Baje mas de 200 virus y aun tengo dudas si le quedan algunos a mi notebook

Buenas !! Hace poco bajé mas de 200 virus a mi compu. Kaspersky borro cerca de 80 archivos infectados, o mas, no lo se bien. Malwarebytes detectos mas de 200. Chrome me empezo a salir “administrado por una organizacion” (actualmente logré borrar ese mensaje, pero creo que algo tiene Chrome aun). Avast borró otros 10 archivos infectados.

Me ayudan a saber si mi computadora aun tiene algo de esos virus? No puedo formatear, que a mi criterio seria lo mas rapido para borrar todo, porque en realidad no es mia la notebook. Es prestada y tiene informacion importante de la dueña.

Agradezco enormemente que me guien! Por favor y gracias

Dices que bajaste 200 virus…eso fue a propósito?

Ejecutas en orden y me vas pegando los informes

• Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.

• Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits) ¿Cómo saber si mi Windows es de 32 o 64 bits?

• Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Si.

• En la nueva ventana que se abre, presiona el botón Analizar y espera a que concluya el análisis.

• Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.

En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST

Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.

Ojala hubiera sido aproposito o fuera broma . Quise bajar un software, no tenia antivirus, solo Windows defender y bajé cualquier mugre, menos lo que necesitaba. Años sin que me pase, y ahora me baje todos los virus habidos y por haber en un solo archivo.

Voy a proceder con todo lo que me indicas, de todos modos estaba siguiendo los primeros pasos de este post:

Y estoy en la parte de Analisis de Malwarebytes, hasta ahora lleva una deteccion y Rkill 2.9 parece que detuvo 2 procesos.

Analisis de ESET Online

Creo Importante Destacar que primeramente hice otro analisis, llevaba cerca de 45 amenazas detectadas y el notebook se apagó porque no me di cuenta que no estaba conectada cargando y se apagó. No se que pasó con esas 45 amenazas que llevaba detectadas antes de apagarse

22/02/2020 1:40:22
Archivos explorados: 475520
Archivos detectados: 25
Archivos desinfectados: 23
Tiempo total de exploración 04:56:50
Estado de la exploración: Finalizado
C:\Program Files\AVAST Software\Avast\setup\aswOfferTool.exe	Win32/Bundled.Toolbar.Google.D aplicación potencialmente no segura	error al eliminando (Acceso denegado)

C:\Program Files\AVAST Software\Avast\setup\offertool_x64_ais-959.vpx	Win32/Bundled.Toolbar.Google.D aplicación potencialmente no segura	error al eliminando (Acceso denegado)

C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe	una variante de Win32/UwS.SlimDrivers.A aplicación	desinfectado por eliminación

C:\Program Files (x86)\ESET\MiNODLogin\core.jar	una variante de Java/HackAV.C aplicación potencialmente no segura	desinfectado por eliminación

C:\Program Files (x86)\GRETECH\GomPlayer\Uninstall.exe	una variante de Win32/GOMLab.A aplicación potencialmente no deseada	desinfectado por eliminación

C:\Users\Gabriela Kary\AppData\Local\Temp\NSISPromotionEx.dll	una variante de Win32/GOMLab.A aplicación potencialmente no deseada	desinfectado por eliminación

C:\Users\Gabriela Kary\AppData\LocalLow\Sun\Java\jre1.7.0_25\java_sp.dll	una variante de Win32/Bundled.Toolbar.Ask.F aplicación potencialmente no segura	eliminado

C:\Users\Gabriela Kary\AppData\LocalLow\Sun\Java\jre1.7.0_45\java_sp.dll	una variante de Win32/Bundled.Toolbar.Ask.F aplicación potencialmente no segura	eliminado

C:\Users\Gabriela Kary\Downloads\ccsetup408.exe	Win32/Bundled.Toolbar.Google.D aplicación potencialmente no segura	desinfectado por eliminación

C:\Users\Gabriela Kary\Downloads\passolo 2009.rar	Win32/HackTool.Patcher.A aplicación potencialmente no segura	eliminado

C:\Users\Gabriela Kary\Downloads\pixsetup.exe	una variante de Win32/Bundled.Toolbar.Google.C aplicación potencialmente no segura	eliminado

C:\Users\Public\Documents\Downloaded Installers\{630C3D8E-2BEE-465F-9E59-BB069ED10761}\setup.msi	una variante de Win32/UwS.SlimDrivers.A aplicación	eliminado

C:\Windows\Installer\6468f9.msi	una variante de Win32/UwS.SlimDrivers.A aplicación	eliminado

C:\Windows\Installer\MSI4CCB.tmp	una variante de Win32/Bundled.Toolbar.Ask.F aplicación potencialmente no segura	desinfectado por eliminación

C:\Windows\Temp\avast_ash2\GOM Media Player\GOMPLAYERGLOBALSETUP-2.3.46.5308.EXE	una variante de Win32/GOMLab.A aplicación potencialmente no deseada	desinfectado por eliminación

D:\INSTALADORES\Activador Office 2010 Plus\Activador Office Profesional Plus 2010\Activador Office Profesional Plus 2010.exe	una variante de MSIL/HackKMS.A aplicación potencialmente no segura	desinfectado por eliminación

D:\INSTALADORES\Snagit.v11.2.0.101.Incl.Keygen-MESMERiZE\keygen.exe	una variante de Win32/Keygen.CZ aplicación potencialmente no segura	desinfectado por eliminación

D:\INSTALADORES\Snagit.v11.3.0.107.Incl.Keygen-MESMERiZE\keygen.exe	una variante de Win32/Keygen.CZ aplicación potencialmente no segura	desinfectado por eliminación

D:\INSTALADORES\TUNEUP 2012\TuneUp Utilities 2012 v12.0.3600.114 - Multilingual (Incl. Serial y Keygen + Patch)\disable_activation (Ejecutar como Administrador).cmd	BAT/HostsChanger.A aplicación potencialmente no segura	desinfectado por eliminación

D:\Kit Remover\CCleaner\ccsetup311.exe	Win32/Bundled.Toolbar.Google.E aplicación potencialmente no segura	desinfectado por eliminación

D:\Kit Remover\CCleaner\ccsetup326.exe	Win32/Bundled.Toolbar.Google.D aplicación potencialmente no segura	desinfectado por eliminación

D:\Kit Remover\CCleaner\ccsetup402.exe	Win32/Bundled.Toolbar.Google.D aplicación potencialmente no segura	desinfectado por eliminación

D:\Kit Remover\CCleaner\ccsetup411.exe	Win32/Bundled.Toolbar.Google.D aplicación potencialmente no segura	desinfectado por eliminación

D:\Kit Remover\CCleaner\ccsetup500.exe	Win32/Bundled.Toolbar.Google.D aplicación potencialmente no segura	desinfectado por eliminación

D:\Kit Remover\CCleaner\spsetup125.exe	Win32/Bundled.Toolbar.Google.D aplicación potencialmente no segura	desinfectado por eliminación

Procedo ahora con AdwCleaner. En cuanto tenga el informe, lo pego.

Informe de AdwCleaner. Procedo con lo demas.

