}) (Version: 1.2.601 - Nahimic) Hidden
      PS TO PC CONVERTER (HKLM-x32\...\{A483F88A-41E9-45B2-AAC9-A823DD9B4873}) (Version: 2007.01.01 - )
      PSeInt (HKLM-x32\...\PSeInt) (Version: - )
      PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.6.1.2730 - Jan Fiala)
      Python 3.5.0a3 (64-bit) (HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\{32552d1b-eb1c-419e-823e-976a243acc4c}) (Version: 3.5.103.0 - Python Software Foundation)
      Python 3.5.0a3 C Runtime (64-bit) (HKLM\...\{3AC6D2B8-2FA5-48F3-909A-11CD728BFE02}) (Version: 3.5.103.0 - Python Software Foundation) Hidden
      Python 3.5.0a3 Core Interpreter (64-bit) (HKLM\...\{D2CCA6C8-9023-44A9-A583-4BDF7ED52EB0}) (Version: 3.5.103.0 - Python Software Foundation) Hidden
      Python 3.5.0a3 Development Libraries (64-bit) (HKLM\...\{6B1D2FA5-A623-4D18-826D-1C15355AD822}) (Version: 3.5.103.0 - Python Software Foundation) Hidden
      Python 3.5.0a3 Documentation (64-bit) (HKLM\...\{DA88E53C-DA46-45AA-BBDC-4B5C6EBDC9DF}) (Version: 3.5.103.0 - Python Software Foundation) Hidden
      Python 3.5.0a3 Executables (64-bit) (HKLM\...\{BD0D9DDA-582C-4263-BA26-D0666DC125B4}) (Version: 3.5.103.0 - Python Software Foundation) Hidden
      Python 3.5.0a3 Launcher (32-bit) (HKLM-x32\...\{4B18F369-0A13-4687-BD18-8A9125FDF4B8}) (Version: 3.5.103.0 - Python Software Foundation) Hidden
      Python 3.5.0a3 pip Bootstrap (64-bit) (HKLM\...\{70105679-5275-49EF-8098-629AB4E14F63}) (Version: 3.5.103.0 - Python Software Foundation) Hidden
      Python 3.5.0a3 Standard Library (64-bit) (HKLM\...\{6705FD92-BE3C-40FD-818F-690EC53B8B43}) (Version: 3.5.103.0 - Python Software Foundation) Hidden
      Python 3.5.0a3 Tcl/Tk Support (64-bit) (HKLM\...\{714A081F-C5CD-4A1E-BFAA-690441FC3360}) (Version: 3.5.103.0 - Python Software Foundation) Hidden
      Python 3.5.0a3 Test Suite (64-bit) (HKLM\...\{CE6FEE3C-8EB7-4E90-81D3-43400EFAA376}) (Version: 3.5.103.0 - Python Software Foundation) Hidden
      Python 3.5.0a3 Utility Scripts (64-bit) (HKLM\...\{ED55465F-9DE9-43BF-BA2E-4CFD507F547A}) (Version: 3.5.103.0 - Python Software Foundation) Hidden
      Python 3.5.1 (32-bit) (HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\{c39d559b-aa83-4476-ba20-988a35a1199a}) (Version: 3.5.1150.0 - Python Software Foundation)
      Python 3.5.1 Core Interpreter (32-bit) (HKLM-x32\...\{7665C66D-78C4-4B30-B4B9-8DD484403532}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
      Python 3.5.1 Development Libraries (32-bit) (HKLM-x32\...\{2B2FED36-5D63-411A-A8C4-E311D70BCF33}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
      Python 3.5.1 Documentation (32-bit) (HKLM-x32\...\{77EEC303-714C-4290-AF63-5252FDB5D7C8}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
      Python 3.5.1 Executables (32-bit) (HKLM-x32\...\{946BBA68-EDC0-4981-83D3-09592B9A84FA}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
      Python 3.5.1 Launcher (32-bit) (HKLM-x32\...\{17778F7B-FB5A-4A93-9719-D75BAF673498}) (Version: 3.5.150.0 - Python Software Foundation)
      Python 3.5.1 pip Bootstrap (32-bit) (HKLM-x32\...\{4F29879C-940D-4599-8CEC-407579F73DF7}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
      Python 3.5.1 Standard Library (32-bit) (HKLM-x32\...\{65A2F7DA-ACD7-4EC1-8A88-665D535D9CE7}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
      Python 3.5.1 Tcl/Tk Support (32-bit) (HKLM-x32\...\{C387DB53-A25F-49E3-8DF7-94F47E5A7921}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
      Python 3.5.1 Test Suite (32-bit) (HKLM-x32\...\{FA87440D-634A-4581-AD9C-C6FA859B88DD}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
      Python 3.5.1 Utility Scripts (32-bit) (HKLM-x32\...\{9254A29B-0F60-444C-B5CE-DB7E2505474C}) (Version: 3.5.1150.0 - Python Software Foundation) Hidden
      Python 3.6.3 (Anaconda3 5.0.1 64-bit) (HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\Python 3.6.3 (Anaconda3 5.0.1 64-bit)) (Version: 5.0.1 - Anaconda, Inc.)
      Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 7.6.8.66 - Razer Inc.)
      Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.00.721 - Razer Inc.)
      Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.31213 - Realtek Semiconductor Corp.)
      Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7576 - Realtek Semiconductor Corp.)
      Registro de usuario de Canon G3000 series (HKLM-x32\...\Registro de usuario de Canon G3000 series) (Version: - *Canon Inc.)
      RogueKiller version 12.11.29.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.11.29.0 - Adlice Software)
      Roslyn Language Services - x86 (HKLM-x32\...\{3107684C-8011-3031-BD28-10CA30F58267}) (Version: 14.0.24730 - Microsoft Corporation) Hidden
      Roslyn Language Services - x86 (HKLM-x32\...\{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
      SCM (HKLM\...\{D663EE0C-E249-4071-B9BE-AF6A9E9BF1C9}) (Version: 13.015.07154 - Application)
      Scratch 2 Offline Editor (HKLM-x32\...\{0C26944B-94CF-F315-D5E3-2E7186A3CCF9}) (Version: 255.0.4 - Massachusetts Institute of Technology) Hidden
      Scratch 2 Offline Editor (HKLM-x32\...\edu.media.mit.Scratch2Editor) (Version: 456.0.4 - Massachusetts Institute of Technology)
      Screencast-O-Matic v2.0 (HKLM-x32\...\Screencast-O-Matic v2.0) (Version: v2.0 - Screencast-O-Matic)
      SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
      Sizing Options (HKLM-x32\...\{DFAB6DE8-E45F-4D5D-95C0-E54C58993F9F}) (Version: 2.0.1508.1001 - Application) Hidden
      Sizing Options (HKLM-x32\...\InstallShield_{DFAB6DE8-E45F-4D5D-95C0-E54C58993F9F}) (Version: 2.0.1508.1001 - Application)
      Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
      Stashimi Stub Installer (HKLM-x32\...\{910B539D-F257-46C8-9CB8-6C95EFF9CF22}) (Version: 18.001.1 - Nero AG) Hidden
      Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
      SteelSeries Engine 3.8.5 (HKLM\...\SteelSeries Engine 3) (Version: 3.8.5 - SteelSeries ApS)
      Stencyl (HKLM-x32\...\Stencyl) (Version: /root/.jenkins/jobs/Stencyl-Windows/workspace/build - Stencyl, LLC)
      Sublime Text Build 3103 (HKLM-x32\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd)
      SUPER CHARGER (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.024 - MSI)
      Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.4.184 - Synaptics Incorporated)
      Team Explorer for Microsoft Visual Studio 2015 (HKLM-x32\...\{48992F68-BEE6-35D8-89AC-6A81406F1096}) (Version: 14.0.24712 - Microsoft Corporation) Hidden
      Test Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
      Twitch (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Twitch Interactive, Inc.)
      TypeScript Power Tool (HKLM-x32\...\{CF436B98-B0FE-447F-8E46-68E0B14FDDE0}) (Version: 1.7.6.0 - Microsoft Corporation) Hidden
      TypeScript Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{F66F9C2A-E14B-4D30-82C5-A4E32B569286}) (Version: 1.7.6.0 - Microsoft Corporation) Hidden
      TypeScript Tools for Microsoft Visual Studio 2015 1.7.6.0 (HKLM-x32\...\{5ee9a47a-3630-4016-b76d-dc752e9218dd}) (Version: 1.7.24809.0 - Microsoft Corporation)
      UIInstallUpgrade (HKLM\...\{9E4F0F23-43C9-410E-869A-C08CA3CA2B7E}) (Version: 1.2.601 - Nahimic) Hidden
      Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.13 - Samsung Electronics CO., LTD.)
      UninstallTabletDeviceDriver (HKLM\...\{39089688-F09E-4DAD-8C80-647D3DF68630}_is1) (Version: 12.2.14 - )
      Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
      USB Network Driver (HKLM-x32\...\{66ED8E01-C915-41F5-B33E-C5C31F27B885}) (Version: V3.70a - )
      USB Network Joystick (HKLM-x32\...\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}) (Version: V3.70a - )
      USBPcap 1.1.0.0-g794bf26 (HKLM\...\USBPcap) (Version: - )
      Vensim PLE x32 version 6.4E (HKLM-x32\...\{C934A5FC-6196-4706-93A7-6A602819FA9E}_is1) (Version: 6.4E - Ventana Systems, Inc.)
      Visual Studio 2015 Update 1 (KB3022398) (HKLM-x32\...\{fcaa9dba-9438-48b6-ad91-4e9b4cc7084a}) (Version: 14.0.24720 - Microsoft Corporation)
      VS Update core components (HKLM-x32\...\{5F7870A1-0586-313E-A9FF-3249DCE9F63A}) (Version: 14.0.24720 - Microsoft Corporation) Hidden
      Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
      WCF Data Services 5.6.4 Runtime (HKLM-x32\...\{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
      WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
      WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
      WinRAR 5.50 beta 2 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.2 - win.rar GmbH)
      WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DD}) (Version: 17.5.10562 - WinZip Computing, S.L. )
      Wireshark 2.4.3 32-bit (HKLM-x32\...\Wireshark) (Version: 2.4.3 - The Wireshark developer community, hxxps://www.wireshark.org)
      WTFast 4.3 (HKLM-x32\...\{12B4121D-5221-4AFC-9EDC-63B0CA139856}_is1) (Version: 4.3.2.913 - Initex & AAA Internet Publishing)
      XSplit Gamecaster (HKLM-x32\...\{A8C0B04B-C66A-4844-B865-713BFB884AC9}) (Version: 2.7.1602.1927 - SplitmediaLabs)
      Zoom (HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\ZoomUMX) (Version: 4.0 - Zoom Video Communications, Inc.)

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      CustomCLSID: HKU\S-1-5-21-2902873080-3869711474-3520166863-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-2878666B409A}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
      CustomCLSID: HKU\S-1-5-21-2902873080-3869711474-3520166863-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
      CustomCLSID: HKU\S-1-5-21-2902873080-3869711474-3520166863-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll ()
      ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
      ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
      ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
      ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
      ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
      ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
      ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
      ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
      ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd)
      ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ContextMenuHandlers1: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\shellex.dll [2017-04-28] (AO Kaspersky Lab)
      ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-05-15] (Alexander Roshal)
      ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-05-15] (Alexander Roshal)
      ContextMenuHandlers1-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => c:\Program Files\WinZip\wzshls64.dll [2013-08-02] (WinZip Computing, S.L.)
      ContextMenuHandlers2: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\shellex.dll [2017-04-28] (AO Kaspersky Lab)
      ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
      ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
      ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ContextMenuHandlers4: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\shellex.dll [2017-04-28] (AO Kaspersky Lab)

    6. #6
      Usuario Avatar de DamaRoja
      Registrado
      oct 2009
      Ubicación
      wonderland
      Mensajes
      15

      Re: Ayuda con mail.ru[1]

      ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => c:\Program Files\WinZip\wzshls64.dll [2013-08-02] (WinZip Computing, S.L.)
      ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-04] (Dropbox, Inc.)
      ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
      ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_f507e86e308a4c50\igfxDTCM.dll [2017-07-31] (Intel Corporation)
      ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation)
      ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
      ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] ()
      ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
      ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd)
      ContextMenuHandlers6: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\shellex.dll [2017-04-28] (AO Kaspersky Lab)
      ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
      ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-05-15] (Alexander Roshal)
      ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-05-15] (Alexander Roshal)
      ContextMenuHandlers6-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => c:\Program Files\WinZip\wzshls64.dll [2013-08-02] (WinZip Computing, S.L.)
      ContextMenuHandlers1_S-1-5-21-2902873080-3869711474-3520166863-1001: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] ()