Perdon por responder varias veces por separado

# -------------------------------
# Malwarebytes AdwCleaner 8.0.2.0
# -------------------------------
# Build:    01-27-2020
# Database: 2020-01-24.1 (Local)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    02-22-2020
# Duration: 00:01:23
# OS:       Windows 10 Home
# Cleaned:  262
# Failed:   1


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\Program Files (x86)\Multitimer
Deleted       C:\Users\Gabriela Kary\AppData\Local\slimware utilities inc
Deleted       C:\Users\Gabriela Kary\AppData\Roaming\IObit\Advanced SystemCare
Deleted       C:\Users\Public\Documents\Downloaded Installers

***** [ Files ] *****

Deleted       C:\Windows\System32\drivers\swdumon.sys

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{10B2AF23-349C-47DE-A79F-5F2E38ACAFAB}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1127DFFC-F67B-4622-9DD2-A23A38CB488}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1161B01E-670-46B3-9A19-4BACDA86843}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{143CE901-B33E-4D85-9FC6-A53BE126E57F}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{147407CB-4F5C-491A-BFE3-6C15343B8629}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1485E5F-9C41-447A-AC9C-72ECCED8BC29}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{158B6012-8A84-4C86-B168-344AC6928453}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{17320EDE-BAE4-404D-B0FD-E9D71EE6A92}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{17B0ABC8-38D8-4E29-9180-C120193AD948}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1865F41-8145-40F4-913-F8D141BC950}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{18BE56E3-5CF3-43C7-9575-4AEDC35CF0D}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19ED87AC-BEA9-4FE3-BC3B-ECF6A2B01BB}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{19FBF5AE-E29B-460C-A4D0-A488F8B01BA7}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1A466821-F8DF-48A3-B1CB-15FB894E68}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1B023A01-2F11-4999-9E3-957E95E73F5D}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1B104F7-F0E2-4DA5-A06-C53A89E3397}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1B93500-DD52-4380-AE26-446B76BCFAE}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1C020B2F-1EFA-43A0-A7FF-CB149AA0D136}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1C926D74-F630-4DFE-A879-8934E187125D}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1ED0ECDF-68C1-4B61-A83A-79DB7E68301B}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2032DE3A-6478-4A27-BDDC-4AB21A3699}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{217E3BB9-6A3D-469E-8FF5-A516C9ADD554}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2414ED34-AC46-46BF-8422-173B2BE86E2C}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{24A6133E-53EE-4DE8-97D4-358882253C71}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{250F2494-4508-4D4E-8DBC-D4ABBE1388E}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25F954DF-1A2B-4A77-A462-8DBD5D25E73}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{26D3C038-F315-4CA8-8DFF-76C619F9CCF}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2A26E0-BBBB-4A9C-B08A-7ACC2679B9C4}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2A3E9CE5-7070-4A9E-90D9-941AACB6B38}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2B8DA625-EDD7-4D92-933A-BC09D941C82}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2C60BFA2-4ECE-43DD-B33E-A69118C27AC}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2D2E044A-73A4-43A2-863A-77CDAFE2BC5}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2DD3D574-9154-46A0-88CD-723DE275F190}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2FDC75D3-FEA5-4FB1-8BC0-5F264DDF6A8F}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{303B2657-DBE2-436A-A387-C09866229816}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31D6108D-F250-4C27-AFE8-48F61B662BF}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{346A627E-BC8C-4537-9B54-DFEDDD7442FD}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3488A5A9-F7A6-4DFE-A972-7CA6B290A689}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{350C47C2-C8C7-41B6-A4FD-391B38F01070}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3510CFD9-A356-424F-B45F-90A3A28DBAE8}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{36FCFFE1-7BA9-4F21-B13F-FE2D12B27258}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{380F265-B817-481F-95D8-2E619D8A7178}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3831315C-808D-4DA9-9BFD-92F0BC8AB8F}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{38DCA01E-7FD1-44A7-8229-2E6126114D3}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3AE0DD06-E7DA-4AB6-BFC4-E714CB643B0}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3B47563C-8EE-411C-BD2F-69D81846965}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3C07F017-34E4-4A7A-9DF7-2D8E81FAD}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3C77DB9D-67E5-4E2F-B2D8-8D9CC43A95E}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3CEF2D2F-290-4D7A-B2D0-B556533C6E81}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D7A4E60-4915-4B6B-8A73-AC48DC8D45D}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4054B641-DF02-42E4-8272-60BA4AE8E7F}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4277AFBB-219A-4036-855F-8EB5768DC9DB}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{42BADAF5-F06-4E56-9DF-327A61DD6F4}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4575D6B6-E216-4E1A-865A-5E05976DCC3}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4654E109-A1C8-452B-A2F-AC1B471428A}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4986B91B-27BB-44E6-B066-FCCEB5F515E0}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4A7FFBD7-301B-44F4-97FB-8AB82DE914C}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4C092178-9A00-4032-A4C8-C0954031D5DC}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4CA63790-C2E2-4132-8750-4616BB6E1B}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4DA20022-3273-47A5-9A34-EBF6EDC628B}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{56FE6806-9821-44D9-BFCD-346AF1EA2D}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{575909D0-701E-4DB0-B619-BF4F7B1C3E76}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{586CA5ED-DB10-4180-BEDF-2CA19754937}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{58BBC4B-C184-4E96-AB87-F876BB6FAE9}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{58C41577-6D12-41E0-ABCC-9DC12E42C79F}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59CA1533-627F-46F2-9874-EF3341AC277}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5ADAA12C-EA9F-4439-BCE7-1F2A8AA273}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5AF21503-E13C-4704-AB8F-84544EF96CA}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5D63A5CD-4ADA-41C5-A020-FBF3EFAB3F23}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5EB5DDE4-8E7B-4EB2-95BF-3AC90CBCE9C}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{604C84BF-5ACE-460D-83CD-B8A46B1F5AD4}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{60E92C6-2AC5-4993-AF39-579E939138B8}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612F79F9-5C17-416B-90AC-404C1570900}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6168CA40-2E74-4A63-8051-C6F9484025D}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{622EA6FA-5FF-47F4-8916-C2A7356E3055}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62A56C22-3BA5-4BE4-977C-60DA46D90C9}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{641022C2-5859-4371-BCE1-DA41737C7C5}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6792DF61-A839-45DB-BA6-A631E3898899}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{685946F6-7762-45A8-B7CC-E448ECD758}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{69F8CCF1-A8C-4FC4-A55F-F8E78AD5CBAA}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6A276E40-B327-472B-818D-E413DA81636}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6AAB20D2-98E9-49C1-96B6-57EF476BDC65}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6AD26579-DB41-446E-B6C7-1399B177345}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6B10BE84-71EF-4DAF-82CD-5BFA5ACF8B4}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F7C1F99-1F4F-40CE-A165-21B7CF935346}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7019958A-ACE5-4E02-A185-17885ABF372}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{70CB0442-82DA-4D4C-A6B-F7A88284B462}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{71521181-8140-4DA6-81BB-A9CD52699CED}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{71B1FFDB-3DAA-493A-80BA-303572A5E291}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7373631E-C4BE-42FC-8093-F47BD821}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{743F7832-DA6A-4F50-A420-DFDE553B35BC}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{74A0806-4EA6-4B47-89E7-76DF69341E37}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{74DDF979-6600-460F-971B-A5EF1244EE7}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7513A541-6B10-441D-A3D5-4B72B318BD44}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7553C9F2-ADE5-437F-B379-DEFD89A1C24}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7563DC7C-5B8A-4D32-BE4D-D744282DAB7D}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{75E5CBAE-B59D-4203-8C9A-23915B904E33}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7656EA4D-8547-4C54-BBB-27AACABD682D}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{778D22B8-E30E-458C-B185-5DC43C33C766}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{78ABDDD1-A262-4C0A-9EE1-128BBE8B87BA}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7A0B9F31-47F5-4CFF-9995-E1366FD68D3}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7A56498A-B446-4BD1-A695-F8EC0B52FEF}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7BCE743A-3E92-4D5E-999F-7AB732161E52}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7C14D15B-FFE3-4B7D-9DEF-CAF90F6FA12}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7C68AD5-F4F7-4450-A5D0-F8E179D94DE}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7EEAA491-3467-49FE-96F4-8436A2EA70F3}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{80BCF8EE-53C9-48C5-A753-98EF74FB54F7}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{80D0D093-A134-4A14-975D-25895173136A}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{81651F10-C21E-4A09-8E4E-473C5AED2994}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83216E0E-5B-4F45-B55D-C326E99D4E81}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{842309E9-B3C6-4E32-AC49-AD2F63AB1930}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{844CC411-8431-403A-AB2B-6C44C24EA2D9}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{84A69194-B382-4E48-B67E-BDEC82283BE6}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{86A49479-DA8D-4682-A593-2416339A3B9A}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{87B3DFB5-34C3-49B9-807D-42889C3ECFA}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{89D920C8-CD06-41CB-86CB-CFDB3FC3E63}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8A2AD481-A061-4EDF-B37C-8B5197B471C}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8B358DD-DDB6-4E1F-994A-75DDC3DBBA43}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8B972D58-3031-4D88-82C2-14CFE5EBFBD6}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8CD93817-5DD1-47CE-BC10-5365C6E81F40}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9334FCC9-589E-4E5A-AA5E-D8EF7298719B}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9348B850-F4CA-4395-BD61-2758B69F4BC}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{969DC9B-4F87-4E1C-8F74-54E032313646}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{969EAB26-D94F-4016-A5D4-387C3A52308}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{96AEE11-E3B6-4E30-A93B-626A93D1DC4}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9768319F-9C5C-42DB-BA1A-302E432F46B5}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9AA39E94-7551-493E-AE24-6B447B47507F}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9AF3C8C2-A57A-40AA-8129-0E2DA571D5C}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9DA4A6F6-2CA-4BBD-99A-207EDE583B88}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9DF1E8EA-15C-477B-9746-B2379FEF7E54}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9E7668F9-1FE5-4ED2-8ACF-711946778D25}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9F71132E-4556-4D1A-80D1-72C36BB9761B}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A1485EAF-DA33-41A3-A24B-2EC68F2F23C5}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A3EA6399-9D25-454A-9B58-7083C48EC6BD}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A40E07B2-E782-4091-91A7-919F204E2C}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A4ECDBAC-FAD-44EA-A486-313A7F8855E0}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A52DB988-D7C4-484F-9DDB-9A67DFBDE3B}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5EF33F4-C692-42B1-8943-78A94C8CDBE}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A6510133-E552-42E6-BDE0-5CEB4B34D1AA}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A6F253C9-DBE6-4020-B11-F8DAC08E618F}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A775B246-67DC-4233-BB51-DB88C849DC57}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ADE54FF5-F0CA-4024-873-9064BF5546D7}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AE4E9C4C-9B88-4BDA-B70-2BA01D64C8D0}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AE4F416E-E520-44D0-AB2E-499FA4AF2C60}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AEF4FCAB-A757-4094-A623-BC5598269E}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AF76150-ADF4-4050-83B-2A50DE4C2E7D}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B170B3FF-416A-46B4-B010-B1ACAFED148}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B1A378E5-B276-4582-8CB1-5CE7DDB53261}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B1A70D35-3069-4425-AEF3-8F2DB9427F8}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B1A86E7D-B43A-493D-9181-B730DF42973E}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B5FF56D2-8E44-455E-BC2D-D3F98E9CB8D}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B6DAA4D-C8D7-47F1-A317-2F902637B7ED}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B76A32F8-5B20-4750-80B3-9FC60AC80A9}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B80388E-8C26-42A1-A81A-97D3FD89BB3}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B90F416B-778F-4DD2-976F-1F3CCDDCDBF}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B9F59C45-BEB7-4A7F-ADE4-498DD32621F3}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BA1DF1D-6E0-4D44-B61C-89588EEB2871}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BAE47289-D730-4E7B-B133-F12EEEE7E552}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BCBFEC97-4CE9-4719-B31-B3EC4219E27}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BEECA5A0-DF7C-4298-AA9F-F64359BADAF}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BF350DC0-9E1C-4A5F-A5A-EBDB8916BC5}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C0CBB661-9E64-4BB0-9FC-5468114FC083}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C21D16EA-1970-4251-942F-AD6D48D8F735}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3363A7E-633-40E3-A63E-7C765B1E1D97}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C4631FFB-1BBE-4334-A619-214CF2DC9D46}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C6DC2AF0-54D2-485B-B92F-F8AD16A65163}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C717617-6830-4A81-81E9-4DFC9A561F7B}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C75DAC73-7166-4C71-9E2F-A898D2D39D}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CA52D8C-9F71-4D93-8889-1C2ACFD3784}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CA800A82-FA9D-40B6-B750-F5948AE49732}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CC0C401F-8ABA-49A3-8C78-6DD993546211}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CD29B08A-287-4AA7-8A6A-AFE5418FCC1}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CDC7D00E-A5C2-4943-B876-4D48378D342}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CEE9CF88-374E-46C6-9091-9DC9C73089}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CF40EAFC-6B9E-414B-BB80-F563DEE663E}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D03D62EA-74D9-4567-8B8D-4261DCF4BF69}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D0632E10-8508-456E-8CC5-CFC7038B65A}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D0731B75-1775-4DA3-9CDA-5B8F8CE2C625}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D174EE06-C727-4670-A84E-2D92F39BF244}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D3AF906C-E9EE-4302-8FA4-E920FCEEE73D}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D4E17904-8D00-494E-9074-57898953BC6}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7CBC8F1-6179-4CEC-B5BA-6FD0E51DE25E}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DA9A2F3C-2A11-4C8E-B7F5-515E2B76B29A}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DBBDE716-9B56-4587-8954-495616E01E9}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DC2EACAB-2E9B-44BC-9A54-CE18BB3AA7B8}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DC485DF5-1708-4197-8A6E-F65A7E0F257}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DEA49AAD-8E50-4AB3-8717-1BCD1BCB9A83}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DEB6B230-89CA-4488-9CFF-BB41D88B6BE7}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DEFE4FF2-DFD8-404E-A96B-EACA5298B0C5}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0029C49-148A-41B6-8AB9-3EA1CF999B8}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E2BD48B2-99B0-49CE-8F51-B89AF44679A}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E44D653D-6F19-4A3D-94E7-7DC18A0ED99}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E4EE744B-EBE6-4714-885B-A7CE7619ADEA}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E774F206-C199-4A91-B0C7-727AC1A00BA}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E799762D-2231-4F13-99B2-E7586509E70}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EAAB90BD-F085-494E-93E3-16E3C2DFCA7}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EAE084DA-BB1D-439C-911E-BA6550CAFF50}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EB422C93-BB78-4038-A51B-A6FE78C56CBE}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EB8DF4AE-BB9B-4C89-83AE-2E84783225D9}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ED064255-D66A-49A5-A83B-2AE82F32799}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ED0D766C-C6C7-4DF4-B687-F4B7C94B1AEE}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EE78673C-6550-4DF3-9B9F-AA28D061414}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EFBCAE0F-3C75-4A6B-97EE-A690FA1D9CC0}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EFF3EB8F-F2ED-44EC-9783-10F28451FA7E}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F04BD389-8C3A-437A-9661-E0EC9484139}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F085B36F-EC9-4FC3-97B-8536F5DF27F2}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F66DE08A-2D3-4D38-9DFF-CD5D7AE4EFCA}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F8AC0F05-AD77-46ED-9916-7FEBF89CA72}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F97157F-9E7F-47D5-BA8C-7639C930566B}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FB6C6C2-418B-4ABD-BAA0-CBA59DDECB66}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FB7878A5-BBD-43DD-83A-608FCFFDE3D}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FBBCA09D-F20F-4A83-A059-7C9AC82DCA2}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FC779F75-2948-4F42-8235-BAE327FA7D6}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FE43DAB8-ED21-4B39-8DE0-41D5BAFD165}
Deleted       HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FF5E302E-E768-4BCC-8171-C2B1B676C3}
Deleted       HKCU\Software\Classes\.torrent|iLivid.torrent_backup
Deleted       HKCU\Software\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4}
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{3FE3756F-094A-435C-9CF7-5CE4B1815417}C:\users\gabriela kary\appdata\local\popcorn time\nw.exe
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{597ED61C-9AE4-4C70-A9ED-117298E016EC}C:\users\gabriela kary\appdata\local\popcorn time\nw.exe
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{2E0EC7DF-C985-47B3-B426-5956B28DFF24}C:\users\gabriela kary\appdata\local\popcorn time\nw.exe
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{9D0B6BF0-E939-43E5-8716-DA6733FAE96B}C:\users\gabriela kary\appdata\local\popcorn time\nw.exe
Deleted       HKLM\Software\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4}
Deleted       HKLM\Software\Classes\CLSID\{B33BD6CF-BF4C-4CF0-AC84-B2974BC14ABD}
Deleted       HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved|{4F622628-7632-4B28-B184-D7BA0CA3273B}
Deleted       HKLM\Software\Wow6432Node\SlimWare Utilities Inc
Deleted       HKLM\Software\Wow6432Node\\Microsoft\MediaPlayer\ShimInclusionList\browser.exe