      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {065E3502-654F-4552-8F18-BC74292A14EA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-12-01] (Piriform Ltd)
      Task: {07DDFB99-44B0-461E-815B-AD79ABC4DFE7} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
      Task: {09999474-EAC8-4462-B7B6-4A73329314F5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-09] (Google Inc.)
      Task: {0C12AD3F-95E8-492C-BBFC-11A540943E1B} - System32\Tasks\NahimicMSIsvc64Run => C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIsvc64.exe [2015-08-13] ()
      Task: {12E565B9-CDC4-458F-A5C0-FEB40C73A691} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-10] (NVIDIA Corporation)
      Task: {1AEBBFCB-B9F5-40DA-ACCC-19EAB88470A1} - System32\Tasks\NahimicMSIsvc32Run => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIsvc32.exe [2015-08-13] ()
      Task: {21BE9B62-735E-42AE-8C91-F2A3DC4F2E7C} - System32\Tasks\[email protected] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
      Task: {28F9D428-696D-436E-B02F-EE92489738BA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-12-18] (Microsoft Corporation)
      Task: {3053BE29-B141-4C48-9C92-36DC67E9807A} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-12-18] (Microsoft Corporation)
      Task: {44217FE5-FFB0-491A-B427-A79CF87A1270} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
      Task: {44C9E02F-E01B-4546-A747-A5D010A8A3A6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_28_0_0_126_pepper.exe [2017-12-13] (Adobe Systems Incorporated)
      Task: {45730731-5F8B-4A48-8A9F-8ABD07CB519A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-09] (Google Inc.)
      Task: {4CC4254A-1D10-469B-A7C6-F09A6942F353} - System32\Tasks\{2F2B31C7-63CE-4F3E-B5EF-3AF58CA5B64E} => C:\WINDOWS\system32\pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.exe" -d "C:\Riot Games\League of Legends"
      Task: {566C5031-91CB-402B-B7DF-B0FB77A000B8} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-12-13] (Adobe Systems Incorporated)
      Task: {59ECABA1-F101-4075-8872-E33276061FC6} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-10] (NVIDIA Corporation)
      Task: {5DCF5E60-38D9-4747-8DEB-65A0B2C14C86} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-10] (NVIDIA Corporation)
      Task: {63650789-43DA-4416-B486-D27678386FC6} - System32\Tasks\MSI_Dragon Gaming Center => C:\Program Files (x86)\MSI\Dragon Gaming Center\mDispatch.exe [2014-01-23] (TODO: <公司名稱>)
      Task: {6849D253-380B-4325-902F-59123CE9736C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-10] (NVIDIA Corporation)
      Task: {6BF898F7-04C9-49A0-96D5-D498F647F3D3} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-05-31] (Dropbox, Inc.)
      Task: {821D8572-C679-4AED-B8F5-539069763594} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-12-18] (Microsoft Corporation)
      Task: {8995E798-3A46-4276-AB95-1081393DAAFB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-12-07] (Microsoft Corporation)
      Task: {8A96E394-4288-4F47-83A4-5F4D60D15563} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-12-18] (Microsoft Corporation)
      Task: {8EDF7B0D-606E-4AAB-9AA1-5AFCC6A4C87D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-10] (NVIDIA Corporation)
      Task: {94007039-2BE1-4EA1-8FE3-42A5E1176C06} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-12-18] (Microsoft Corporation)
      Task: {969AF6A5-744E-42E1-A683-2127D0B360DD} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-10] (NVIDIA Corporation)
      Task: {A46B1741-D485-403D-8BFA-472BACF754B8} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2016-03-01] (Nero AG)
      Task: {C40F2E04-050D-4814-889D-EB2479DA77E8} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
      Task: {C5BBE979-9825-45AF-B78A-20912840F54D} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
      Task: {C93194C1-8FBA-4D10-A0D0-864E8906ADBD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-11-28] (AVAST Software)
      Task: {CA12D846-0113-43FD-BA0D-921DCCB7F2B2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-10] (NVIDIA Corporation)
      Task: {D2EA94BC-1C3B-4276-AA59-0897B9F89A58} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-05-31] (Dropbox, Inc.)
      Task: {D4390174-9398-4002-AC62-C39FC6A1A48F} - System32\Tasks\MSI_Help_Desk_Agent => C:\Program Files (x86)\MSI\Help Desk\MSI Update Agent.exe [2015-08-18] (Micro-Star International Co., Ltd.)
      Task: {D8C5DE42-5D31-40C0-B482-BD4D81294352} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-10] (NVIDIA Corporation)
      Task: {DC243A92-8E2F-4B43-8D1E-9D802154A338} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\task.vbs"
      Task: {DDA68F59-A166-4CD9-B331-F24C8D5AE74A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
      Task: {E33EE73F-E554-41F6-8156-06276619E08B} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe [2015-05-11] (CyberLink Corp.)
      Task: {EF3E59D1-7174-4D0F-80EA-53C850D9C987} - System32\Tasks\NahimicMSIUILauncherRun => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe [2015-08-13] ()
      Task: {FD537B69-C48F-46D3-BEDF-4399B8DE50CB} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-12-07] (Microsoft Corporation)

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

      Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
      Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

      ==================== Shortcuts & WMI ========================

      (The entries could be listed to be restored or removed.)


      ShortcutWithArgument: C:\Users\suzak\Desktop\ARC Welder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=emfinbmielocnlhgmfkkmkngdoccbadn
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\myHomework Student Planner.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=pembccdigcahnckbjcbehhcacplbbomj
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\ARC Welder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=emfinbmielocnlhgmfkkmkngdoccbadn
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\BlocklyDuino Editor.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ohncgafccgdbigbbikgkfbkiebahihmb
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Google Keep_ notas y listas.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\MIT AI2 Companion.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ckhnigpeffabnebcfojedjbdlemfjlpd
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Web Server for Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ofhbbkphhbklhfoeikjpcbhemlocgigb
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" E:\Anaconda3\Scripts\activate.bat E:\Anaconda3