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted       Preinstalled.ASUSFancyStart   Folder   C:\ASUS.DAT
Deleted       Preinstalled.ASUSGames   Folder   C:\Program Files (x86)\ASUS\GAME PARK\DEADTIME STORIES
Deleted       Preinstalled.ASUSGames   Folder   C:\Program Files (x86)\ASUS\GAME PARK\DREAM DAY FIRST HOME
Deleted       Preinstalled.ASUSGames   Folder   C:\Program Files (x86)\ASUS\GAME PARK\DREAM VACATION SOLITAIRE
Deleted       Preinstalled.ASUSGames   Folder   C:\Program Files (x86)\ASUS\GAME PARK\FARM FRENZY 3 - MADAGASCAR
Deleted       Preinstalled.ASUSGames   Folder   C:\Program Files (x86)\ASUS\GAME PARK\GALAPAGO
Deleted       Preinstalled.ASUSGames   Folder   C:\Program Files (x86)\ASUS\GAME PARK\GAMECONSOLE
Deleted       Preinstalled.ASUSGames   Folder   C:\Program Files (x86)\ASUS\GAME PARK\PLANTS VS ZOMBIES
Deleted       Preinstalled.ASUSGames   Folder   C:\Program Files (x86)\ASUS\GAME PARK\WORLD OF GOO
Deleted       Preinstalled.ASUSLiveUpdate   Folder   C:\Program Files (x86)\ASUS\ASUS LIVE UPDATE
Deleted       Preinstalled.ASUSProductRegistration   Folder   C:\Program Files (x86)\ASUS\APRP
Deleted       Preinstalled.ASUSSmartGesture   Registry   HKLM\Software\Classes\CLSID\{F31B5912-07D6-4895-B4BA-5486CF3B18B1}
Deleted       Preinstalled.ASUSSplendid   Folder   C:\Program Files (x86)\ASUS\SPLENDID
Deleted       Preinstalled.ASUSSplendid   Registry   HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ACMON
Deleted       Preinstalled.ASUSSplendid   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{0969AF05-4FF6-4C00-9406-43599238DE0D}
Deleted       Preinstalled.ASUSSplendid   Task   C:\Windows\System32\Tasks\ACMON
Deleted       Preinstalled.ASUSVirtualCamera   Folder   C:\Program Files (x86)\ASUS\VIRTUALCAMERA
Deleted       Preinstalled.ASUSVirtualCamera   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}
Deleted       Preinstalled.ASUSWebStorage   Folder   C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUS WEBSTORAGE
Deleted       Preinstalled.ASUSWebStorage   Registry   HKLM\Software\Classes\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}
Deleted       Preinstalled.ASUSWebStorage   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\ASUS WebStorage
Deleted       Preinstalled.CyberLinkLabelPrint   Folder   C:\Program Files (x86)\CYBERLINK\LABELPRINT
Deleted       Preinstalled.CyberLinkLabelPrint   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
Deleted       Preinstalled.CyberLinkLabelPrint   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{C59C179C-668D-49A9-B6EA-0121CCFC1243}
Deleted       Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
Deleted       Preinstalled.LenovoPower2Go   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{40BF1E83-20EB-11D8-97C5-0009C5020658}
Deleted       Preinstalled.LenovoPowerDVD   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
Deleted       Preinstalled.LenovoPowerDVD   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
Deleted       Preinstalled.PackardBellGamesBundle   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}
Not Deleted   Preinstalled.ASUSWebStorage   Folder   C:\Program Files (x86)\ASUS\ASUS WEBSTORAGE


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [37138 octets] - [22/02/2020 02:00:40]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 16-02-2020
Ejecutado por Gabriela Kary (administrador) sobre GABRIELAKARY-PC (ASUSTeK Computer Inc. K53E) (22-02-2020 02:39:29)
Ejecutado desde C:\Users\Gabriela Kary\Desktop
Perfiles cargados: Gabriela Kary (Perfiles disponibles: Gabriela Kary & Administrador)
Platform: Windows 10 Home Versión 1909 18363.657 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(CobianSoft, Luis Cobian) [Archivo no firmado] C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\91.4.548\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\91.4.548\QtWebEngineProcess.exe
(Fork, Ltd.) [Archivo no firmado] C:\Windows\Prey\wpxsvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Node.js Foundation -> Node.js) C:\Windows\Prey\versions\1.9.3\bin\node.exe
(Prey SpA -> Fork, Ltd.) [Archivo no firmado] C:\Windows\Prey\versions\1.9.3\node_modules\os-triggers\bin\lightevt.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm\Bluetooth Suite\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SDL) [Archivo no firmado] C:\Program Files (x86)\Common Files\SDL\Telemetrics\Sdl.Desktop.ProductTelemetrics.Host.Windows.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [SynTPEnh] => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-01-07] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391104 1999-12-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506368 1999-12-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6260736 2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3500056 2017-07-27] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEMN.EXE [945856 2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.106\Installer\chrmstp.exe [2020-02-14] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> 
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {1B3AF3BB-8861-4835-948A-334DF652B011} - System32\Tasks\{4F70C83B-CACA-4FF0-AEFB-14252590040C} => C:\Users\Gabriela Kary\Desktop\Gisele\AtomSetup-x64.exe [187804192 2020-01-23] (GitHub, Inc. -> GitHub Inc.)
Task: {2C02FC6D-1181-468C-A662-7F23E39117F0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {33466E2E-0BB8-412F-9B7E-6A50F5202214} - System32\Tasks\{4DE5A624-A3F1-495E-8105-D6D15D50BB8A} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.40.0.104/es/go/help.faq.installer?LastError=1603
Task: {46A1DE2D-A10D-442A-B7F6-0795A3D65CC2} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {4BB7CBD3-D64B-4569-960E-759954BA1A4F} - System32\Tasks\ACC => C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat
Task: {4E2FD818-9312-4307-83D1-E7C4A32F3AF7} - System32\Tasks\{B6883D5C-3DE1-4E78-BF19-527C7BDBEF3E} => C:\Users\Gabriela Kary\Desktop\Gisele\AtomSetup-x64.exe [187804192 2020-01-23] (GitHub, Inc. -> GitHub Inc.)
Task: {4ECF0A9C-D50D-4B89-A6A9-9289AA0EB0C0} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1835112 2020-02-19] (Avast Software s.r.o. -> AVAST Software)
Task: {59DF4E26-FAC5-464C-AD54-D80604DB4E08} - System32\Tasks\{1268FA86-D8AF-489A-8C5E-0314587AF0BF} => C:\Users\Gabriela Kary\Desktop\Gisele\AtomSetup-x64.exe [187804192 2020-01-23] (GitHub, Inc. -> GitHub Inc.)
Task: {5E678BEA-1DFE-4901-9B9D-A1544431E348} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
Task: {7012DE04-50F9-4FEE-A903-CDFB4F0DF8CA} - System32\Tasks\{6263F325-B92F-49FA-9EFF-DE0D91264474} => C:\Users\Gabriela Kary\Desktop\Gisele\AtomSetup-x64.exe [187804192 2020-01-23] (GitHub, Inc. -> GitHub Inc.)
Task: {7356C1AA-A484-4C37-B45C-729679FA0658} - System32\Tasks\G2MUpdateTask-S-1-5-21-770216848-1095929110-15174267-1000 => C:\Users\Gabriela Kary\AppData\Local\GoToMeeting\16786\g2mupdate.exe [32256 2020-02-14] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {7AC3458D-B851-4BA9-92DF-63DECFB99A7A} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {8470B3B8-92CF-4851-A801-E324C6FEB8DD} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {8FAAFB0F-2E06-4774-9E71-F74C08DD7A7A} - System32\Tasks\GoogleUpdateTaskMachineUA1ced5648c45b62c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {986A1806-FEBE-47E7-AE16-AD9E1B7936EA} - System32\Tasks\{6B1FD6A4-DFE9-497C-B7C7-A82EF288A14B} => C:\Users\Gabriela Kary\Desktop\Gisele\AtomSetup-x64.exe [187804192 2020-01-23] (GitHub, Inc. -> GitHub Inc.)
Task: {9938523E-C1BA-46EF-95E2-C1CBD7FD55CF} - System32\Tasks\{239BA00A-8DFC-44C2-9729-67E764D82316} => C:\Users\Gabriela Kary\Desktop\Gisele\AtomSetup-x64.exe [187804192 2020-01-23] (GitHub, Inc. -> GitHub Inc.)
Task: {A2B50C94-2333-4188-AEEE-5943A900F6CE} - System32\Tasks\{C6B83AE3-034E-4844-B7BE-5E71616CA141} => C:\Users\Gabriela Kary\Desktop\Gisele\AtomSetup-x64.exe [187804192 2020-01-23] (GitHub, Inc. -> GitHub Inc.)
Task: {A2F001C3-981B-4340-A92C-83DBEAF56448} - System32\Tasks\G2MUploadTask-S-1-5-21-770216848-1095929110-15174267-1000 => C:\Users\Gabriela Kary\AppData\Local\GoToMeeting\16786\g2mupload.exe [32256 2020-02-14] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {A4A488E9-4EC3-4FD3-B126-F0A099B63C43} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {B29A43C0-147F-4730-93E5-0361CB3197F3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-02-14] (Adobe Inc. -> Adobe)
Task: {B7DB54DC-29DC-44EB-BC82-979735031739} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506368 1999-12-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {BBF0B6A3-0F22-4A86-BD14-F6691553FD50} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_330_Plugin.exe [1458232 2020-02-14] (Adobe Inc. -> Adobe)
Task: {BD1611CF-D08F-4939-A391-2C60DCA2669F} - System32\Tasks\GoogleUpdateTaskMachineCore1ced5648adcab03 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {C0427E62-DBC5-4776-B33C-32BEF40FA8D8} - System32\Tasks\{AA244116-27C3-430E-B92D-3E655B78268F} => C:\Users\Gabriela Kary\Desktop\Gisele\AtomSetup-x64.exe [187804192 2020-01-23] (GitHub, Inc. -> GitHub Inc.)
Task: {C1346CAF-9DFC-4A87-A08A-321E16A609EF} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506368 1999-12-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {DA9C0032-54AD-49F5-AD5F-CF0DC7488666} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
Task: {EC918679-274E-49E2-AA65-6C26B08FFC69} - System32\Tasks\update-S-1-5-21-770216848-1095929110-15174267-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {EF69C488-6026-4EBD-BAD3-3E5D7CFBCBC5} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {F0062115-8008-4E1E-9C92-4BBFD02A1596} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Gabriela Kary\Downloads\esetonlinescanner_esn.exe [14562400 2020-02-21] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {F44D8417-C418-4810-9656-12D67BE53385} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {F7D4D07C-0553-4425-8470-E210811097BE} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Gabriela Kary\Downloads\esetonlinescanner_esn.exe [14562400 2020-02-21] (ESET, spol. s r.o. -> ESET spol. s r.o.)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\AWC Startup.job => C:\Program Files (x86)\IObit\Advanced SystemCare 3\AWC.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-770216848-1095929110-15174267-1000.job => C:\Users\Gabriela Kary\AppData\Local\GoToMeeting\16786\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-770216848-1095929110-15174267-1000.job => C:\Users\Gabriela Kary\AppData\Local\GoToMeeting\16786\g2mupload.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-770216848-1095929110-15174267-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 200.28.4.130 200.28.4.129
Tcpip\..\Interfaces\{2866F09E-B75B-4B37-9052-520242E426E6}: [DhcpNameServer] 200.28.4.130 200.28.4.129

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-770216848-1095929110-15174267-1000 -> DefaultScope {D89A518E-8771-4D77-8361-A3EBEDD6D4B2} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-770216848-1095929110-15174267-1000 -> {D89A518E-8771-4D77-8361-A3EBEDD6D4B2} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-07-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-07-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-07-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-07-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  Ningún archivo
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-07-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-07-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -  Ningún archivo

FireFox:
========
FF ProfilePath: C:\Users\Gabriela Kary\AppData\Roaming\Mozilla\Firefox\Profiles\qmsam3nl.default-1421788249422 [2020-02-13]
FF Homepage: Mozilla\Firefox\Profiles\qmsam3nl.default-1421788249422 -> hxxps://www.google.com/?trackid=sp-006
FF NewTab: Mozilla\Firefox\Profiles\qmsam3nl.default-1421788249422 -> about:newtab
FF Extension: (Avast Online Security) - C:\Users\Gabriela Kary\AppData\Roaming\Mozilla\Firefox\Profiles\qmsam3nl.default-1421788249422\Extensions\[email protected] [2020-02-13]
FF SearchPlugin: C:\Users\Gabriela Kary\AppData\Roaming\Mozilla\Firefox\Profiles\qmsam3nl.default-1421788249422\searchplugins\google-avast.xml [2015-11-28]
FF SearchPlugin: C:\Users\Gabriela Kary\AppData\Roaming\Mozilla\Firefox\Profiles\qmsam3nl.default-1421788249422\searchplugins\yahoo-avast.xml [2015-02-09]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension => no encontrado
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2019-12-27] [Heredado]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_330.dll [2020-02-14] (Adobe Inc. -> )
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_330.dll [2020-02-14] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.) [Archivo no firmado]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google Inc -> Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=1.6.0_39 -> C:\Windows\SysWOW64\npdeployJava1.dll [2013-02-11] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll [2013-02-11] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2017-08-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-770216848-1095929110-15174267-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Gabriela Kary\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc -> Google Inc.)
FF Plugin HKU\S-1-5-21-770216848-1095929110-15174267-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Gabriela Kary\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc -> Google Inc.)
FF Plugin HKU\S-1-5-21-770216848-1095929110-15174267-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\Gabriela Kary\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-01-17] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Gabriela Kary\AppData\Roaming\mozilla\plugins\npatgpc.dll [2020-02-14]