      ==================== Loaded Modules (Whitelisted) ==============

      2017-09-29 08:41 - 2017-09-29 08:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
      2016-03-30 16:55 - 2015-03-11 21:43 - 000022528 _____ () C:\WINDOWS\System32\us003lm.dll
      2017-03-19 00:26 - 2017-10-10 20:05 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
      2017-07-19 17:09 - 2017-07-19 17:09 - 000189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
      2017-03-07 19:04 - 2017-03-07 19:04 - 000157456 _____ () C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe
      2017-06-05 13:55 - 2017-05-15 14:35 - 000102912 _____ () C:\Program Files (x86)\WTFast\service\WTFast.Service.exe
      2017-12-19 14:24 - 2017-11-29 09:11 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
      2017-12-19 14:24 - 2017-11-29 09:11 - 002301384 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
      2016-03-30 16:55 - 2015-09-10 14:31 - 001676592 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\us003du.dll
      2015-08-13 17:34 - 2015-08-13 17:34 - 000209376 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll
      2015-08-13 17:34 - 2015-08-13 17:34 - 000296928 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll
      2015-08-13 17:30 - 2015-08-13 17:30 - 000532448 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe
      2015-08-13 17:30 - 2015-08-13 17:30 - 000815616 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIsvc32.exe
      2015-08-13 17:35 - 2015-08-13 17:35 - 000276480 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIsvc64.exe
      2017-11-28 04:45 - 2017-11-28 04:45 - 000054488 _____ () C:\Program Files\CCleaner\branding.dll
      2017-12-01 10:23 - 2017-12-01 10:23 - 000087936 _____ () C:\Program Files\CCleaner\lang\lang-1034.dll
      2017-09-26 02:52 - 2017-09-26 02:52 - 034879568 _____ () C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe
      2017-12-12 00:04 - 2017-12-12 00:04 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeHost.exe
      2017-12-12 00:04 - 2017-12-12 00:04 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
      2017-12-12 00:04 - 2017-12-12 00:04 - 024735744 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkyWrap.dll
      2017-12-12 00:04 - 2017-12-12 00:04 - 002551808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\skypert.dll
      2017-12-12 00:04 - 2017-12-12 00:04 - 000671744 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
      2017-09-26 02:52 - 2017-09-26 02:52 - 000491600 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
      2016-08-17 23:41 - 2014-11-02 18:45 - 000029184 _____ () C:\Program Files (x86)\PSPad editor\pspshellx64.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
      2017-12-01 05:32 - 2017-12-01 05:32 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
      2016-06-28 00:19 - 2016-06-28 00:19 - 000865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\kpcengine.2.3.dll
      2015-08-13 17:29 - 2015-08-13 17:29 - 000261600 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIOSD.dll
      2015-08-13 17:29 - 2015-08-13 17:29 - 000179168 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIDevProps.dll
      2017-03-19 00:26 - 2017-10-10 20:05 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
      2017-12-06 02:20 - 2017-12-06 02:20 - 000102088 _____ () C:\Users\suzak\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\UpdateRingSettings.dll
      2017-09-20 02:42 - 2017-09-20 02:42 - 067115616 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
      2015-03-17 01:34 - 2015-03-17 01:34 - 000010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\acrotray.esp
      2016-03-23 11:04 - 2016-03-23 11:04 - 000091136 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\LuaQtWrapperLibrary.dll
      2016-03-23 11:02 - 2016-03-23 11:02 - 000224256 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\quazip.dll
      2016-03-23 11:02 - 2016-03-23 11:02 - 000200704 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\lua52.dll
      2017-01-16 06:40 - 2017-01-16 06:40 - 000143824 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
      2016-08-11 11:44 - 2016-08-11 11:44 - 000439480 _____ () C:\Program Files (x86)\Evernote\Evernote\libxml2.dll
      2016-08-11 11:44 - 2016-08-11 11:44 - 000321208 _____ () C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
      2017-12-06 23:25 - 2017-12-04 20:06 - 000725312 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
      2017-12-06 23:25 - 2017-12-04 20:06 - 002075456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
      2017-02-27 22:48 - 2017-12-04 20:06 - 000100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
      2017-02-27 22:48 - 2017-12-04 20:08 - 000020800 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000130512 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 001856848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
      2017-12-06 23:25 - 2017-12-04 20:06 - 000145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
      2017-12-06 23:25 - 2017-12-04 20:06 - 000116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
      2017-02-27 22:48 - 2017-12-04 20:06 - 000105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
      2017-02-27 22:48 - 2017-12-04 20:08 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000062784 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000040248 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
      2017-12-06 23:25 - 2017-12-04 20:06 - 000020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
      2017-12-06 23:25 - 2017-12-04 20:06 - 000392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
      2017-02-27 22:48 - 2017-12-04 20:08 - 000392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
      2017-02-27 22:48 - 2017-12-04 20:08 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
      2017-09-21 14:30 - 2017-12-04 20:06 - 000026056 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000021824 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
      2017-09-08 23:20 - 2017-12-04 20:09 - 000023368 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000022856 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.pyd
      2017-05-17 18:44 - 2017-12-04 20:08 - 000066392 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 001796920 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000084424 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 001956152 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 003859264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000155464 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000521024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000050496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000042304 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000131384 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000218944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000204096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
      2017-02-27 22:48 - 2017-12-04 20:09 - 000025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
      2017-02-27 22:48 - 2017-12-04 20:09 - 000054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
      2017-02-27 22:48 - 2017-12-04 20:09 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
      2017-02-27 22:48 - 2017-12-04 20:08 - 000100688 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
      2017-02-27 22:48 - 2017-12-04 20:08 - 000022360 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
      2017-02-27 22:48 - 2017-12-04 20:09 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
      2017-02-27 22:48 - 2017-12-04 20:09 - 000022360 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
      2017-02-27 22:48 - 2017-12-04 20:06 - 000349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000101184 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.pyd
      2017-02-27 22:48 - 2017-12-04 20:09 - 000023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000025424 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
      2017-12-06 23:25 - 2017-12-04 20:06 - 000036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
      2017-12-06 23:25 - 2017-12-04 20:07 - 000032600 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
      2017-12-06 23:25 - 2017-12-04 20:06 - 000293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
      2017-12-06 23:25 - 2017-12-04 20:07 - 000181056 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
      2017-02-27 22:48 - 2017-12-04 20:08 - 000030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000024368 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL
      2017-12-06 23:25 - 2017-12-04 20:07 - 001638200 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
      2017-02-27 22:48 - 2017-12-04 20:09 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000545080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000359224 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
      2017-12-06 23:25 - 2017-12-04 20:07 - 000038208 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngine.pyd
      2017-09-06 18:11 - 2017-09-06 18:11 - 000118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
      2017-09-06 18:11 - 2017-09-06 18:11 - 000214528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
      2017-09-06 18:11 - 2017-09-06 18:11 - 000117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
      2017-09-06 18:11 - 2017-09-06 18:11 - 000125952 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
      2017-09-20 03:04 - 2017-09-20 03:04 - 000099424 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
      2017-09-06 18:11 - 2017-09-06 18:11 - 000086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
      2017-09-12 20:11 - 2017-09-12 20:11 - 000118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
      2017-09-12 20:10 - 2017-09-12 20:10 - 000117760 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node
      2017-09-12 20:11 - 2017-09-12 20:11 - 000125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node
      2017-09-12 20:11 - 2017-09-12 20:11 - 000214528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
      2017-09-20 02:59 - 2017-09-20 02:59 - 000099424 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
      2017-09-12 20:11 - 2017-09-12 20:11 - 000098816 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\bufferutil\build\Release\bufferutil.node
      2017-09-12 20:11 - 2017-09-12 20:11 - 000086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node
      2015-08-07 03:09 - 2015-08-07 03:09 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)