Chrome: 
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-02-22]
CHR Extension: (Presentaciones) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-02-21]
CHR Extension: (Documentos) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-02-21]
CHR Extension: (Google Drive) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-02-21]
CHR Extension: (YouTube) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-02-21]
CHR Extension: (Adobe Acrobat) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-02-21]
CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-02-21]
CHR Extension: (Hojas de cálculo) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-02-21]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-02-21]
CHR Extension: (Avast Online Security) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-02-21]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-02-21]
CHR Extension: (Sin Nombre) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nenlahapcbofgnanklpelkaejcehkggg [2020-02-13]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-02-21]
CHR Extension: (Gmail) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-02-21]
CHR Extension: (Chrome Media Router) - C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-21]
CHR Profile: C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-15]
CHR HKU\S-1-5-21-770216848-1095929110-15174267-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2017-07-27]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6259592 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm\Bluetooth Suite\adminservice.exe [347024 2017-06-01] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [417536 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R2 cbVSCService11; C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe [67584 2012-07-31] (CobianSoft, Luis Cobian) [Archivo no firmado]
S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\80.0.3987.18\remoting_host.exe [73200 2019-12-17] (Google LLC -> Google Inc.)
R2 CronService; C:\Windows\Prey\wpxsvc.exe [611854 2018-03-20] (Fork, Ltd.) [Archivo no firmado]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-18] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [647680 2013-01-03] (Macrovision Europe Ltd.) [Archivo no firmado]
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [806344 1999-12-31] (ICEpower a/s -> ICEpower)
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Archivo no firmado]
S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2003-04-18] () [Archivo no firmado]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2020-02-21] (Malwarebytes Inc -> Malwarebytes)
R2 Sdl.ProductTelemetrics.v1; C:\Program Files (x86)\Common Files\SDL\Telemetrics\Sdl.Desktop.ProductTelemetrics.Host.Windows.exe [12288 2016-11-09] (SDL) [Archivo no firmado]
S4 SentinelKeysServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [328992 2008-07-11] (SafeNet, Inc. -> SafeNet, Inc.)
S4 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [226592 2008-07-11] (SafeNet, Inc. -> SafeNet, Inc)
S4 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-08-29] () [Archivo no firmado]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 WinVNC4; C:\Program Files\RealVNC\VNC4\WinVNC4.exe [2609016 2008-06-12] (RealVNC Limited -> RealVNC Ltd.)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [204824 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [274456 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [209552 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [65120 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2020-02-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42736 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [161544 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R1 aswNetSec; C:\WINDOWS\System32\drivers\aswNetSec.sys [552848 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110320 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83792 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848432 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460448 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316528 2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
R3 athr; C:\WINDOWS\System32\drivers\athw8x.sys [4233728 2019-03-19] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
R1 ATKWMIACPIIO_; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-01-14] (Bluestack Systems, Inc -> Bluestack System Inc. )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-02-21] (Malwarebytes Corporation -> Malwarebytes)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2009-02-10] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R3 L1C; C:\WINDOWS\System32\drivers\L1C63x64.sys [121344 2019-03-19] (Microsoft Windows -> Qualcomm Atheros Co., Ltd.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-02-21] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-02-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [226448 2020-02-22] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-02-22] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-02-22] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [119960 2020-02-22] (Malwarebytes Inc -> Malwarebytes)
R2 Sentinel64; C:\WINDOWS\System32\Drivers\Sentinel64.sys [145448 2008-07-11] (SafeNet, Inc. -> SafeNet, Inc.)
S3 vncmirror; C:\WINDOWS\System32\DRIVERS\vncmirror.sys [4608 2008-06-12] (RealVNC Ltd.) [Archivo no firmado]
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-02-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [376032 2020-02-03] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-03] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; no ImagePath
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-02-22 02:39 - 2020-02-22 02:41 - 000038464 _____ C:\Users\Gabriela Kary\Desktop\FRST.txt
2020-02-22 02:33 - 2020-02-22 02:37 - 000042476 _____ C:\Users\Gabriela Kary\Downloads\Addition.txt
2020-02-22 02:27 - 2020-02-22 02:33 - 000178769 _____ C:\Users\Gabriela Kary\Downloads\FRST.txt
2020-02-22 02:26 - 2020-02-22 02:40 - 000000000 ____D C:\FRST
2020-02-22 02:11 - 2020-02-22 02:11 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-02-22 02:10 - 2020-02-22 02:10 - 000226448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-02-22 02:10 - 2020-02-22 02:10 - 000119960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-02-22 02:09 - 2020-02-22 02:09 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-02-22 01:41 - 2020-02-22 01:41 - 000003844 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2020-02-22 01:41 - 2020-02-22 01:41 - 000003402 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2020-02-22 01:40 - 2020-02-22 01:40 - 000008218 _____ C:\Users\Gabriela Kary\Desktop\analisis eset 22-02.txt
2020-02-21 19:38 - 2020-02-22 01:44 - 000000727 _____ C:\Users\Gabriela Kary\Desktop\ESET Online Scanner.lnk
2020-02-21 19:38 - 2020-02-21 19:38 - 000000826 _____ C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-02-21 19:38 - 2020-02-21 19:38 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\ESET
2020-02-21 19:36 - 2020-02-21 19:36 - 000008932 _____ C:\Users\Gabriela Kary\Desktop\analisis 21-02.txt
2020-02-21 19:34 - 2020-02-21 19:34 - 002279424 _____ (Farbar) C:\Users\Gabriela Kary\Desktop\FRST64.exe
2020-02-21 19:01 - 2020-02-21 19:03 - 014562400 _____ (ESET spol. s r.o.) C:\Users\Gabriela Kary\Downloads\esetonlinescanner_esn.exe
2020-02-21 18:59 - 2020-02-21 18:59 - 000001904 _____ C:\Users\Gabriela Kary\Desktop\Rkill.txt
2020-02-21 18:58 - 2020-02-21 18:58 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\Gabriela Kary\Downloads\iExplore.exe
2020-02-21 18:28 - 2020-02-21 18:28 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\mbam
2020-02-21 18:27 - 2020-02-21 18:27 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-02-21 18:27 - 2020-02-21 18:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-02-21 18:25 - 2020-02-21 18:24 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-02-21 18:25 - 2020-02-21 18:24 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-02-21 18:22 - 2020-02-21 18:22 - 000000000 ____D C:\Program Files\Malwarebytes
2020-02-21 17:45 - 2020-02-21 17:55 - 001883976 _____ (Malwarebytes) C:\Users\Gabriela Kary\Downloads\MBSetup-009996.009996-consumer.exe
2020-02-19 16:31 - 2020-02-19 16:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-02-19 10:21 - 2020-02-19 10:21 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2020-02-19 10:21 - 2020-02-19 10:21 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2020-02-19 10:21 - 2020-02-19 10:21 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2020-02-19 10:21 - 2020-02-19 10:21 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2020-02-15 17:01 - 2020-02-15 17:01 - 000000000 ____D C:\ProgramData\acer
2020-02-14 04:36 - 2020-02-15 17:39 - 000000000 ____D C:\ProgramData\updater2
2020-02-14 04:31 - 2020-02-15 17:01 - 000000000 ____D C:\oem
2020-02-14 04:06 - 2020-02-14 04:06 - 004308480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-02-14 04:06 - 2020-02-14 04:06 - 001541632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2020-02-14 04:05 - 2020-02-14 04:05 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 019813376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 005502464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-02-14 04:05 - 2020-02-14 04:05 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 003525592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-02-14 04:05 - 2020-02-14 04:05 - 002493720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 002314952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 002230232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 001489064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 001417760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 001272360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 001105776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 000537608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-02-14 04:05 - 2020-02-14 04:05 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2020-02-14 04:04 - 2020-02-14 04:04 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 018026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 007017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 006284800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 005912064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 004348616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 003820032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 003484672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 003243080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-02-14 04:04 - 2020-02-14 04:04 - 001273856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 001080832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 001000960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000805376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000685056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000486400 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-02-14 04:04 - 2020-02-14 04:04 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2020-02-14 04:04 - 2020-02-14 04:04 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000366416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2020-02-14 04:04 - 2020-02-14 04:04 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\srrstr.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\recdisc.exe
2020-02-14 04:04 - 2020-02-14 04:04 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-02-14 04:04 - 2020-02-14 04:04 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000099712 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe
2020-02-14 04:04 - 2020-02-14 04:04 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dfrgui.exe
2020-02-14 04:04 - 2020-02-14 04:04 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedsbs.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrTasks.exe
2020-02-14 04:04 - 2020-02-14 04:04 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-02-14 04:04 - 2020-02-14 04:04 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedssync.exe