      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)

      IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
      IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
      IE trusted site: HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\localhost -> localhost
      IE trusted site: HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\sharepoint.com -> hxxps://unabeduco-files.sharepoint.com

      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2015-07-10 06:04 - 2015-07-10 06:02 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
      DNS Servers: 8.8.8.8 - 8.8.4.4
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
      Windows Firewall is enabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==

      HKLM\...\StartupApproved\Run32: => "USB Gamepad"
      HKLM\...\StartupApproved\Run32: => "RazerCortex"
      HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\StartupApproved\StartupFolder: => "Arduino Create Agent.lnk"
      HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\StartupApproved\Run: => "Lync"
      HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
      HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\StartupApproved\Run: => "uTorrent"
      HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\StartupApproved\Run: => "Steam"
      HKU\S-1-5-21-2902873080-3869711474-3520166863-1001\...\StartupApproved\Run: => "WTFast Tray"

      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [{D76C181E-7082-4823-B3E3-698714C7450C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      FirewallRules: [{58ED0802-BF60-4151-8DDB-3150AF548848}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
      FirewallRules: [{41CB9F5A-0AEE-4BB4-8155-CEBE79CABC78}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
      FirewallRules: [{D3242190-4B57-4030-8316-769DBFBBDAA3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      FirewallRules: [{7E185477-98DA-4779-B027-AFA3E9471B82}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      FirewallRules: [{16A5C772-EC29-461D-9CE6-6E6BD9879A29}] => (Allow) C:\Program Files\MAGIX\Video deluxe 2016\Videodeluxe.exe
      FirewallRules: [{93B235B1-040F-40FF-9AD0-41F2B6CEC8FD}] => (Allow) LPort=7935
      FirewallRules: [{492B324D-8C1A-470A-9048-F7EB081265F2}] => (Allow) C:\Program Files\Adobe\Adobe Flash Builder 4.7 (64 Bit)\FlashBuilder.exe
      FirewallRules: [{FEDDDD98-9ADD-4160-8098-43B7BF90154D}] => (Allow) C:\Program Files\Adobe\Adobe Flash Builder 4.7 (64 Bit)\FlashBuilder.exe
      FirewallRules: [{A71B8A94-2988-41AF-A422-D258BA6745BA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      FirewallRules: [{7D78F588-18BD-41EF-B9C1-B584C04B7D45}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      FirewallRules: [{17B16A5B-926C-414F-82F1-C25B8D4676A9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
      FirewallRules: [{6552C08C-4C77-4CD4-8FA0-7FFAFD6E1371}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
      FirewallRules: [{B100A9F2-190C-4054-A84E-003AF2099E5D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
      FirewallRules: [{5359CD9B-4A4F-457B-AB1E-B4D5782F1A7C}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\StartNBR.exe
      FirewallRules: [{1C95C974-669F-4D55-BA3A-11E7948D7183}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe
      FirewallRules: [{01A37CEB-616D-4C80-9B57-25BE812ED7E6}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\nero.exe
      FirewallRules: [{9A3E1A23-06FA-4301-88EC-33B36509F999}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
      FirewallRules: [{6C37AADC-849D-48A3-A804-46CA5AF6D84A}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
      FirewallRules: [{46D29071-7376-4B11-8B9C-8CCD6118EE5F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      FirewallRules: [{8064B94E-F701-44DA-9674-D5324A4970AC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
      FirewallRules: [{47B0A719-D57B-4587-A742-3A7E8992B94E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
      FirewallRules: [{3FB63D4E-38D1-494A-A2F1-1EC1FC899BA5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
      FirewallRules: [{3CB9C65E-C655-4FD9-90FC-8A1FBB1CA311}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
      FirewallRules: [{CE674CBA-5366-4C36-B998-BE4FB8CA4206}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
      FirewallRules: [{EFD123CD-187C-47A6-A597-E09644F4E3C5}] => (Allow) D:\SteamLibrary\steamapps\common\Rise of the Tomb Raider\ROTTR.exe
      FirewallRules: [{592637C9-1781-4FD1-BF76-9EF81B864D98}] => (Allow) D:\SteamLibrary\steamapps\common\Rise of the Tomb Raider\ROTTR.exe
      FirewallRules: [{F6BF10D3-7C40-44C5-9F5A-387F060BF0DF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
      FirewallRules: [{E95C906F-5693-4151-B26F-54CC455E6068}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
      FirewallRules: [{EAB6D6D7-D913-4FDA-8E6F-5C2AF2E2774B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      FirewallRules: [{00B3B9E1-74B9-459D-91A1-9E8BA6B14A94}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      FirewallRules: [TCP Query User{5968A0FD-918B-4D8E-88AC-B94EB3A79F74}C:\users\suzak\appdata\roaming\arduinocreateagent\arduino_create_bridge.exe] => (Allow) C:\users\suzak\appdata\roaming\arduinocreateagent\arduino_create_bridge.exe
      FirewallRules: [UDP Query User{44C7E1DF-8BE9-4D40-909E-195A24ED56E3}C:\users\suzak\appdata\roaming\arduinocreateagent\arduino_create_bridge.exe] => (Allow) C:\users\suzak\appdata\roaming\arduinocreateagent\arduino_create_bridge.exe
      FirewallRules: [{EE8F199B-8F72-4944-8B27-F737453572AD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      FirewallRules: [{AD71296E-BE83-4252-93B7-41CD5AC1197F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
      FirewallRules: [{543C10A8-EB2C-4CD5-AC2E-3280B4DC0865}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
      FirewallRules: [{6C7FFEF0-9FD6-4DD1-BDA5-222A8C9A4897}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
      FirewallRules: [{DC09A160-E607-403B-ABEF-F50FEDE750C1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
      FirewallRules: [{8D96DA3F-3C60-44B0-A9EA-E886C0F0CF13}] => (Allow) C:\Program Files (x86)\WTFast\WTFast.exe
      FirewallRules: [{F5D6D59E-E6A4-4839-8804-BD55A2D96058}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
      FirewallRules: [{1C4D1087-1EE4-41A5-9526-0D4CAF2E841D}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
      FirewallRules: [{BE19BC15-FF3E-40F1-81BD-6480239C7865}] => (Allow) C:\Users\suzak\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{64B76E04-684D-4921-A721-D8EBD7FBEE34}] => (Allow) C:\Users\suzak\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{CA1AE75E-CF37-4680-957F-FC0367FEE280}] => (Allow) C:\Users\suzak\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{948976EB-2065-4734-9A20-1EA157AE4AA8}] => (Allow) C:\Users\suzak\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{A49CA9C2-4FB6-417A-AB3B-FEA63CC460A5}] => (Allow) C:\Users\suzak\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{F2248D91-4EC2-4C75-B989-8C91F58474BE}] => (Allow) C:\Users\suzak\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{0491B79F-C8A4-4DF5-AEA8-8A4518C8E5C2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

      ==================== Restore Points =========================

      Check "winmgmt" service or repair WMI.


      ==================== Faulty Device Manager Devices =============

      Name: VirtualBox Host-Only Ethernet Adapter
      Description: VirtualBox Host-Only Ethernet Adapter
      Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
      Manufacturer: Oracle Corporation
      Service: VBoxNetAdp
      Problem: : This device is disabled. (Code 22)
      Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

      Name:
      Description:
      Class Guid: {4d36e974-e325-11ce-bfc1-08002be10318}
      Manufacturer: Oracle Corporation
      Service:
      Problem: : Reinstall the drivers for this device. (Code 18)
      Resolution: The drivers for this device must be reinstalled.
      Click "Update Driver", which starts the Hardware Update wizard.
      Alternately, uninstall the driver, and then click "Scan for hardware changes" to reload the drivers.


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (12/21/2017 02:19:35 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina RegSetValueExW(0x00000534,SYSTEM\CurrentControlSet\Services\VSS\Diag\VssvcPublisher,0,REG_BINARY,000000C11BCFE9B0.72). HR = 0x80070005, Acceso denegado.
      .

      Error: (12/21/2017 02:19:35 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina RegSetValueExW(0x00000bb4,(null),0,REG_BINARY,000000FEAA07D660.72). HR = 0x80070005, Acceso denegado.
      .


      Operación:
      Evento BackupShutdown

      Contexto:
      Contexto de ejecución: Writer
      Id. de clase del escritor: {cd3f2362-8bef-46c7-9181-d62844cdc0b2}
      Nombre del escritor: MSSearch Service Writer
      Id. de instancia del escritor: {4111d9dc-c83f-49c0-b2ee-14117705cd5a}

      Error: (12/21/2017 02:19:35 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina RegSetValueExW(0x000001f4,(null),0,REG_BINARY,00000028E947DC80.72). HR = 0x80070005, Acceso denegado.
      .


      Operación:
      Evento BackupShutdown

      Contexto:
      Contexto de ejecución: Writer
      Id. de clase del escritor: {e8132975-6f93-4464-a53e-1050253ae220}
      Nombre del escritor: System Writer
      Id. de instancia del escritor: {56dfb811-def2-49d3-847c-2140a273e1dd}

      Error: (12/21/2017 02:19:35 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina RegSetValueExW(0x00000274,(null),0,REG_BINARY,000000C11B6FE480.72). HR = 0x80070005, Acceso denegado.
      .


      Operación:
      Evento BackupShutdown

      Contexto:
      Contexto de ejecución: Writer
      Id. de clase del escritor: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
      Nombre del escritor: Shadow Copy Optimization Writer
      Id. de instancia del escritor: {20c27cc7-bc55-4a65-849b-3283addd10b6}

      Error: (12/21/2017 02:19:35 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina RegSetValueExW(0x00000270,(null),0,REG_BINARY,000000A22EC7DBA0.72). HR = 0x80070005, Acceso denegado.
      .


      Operación:
      Evento BackupShutdown

      Contexto:
      Contexto de ejecución: Writer
      Id. de clase del escritor: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0}
      Nombre del escritor: WMI Writer
      Id. de instancia del escritor: {56df0072-0074-4688-af24-5d612907537f}

      Error: (12/21/2017 02:19:35 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina RegSetValueExW(0x00000224,(null),0,REG_BINARY,000000C11B87E680.72). HR = 0x80070005, Acceso denegado.
      .


      Operación:
      Evento BackupShutdown

      Contexto:
      Contexto de ejecución: Writer
      Id. de clase del escritor: {afbab4a2-367d-4d15-a586-71dbb18f8485}
      Nombre del escritor: Registry Writer
      Id. de instancia del escritor: {082111fb-3c7f-4a57-ad03-39a15b20c9ba}

      Error: (12/21/2017 02:19:35 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina RegSetValueExW(0x00000268,(null),0,REG_BINARY,000000C11B97F420.72). HR = 0x80070005, Acceso denegado.
      .


      Operación:
      Evento BackupShutdown

      Contexto:
      Contexto de ejecución: Writer
      Id. de clase del escritor: {542da469-d3e1-473c-9f4f-7847f01fc64f}
      Nombre del escritor: COM+ REGDB Writer
      Id. de instancia del escritor: {c2d93aba-8294-4d07-9047-58409712c464}

      Error: (12/21/2017 02:19:35 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina RegSetValueExW(0x00000bb4,(null),0,REG_BINARY,000000FEAA07D660.72). HR = 0x80070005, Acceso denegado.
      .


      Operación:
      Evento BackupShutdown

      Contexto:
      Contexto de ejecución: Writer
      Id. de clase del escritor: {cd3f2362-8bef-46c7-9181-d62844cdc0b2}
      Nombre del escritor: MSSearch Service Writer
      Id. de instancia del escritor: {4111d9dc-c83f-49c0-b2ee-14117705cd5a}

      Error: (12/21/2017 02:19:35 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina RegSetValueExW(0x00000270,(null),0,REG_BINARY,000000A22EC7DBA0.72). HR = 0x80070005, Acceso denegado.
      .


      Operación:
      Evento BackupShutdown

      Contexto:
      Contexto de ejecución: Writer
      Id. de clase del escritor: {a6ad56c2-b509-4e6c-bb19-49d8f43532f0}
      Nombre del escritor: WMI Writer
      Id. de instancia del escritor: {56df0072-0074-4688-af24-5d612907537f}

      Error: (12/21/2017 02:19:35 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina RegSetValueExW(0x00000224,(null),0,REG_BINARY,000000C11B87E680.72). HR = 0x80070005, Acceso denegado.
      .


      Operación:
      Evento BackupShutdown

      Contexto:
      Contexto de ejecución: Writer
      Id. de clase del escritor: {afbab4a2-367d-4d15-a586-71dbb18f8485}
      Nombre del escritor: Registry Writer
      Id. de instancia del escritor: {082111fb-3c7f-4a57-ad03-39a15b20c9ba}


      System errors:
      =============
      Error: (12/21/2017 02:19:43 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
      Description: Error en la llamada ScRegSetValueExW para Start con el error siguiente:
      Acceso denegado.

      Error: (12/21/2017 02:19:41 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario NT AUTHORITY\SERVICIO LOCAL con SID (S-1-5-19) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (12/21/2017 02:14:34 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario NT AUTHORITY\SERVICIO LOCAL con SID (S-1-5-19) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (12/21/2017 02:06:59 PM) (Source: DCOM) (EventID: 10010) (User: DAMAROJA)
      Description: El servidor {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (12/21/2017 02:05:03 PM) (Source: DCOM) (EventID: 10016) (User: DAMAROJA)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario DAMAROJA\suzak con SID (S-1-5-21-2902873080-3869711474-3520166863-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (12/21/2017 02:02:41 PM) (Source: DCOM) (EventID: 10010) (User: DAMAROJA)
      Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (12/21/2017 12:43:19 PM) (Source: DCOM) (EventID: 10016) (User: DAMAROJA)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario DAMAROJA\suzak con SID (S-1-5-21-2902873080-3869711474-3520166863-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (12/21/2017 12:27:18 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario NT AUTHORITY\SERVICIO LOCAL con SID (S-1-5-19) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (12/21/2017 12:21:17 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario NT AUTHORITY\SERVICIO LOCAL con SID (S-1-5-19) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (12/21/2017 12:13:16 PM) (Source: DCOM) (EventID: 10016) (User: DAMAROJA)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {D63B10C5-BB46-4990-A94F-E40B9D520160}
      y APPID
      {9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
      al usuario DAMAROJA\suzak con SID (S-1-5-21-2902873080-3869711474-3520166863-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.


      CodeIntegrity:
      ===================================
      Date: 2017-12-21 14:36:04.464
      Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

      Date: 2017-12-21 14:36:04.462
      Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

      Date: 2017-12-21 14:34:33.968
      Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

      Date: 2017-12-21 14:34:33.966
      Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

      Date: 2017-12-21 14:31:30.491
      Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

      Date: 2017-12-21 14:31:28.527
      Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll that did not meet the Microsoft signing level requirements.

      Date: 2017-12-21 14:31:28.524
      Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll that did not meet the Microsoft signing level requirements.

      Date: 2017-12-21 14:31:22.753
      Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

      Date: 2017-12-21 14:31:06.927
      Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

      Date: 2017-12-21 14:31:06.620
      Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.


      ==================== Memory info ===========================

      Processor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz
      Percentage of memory in use: 34%
      Total physical RAM: 16291.79 MB
      Available physical RAM: 10651.59 MB
      Total Virtual: 21667.79 MB
      Available Virtual: 16778.14 MB

      ==================== Drives ================================

      Drive c: (OS) (Fixed) (Total:130.19 GB) (Free:14.47 GB) NTFS
      Drive d: (New Volume) (Fixed) (Total:931.39 GB) (Free:774.08 GB) NTFS
      Drive e: (DATA) (Fixed) (Total:86.5 GB) (Free:70.66 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (Size: 238.5 GB) (Disk ID: 5EA39314)

      Partition: GPT.

      ========================================================
      Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00000000)

      Partition: GPT.

      ==================== End of Addition.txt ============================

    7. #7
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.531

      Re: Ayuda con mail.ru[1]

      Un consejo, cuando abras un tema, no pongas respuestas o logs hsta que se indique, solo comenta el problema y los programas que usaste, porque al ver respuestas en tu tema, se puede pensar que estas [email protected] y no recibiras respuesta




      Realiza lo siguiente por favor:

      En el equipo con los demas programas cerrados:
      Inicio >>> Ejecutar >>>Escribes notepad.exe.

      Ahora copia y pega estos archivos dentro del Notepad: (Se excluye la palabra código)

      Código:
      Start
      CreateRestorePoint:
      CloseProcesses:
      
      SearchScopes: HKU\S-1-5-21-2902873080-3869711474-3520166863-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL =
      SearchScopes: HKU\S-1-5-21-2902873080-3869711474-3520166863-1001 -> {8264CCC3-CE32-49A8-B615-EC8104C9C0DA} URL =
      SearchScopes: HKU\S-1-5-21-2902873080-3869711474-3520166863-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://co.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10438__171219__yaie&p={searchTerms}
      FF Homepage: Mozilla\Firefox\Profiles\vt9iwd5p.default -> hxxps://co.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10438__171219__yaie&p=el+propio+bucaramanga
      FF NewTab: Mozilla\Firefox\Profiles\vt9iwd5p.default -> hxxps://co.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10438__171219__yaff
      FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\dsengine.js [2017-12-18] <==== ATTENTION (Points to *.cfg file)
      FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\dsengine.cfg [2017-12-18] <==== ATTENTION
      CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/#inbox","hxxps://www.santoro-london.com/shop/large-fold-over-cosmetic-bag-awashed-santoros-gorjuss.html","hxxps://www.santoro-london.com/shop/gorjuss-zip-purse-i-found-my-family-in-a-book.html","hxxps://deals.gamesradar.com/sales/enhance-emergency-weather-radio-with-flashlight-hand-crank-loud-siren-and-us","hxxp://www.ebay.com/itm/Earth-Origins-Roxanne-Women-US-6-Black-Loafer-2299-/131970369919?hash=item1eba0c097f","hxxp://svc2.sipost.co/trazawebsip2/default.aspx?Buscar=RB935425040HK","hxxps://mail.google.com/mail/u/1/#inbox","hxxps://books.google.com.co/books?hl=en&lr=lang_en&id=JKc-DQAAQBAJ&oi=fnd&pg=PR8&dq=m-learning+scenario&ots=tvM-n1oX3f&sig=MRj85Gh1rhzEM6zjBNr9_Bhn-lI#v=onepage&q&f=false","hxxp://www.ebay.com/sch/i.html?_odkw=Pebeo+Gedeo+Crystal+Resin%2C+150ml&_osacat=0&_from=R40&_trksid=p2045573.m570.l1313.TR0.TRC0.H0.XSmooth-On+Silicone+Mold+Making+Rubber+Oomoo+30+-+2.8+lb+.TRS0&_nkw=Smooth-On+Silicone+Mold+Making+Rubber+Oomoo+30+-+2.8+lb+&_sacat=0","hxxp://www.ebay.com/itm/AUTHENTIC-MONT-BLANC-MB-440-028-Gold-Black-Rimless-Eyeglasses-Frames-Size-55/172366593067?_trksid=p2047675.c100005.m1851&_trkparms=aid%3D222007%26algo%3DSIC.MBE%26ao%3D1%26asc%3D39798%26meid%3D48d0567118ab4aef8b366ae2f137367d%26pid%3D100005%26rk%3D4%26rkt%3D6%26sd%3D191981627861","hxxps://www.kickstarter.com/projects/1024689211/que-bottle-the-fashionable-and-collapsible-travel?ref=FundedToday&utm_medium=referral&utm_source=53dsa.fnd.to","hxxp://cart.payments.ebay.com/sc/add?srt=0100010000005032d7b7e9fa8b553165ee5dc57d42de2def9e787f27c24cecb204ad54cdd016c5219e0f48725dbaf4f41226c4aefc4be16d6fbd9ae8d40d1eda86c0430bbdfb8ae33de94e3230cc46282506063fe77de8&ssPageName=CART:ATC&item=iid:351881933659,qty:1","hxxp://www.ebay.com/itm/Mulco-Womens-Ilusion-Ceramic-MW3-11009-083-Watch-/381422899857?hash=item58ce939291:g:544AAOSwKIpWDH1N","hxxp://www.mulco.com/products?gender=1602","hxxp://www.mulco.com/watches/gravity/jupiter/11193=gravity-jupiter","hxxp://www.mulco.com/products?relevance=2674&gender=1602","hxxps://www.youtube.com/watch?v=Z4k582CoCvs","hxxps://www.youtube.com/watch?v=mrb1x0xV6GA","hxxp://www.tutorialesprogramacionya.com/javaya/detalleconcepto.php?codigo=89&punto=&inicio=","hxxp://www.discoduroderoer.es/arrays-de-objetos-en-java/","hxxp://jagonzalez.org/arreglo-de-objetos-en-java/","hxxps://geekytheory.com/tip-java-como-ordenar-un-array-de-objetos-por-sus-atributos/","hxxp://profesores.fi-b.unam.mx/carlos/java/java_basico4_8.html","hxxp://jagonzalez.org/modificar-tamano-arreglo-en-java/","hxxp://dalila.sip.ucm.es/~manuel/JSW1/Slides/Herencia.pdf","hxxp://dalila.sip.ucm.es/~manuel/JSW1/Slides/Polimorfismo.pdf","hxxp://dalila.sip.ucm.es/~manuel/JSW1/Slides/Swing.pdf","hxxps://www.scirra.com/tutorials/307/arrays-for-beginners/es/page-1","hxxp://articulo.mercadolibre.com.co/MCO-430401161-pantalla-tactil-35-para-raspberry-pi-3-2-b-touch-lcd-_JM#redirectedFromParent","hxxp://www.sc.ehu.es/acwlaroa/SO2/Apuntes/Cap4.pdf","hxxp://www.sc.ehu.es/acwlaroa/SO2/Apuntes/Cap5.pdf","hxxp://www.sc.ehu.es/acwlaroa/SO2/Apuntes/Cap6.pdf","hxxps://raspberryparatorpes.net/instalacion/noobs-paso-a-paso-instalar-el-sistema-operativo-en-la-raspberry-pi/","hxxp://kio4.com/appinventor/index.htm","hxxp://kio4.com/appinventor/200concursoagosto16.htm","hxxp://kio4.com/appinventor/59sumauno.htm","hxxp://kio4.com/appinventor/69C_tinyBD_varios_datos.htm","hxxp://kio4.com/appinventor/12notificador.htm","hxxps://geekandchic.cl/olaplex-que-es-como-aplicarlo-y-donde-comprarlo-sin-ser-peluquera/","hxxps://www.ruby-lang.org/es/downloads/","hxxp://tiendasuiza.com/set-de-cubiertos-de-mesa-victorinox-negro.html","hxxp://mail.ru/cnt/10445?gp=811560"
      CHR Extension: (Ahorcado) - D:\Welder\Ahorcado.apk_export_Kmfse [2017-03-12]
      CHR Extension: (Ryan) - D:\Welder\Is it Love Ryan Visual Novel_v1.1.89_apkpure.com.apk_export_bKNYw [2016-11-16]
      CHR Extension: (Flappy StarWars) - D:\Welder\FlappyStarWars.apk_export_RzLLh [2017-03-05]
      CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
      CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
      2017-12-19 15:00 - 2017-12-19 15:00 - 000000000 ____D C:\Program Files (x86)\GUMF387.tmp
      2017-12-21 03:31 - 2017-12-01 05:32 - 001954048 _____ (Microsoft Corporation) C:\Users\suzak\AppData\Local\Temp\dllnt_dump.dll
      ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
      ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
      ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
      ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
      ShortcutWithArgument: C:\Users\suzak\Desktop\ARC Welder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=emfinbmielocnlhgmfkkmkngdoccbadn
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\myHomework Student Planner.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=pembccdigcahnckbjcbehhcacplbbomj
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\ARC Welder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=emfinbmielocnlhgmfkkmkngdoccbadn
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\BlocklyDuino Editor.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ohncgafccgdbigbbikgkfbkiebahihmb
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Google Keep_ notas y listas.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\MIT AI2 Companion.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ckhnigpeffabnebcfojedjbdlemfjlpd
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Web Server for Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=ofhbbkphhbklhfoeikjpcbhemlocgigb
      ShortcutWithArgument: C:\Users\suzak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" E:\Anaconda3\Scripts\activate.bat E:\Anaconda3
      
      
      HOSTS:
      REMOVEPROXY:
      EMPTYTEMP:
      CMD: netsh winsock reset
      CMD: ipconfig /renew
      CMD: ipconfig /flushdns
      CMD: bitsadmin /reset /allusers
      END
      Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

      Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.
      Ejecutas Frst.exe.

      Presionas el botón Fix y aguardas a que termine.
      La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
      ATENCION!!!! El siguiente Script de reparación fue hecho específicamente por un miembro del staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar daños a su equipo
      Lo pegas en tu próxima respuesta, comentado como va el problema
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    8. #8
      Usuario Avatar de DamaRoja
      Registrado
      oct 2009
      Ubicación
      wonderland
      Mensajes
      15

      Re: Ayuda con mail.ru[1]

      Hola~~ disculpa pero no supe cómo ingresar el archivo de texto por acá.

    9. #9
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.531

      Re: Ayuda con mail.ru[1]

      Cita Originalmente publicado por DamaRoja Ver Mensaje
      Hola~~ disculpa pero no supe cómo ingresar el archivo de texto por acá.
      Disculpa, pero no entiendo el problema..
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    10. #10
      Usuario Avatar de DamaRoja
      Registrado
      oct 2009
      Ubicación
      wonderland
      Mensajes
      15

      Re: Ayuda con mail.ru[1]

      Es que me sugeriste que adjuntara lo que encontré en un archivo de texto, pero no encuentro la forma de subirlo, o debo subirlo a algun medio (como mega) y poner el link aca?

    Página 1 de 2 12 ÚltimoÚltimo