2020-02-14 04:03 - 2020-02-14 04:04 - 002032128 _____ C:\WINDOWS\system32\rdpnano.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 022635008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 007259648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 004856832 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 004575232 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-02-14 04:03 - 2020-02-14 04:03 - 002225160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 001218120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-02-14 04:03 - 2020-02-14 04:03 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 001083392 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000788992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000510768 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-02-14 04:03 - 2020-02-14 04:03 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2020-02-14 04:03 - 2020-02-14 04:03 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2020-02-14 04:03 - 2020-02-14 04:03 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-02-14 04:03 - 2020-02-14 04:03 - 000186880 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe
2020-02-14 04:03 - 2020-02-14 04:03 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfrgui.exe
2020-02-14 04:03 - 2020-02-14 04:03 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000059221 _____ C:\WINDOWS\system32\srms.dat
2020-02-14 04:03 - 2020-02-14 04:03 - 000042512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2020-02-14 04:03 - 2020-02-14 04:03 - 000032056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2020-02-14 04:03 - 2020-02-14 04:03 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-02-14 04:03 - 2020-02-14 04:03 - 000019768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2020-02-14 04:03 - 2020-02-14 04:03 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2020-02-14 04:02 - 2020-02-14 04:03 - 001216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 006519752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 006083832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 005112320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 003967888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-02-14 04:02 - 2020-02-14 04:02 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 002260176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 001916744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 001693184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 001664696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 001664680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 001562424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 001398584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 001283592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-02-14 04:02 - 2020-02-14 04:02 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 001213752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 001154448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 001077264 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000904504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000892488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000857088 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2020-02-14 04:02 - 2020-02-14 04:02 - 000784384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 000774664 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 000768488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000679368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000673080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000597816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000568120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000542288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000453432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 000441072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000405632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000375504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-02-14 04:02 - 2020-02-14 04:02 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpviewerax.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000300392 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000274464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpviewerax.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 000193800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regapi.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000190256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000150536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 000133464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000084496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-02-14 04:02 - 2020-02-14 04:02 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000072816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcicda.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Websocket.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mciwave.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mciseq.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000021520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-02-14 04:02 - 2020-02-14 04:02 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsunattend.exe
2020-02-14 04:02 - 2020-02-14 04:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-02-14 04:02 - 2020-02-14 04:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-02-14 04:02 - 2020-02-14 04:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-02-14 04:02 - 2020-02-14 04:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-02-14 04:02 - 2020-02-14 04:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-02-14 04:02 - 2020-02-14 04:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-02-14 04:02 - 2020-02-14 04:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-02-14 04:02 - 2020-02-14 04:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-02-14 04:02 - 2020-02-14 04:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-02-14 04:02 - 2020-02-14 04:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-02-14 04:02 - 2020-02-14 04:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-02-14 04:02 - 2020-02-14 04:02 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-02-14 04:01 - 2020-02-14 04:02 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 009929016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-02-14 04:01 - 2020-02-14 04:01 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 006435840 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 005041664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 004562896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-02-14 04:01 - 2020-02-14 04:01 - 003792384 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 003550208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 003372440 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 002988552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-02-14 04:01 - 2020-02-14 04:01 - 002861568 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 002773776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 002766088 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 002703872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 002084576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 001858560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 001687040 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 001482040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-02-14 04:01 - 2020-02-14 04:01 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2020-02-14 04:01 - 2020-02-14 04:01 - 001170960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 001097216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 001051448 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000928120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-02-14 04:01 - 2020-02-14 04:01 - 000891736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000875448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000824848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000758800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-02-14 04:01 - 2020-02-14 04:01 - 000637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000587064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-02-14 04:01 - 2020-02-14 04:01 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-02-14 04:01 - 2020-02-14 04:01 - 000516648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2020-02-14 04:01 - 2020-02-14 04:01 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-02-14 04:01 - 2020-02-14 04:01 - 000467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000416056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2020-02-14 04:01 - 2020-02-14 04:01 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-02-14 04:01 - 2020-02-14 04:01 - 000335448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000311096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000259984 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000220984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-02-14 04:01 - 2020-02-14 04:01 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\regapi.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000179720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-02-14 04:01 - 2020-02-14 04:01 - 000165832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-02-14 04:01 - 2020-02-14 04:01 - 000143160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000132624 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetDriverInstall.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000106808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-02-14 04:01 - 2020-02-14 04:01 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-02-14 04:01 - 2020-02-14 04:01 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe
2020-02-14 04:01 - 2020-02-14 04:01 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Websocket.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000037392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2020-02-14 04:01 - 2020-02-14 04:01 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000020944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2020-02-14 04:01 - 2020-02-14 04:01 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 007905208 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 006167552 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 004470784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 003728896 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-02-14 04:00 - 2020-02-14 04:00 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 002071552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 001841152 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-02-14 04:00 - 2020-02-14 04:00 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 001512320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-02-14 04:00 - 2020-02-14 04:00 - 001505592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 001481216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-02-14 04:00 - 2020-02-14 04:00 - 001372160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-02-14 04:00 - 2020-02-14 04:00 - 001182232 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-02-14 04:00 - 2020-02-14 04:00 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSSO.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000678928 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000642008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-02-14 04:00 - 2020-02-14 04:00 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-02-14 04:00 - 2020-02-14 04:00 - 000545432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-02-14 04:00 - 2020-02-14 04:00 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000459896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-02-14 04:00 - 2020-02-14 04:00 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000369504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000324616 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000186672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000127280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000117264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2020-02-14 04:00 - 2020-02-14 04:00 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-02-14 04:00 - 2020-02-14 04:00 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSystray.exe
2020-02-14 04:00 - 2020-02-14 04:00 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2020-02-14 04:00 - 2020-02-14 04:00 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-02-14 04:00 - 2020-02-14 04:00 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2020-02-14 03:59 - 2020-02-14 04:00 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 017787904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 006231200 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 004615376 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-02-14 03:59 - 2020-02-14 03:59 - 004005888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll

2020-02-14 03:59 - 2020-02-14 03:59 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 003590968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-02-14 03:59 - 2020-02-14 03:59 - 003110400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 002714624 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-02-14 03:59 - 2020-02-14 03:59 - 002284544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 002125904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 001942016 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 001602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 001413912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 001149928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-02-14 03:59 - 2020-02-14 03:59 - 001084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-02-14 03:59 - 2020-02-14 03:59 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-02-14 03:59 - 2020-02-14 03:59 - 000804872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2020-02-14 03:59 - 2020-02-14 03:59 - 000803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000732200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000637968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-02-14 03:59 - 2020-02-14 03:59 - 000589592 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-02-14 03:59 - 2020-02-14 03:59 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-02-14 03:59 - 2020-02-14 03:59 - 000437776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-02-14 03:59 - 2020-02-14 03:59 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-02-14 03:59 - 2020-02-14 03:59 - 000296760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-02-14 03:59 - 2020-02-14 03:59 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-02-14 03:59 - 2020-02-14 03:59 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-02-14 03:59 - 2020-02-14 03:59 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000194064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-02-14 03:59 - 2020-02-14 03:59 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-02-14 03:59 - 2020-02-14 03:59 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000128528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2020-02-14 03:59 - 2020-02-14 03:59 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2020-02-14 03:59 - 2020-02-14 03:59 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-02-14 03:59 - 2020-02-14 03:59 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcicda.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000047208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-02-14 03:59 - 2020-02-14 03:59 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciwave.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciseq.dll
2020-02-14 03:59 - 2020-02-14 03:59 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dstokenclean.exe
2020-02-14 03:24 - 2020-01-16 02:07 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-02-14 03:24 - 2020-01-16 01:23 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-02-14 03:20 - 2020-02-14 03:20 - 000002369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-14 03:20 - 2020-02-14 03:20 - 000002328 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-02-14 03:08 - 2020-02-14 03:08 - 000000000 ____D C:\WINDOWS\oem
2020-02-14 01:41 - 2020-02-14 01:41 - 000000000 ____D C:\Program Files\Common Files\QCA_Bluetooth
2020-02-14 01:38 - 2020-02-14 01:41 - 000000000 ____D C:\Program Files (x86)\Qualcomm
2020-02-14 01:38 - 2020-02-14 01:38 - 000000000 ____D C:\WINDOWS\system32\ihvmanager
2020-02-14 01:23 - 1999-12-31 21:00 - 072520800 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2020-02-14 01:23 - 1999-12-31 21:00 - 023886413 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2020-02-14 01:23 - 1999-12-31 21:00 - 007178560 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 007101848 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 006270280 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 005804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2020-02-14 01:23 - 1999-12-31 21:00 - 005346888 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 003762704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 003677248 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2020-02-14 01:23 - 1999-12-31 21:00 - 003418112 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 003319520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 003306920 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 003282336 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 003159504 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 003128912 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 002930240 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 002444576 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 002198104 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001971264 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001965048 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001788056 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001598504 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001544144 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001516160 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001448672 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOv251gm.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001435248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001396272 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001382336 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001372280 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001353424 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001337744 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001318960 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001282656 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001259624 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001180624 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001164512 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOvlldpgm.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001159272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001073776 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 001027952 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000994784 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000965128 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000884576 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000873568 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000852240 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000806344 _____ (ICEpower) C:\WINDOWS\system32\ICEsoundService64.exe
2020-02-14 01:23 - 1999-12-31 21:00 - 000751192 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000734880 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000715752 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000692272 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000604904 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000541224 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000511536 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000467264 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000453376 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000452632 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000448496 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000447304 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000416592 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000406552 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000392976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000381536 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000378472 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000367504 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000366224 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000360448 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000343808 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000341256 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000341256 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000332904 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000327400 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000327376 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000315872 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000278168 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000266640 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000261128 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000261096 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000260104 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000232016 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000230808 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000220496 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000218376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000203944 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000202187 _____ C:\WINDOWS\system32\ICEsoundService.bin
2020-02-14 01:23 - 1999-12-31 21:00 - 000191040 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000191040 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000179696 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000175640 _____ (ASUSTeK COMPUTER INC.) C:\WINDOWS\system32\ATKWMI.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000175048 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000158800 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000157448 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000154456 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000139864 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000122424 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000118696 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000116648 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000105408 _____ C:\WINDOWS\system32\audioLibVc.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000094008 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000091024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000090272 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000088448 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000083728 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000075640 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2020-02-14 01:23 - 1999-12-31 21:00 - 000023784 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2020-02-14 01:20 - 1999-12-31 21:00 - 002856800 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2020-02-14 01:08 - 2020-02-14 01:08 - 000000000 ____D C:\ProgramData\Qualcomm Atheros
2020-02-14 01:07 - 2020-02-22 01:03 - 000002798 _____ C:\WINDOWS\system32\Tasks\ACC
2020-02-14 00:56 - 2020-02-14 00:56 - 000002517 _____ C:\Users\Public\Desktop\Avast Driver Updater.lnk
2020-02-14 00:56 - 2020-02-14 00:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Driver Updater
2020-02-14 00:53 - 2020-02-14 00:53 - 000001137 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-02-14 00:45 - 2020-02-14 00:45 - 000002158 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium Security.lnk
2020-02-14 00:45 - 2020-02-14 00:45 - 000002146 _____ C:\Users\Public\Desktop\Avast Premium Security.lnk
2020-02-14 00:41 - 2020-02-22 01:04 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-02-14 00:41 - 2020-02-16 12:32 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-02-14 00:40 - 2020-02-14 00:41 - 000848432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-02-14 00:40 - 2020-02-14 00:41 - 000460448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-02-14 00:40 - 2020-02-14 00:41 - 000161544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-02-14 00:40 - 2020-02-14 00:40 - 000355720 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-02-14 00:40 - 2020-02-14 00:40 - 000316528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-02-14 00:40 - 2020-02-14 00:40 - 000236024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-02-14 00:40 - 2020-02-14 00:40 - 000110320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-02-14 00:40 - 2020-02-14 00:40 - 000083792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-02-14 00:40 - 2020-02-14 00:40 - 000042736 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-02-14 00:40 - 2020-02-14 00:40 - 000016304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2020-02-14 00:40 - 2020-02-14 00:40 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2020-02-14 00:40 - 2020-02-14 00:39 - 000552848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2020-02-14 00:40 - 2020-02-14 00:39 - 000274456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-02-14 00:40 - 2020-02-14 00:39 - 000209552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-02-14 00:40 - 2020-02-14 00:39 - 000204824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-02-14 00:40 - 2020-02-14 00:39 - 000065120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-02-14 00:37 - 2020-02-14 00:37 - 000233080 _____ (AVAST Software) C:\Users\Gabriela Kary\Downloads\avast_premium_security_setup_online.exe
2020-02-14 00:36 - 2020-02-14 00:36 - 000230080 _____ (AVAST Software) C:\Users\Gabriela Kary\Downloads\avast_free_antivirus_setup_online (1).exe
2020-02-14 00:33 - 2020-02-14 00:33 - 006350904 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2020-02-13 13:58 - 2020-02-21 20:56 - 000000000 ____D C:\Program Files (x86)\Avast Driver Updater
2020-02-13 13:30 - 2020-02-22 02:17 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\AVAST Software
2020-02-13 13:07 - 2020-02-13 13:11 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\TeamViewer
2020-02-13 12:44 - 2020-02-13 12:44 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\AVAST Software
2020-02-13 12:39 - 2020-02-13 12:39 - 000000000 ____D C:\Program Files\AVAST Software
2020-02-12 00:57 - 2020-02-12 00:57 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\mbamtray
2020-02-11 21:43 - 2020-02-11 21:43 - 000000000 ____D C:\ProgramData\ssh
2020-02-11 16:46 - 2020-02-13 12:27 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-02-11 16:34 - 2020-02-11 16:34 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2020-02-05 02:30 - 2020-02-05 02:30 - 000000072 _____ C:\Users\Administrador.GabrielaKary-PC\Desktop\access.txt
2020-02-05 02:22 - 2020-02-05 02:22 - 000000000 ____D C:\Users\Administrador.GabrielaKary-PC\AppData\Roaming\Google
2020-02-04 20:01 - 2020-02-20 22:10 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\WhatsApp
2020-02-04 20:01 - 2020-02-04 20:01 - 000002280 _____ C:\Users\Gabriela Kary\Desktop\WhatsApp.lnk
2020-02-04 20:01 - 2020-02-04 20:01 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2020-02-04 20:00 - 2020-02-04 20:01 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\WhatsApp
2020-02-04 19:57 - 2020-02-04 19:57 - 126926768 _____ (WhatsApp) C:\Users\Gabriela Kary\Downloads\WhatsAppSetup.exe
2020-01-31 15:28 - 2020-02-19 10:26 - 000000000 ____D C:\WINDOWS\Minidump
2020-01-26 11:25 - 2020-01-26 11:25 - 000002262 _____ C:\Users\Gabriela Kary\Desktop\Atom.lnk
2020-01-26 11:25 - 2020-01-26 11:25 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc
2020-01-26 11:21 - 2020-01-26 11:25 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\atom
2020-01-25 22:15 - 2020-02-13 20:41 - 000000000 ____D C:\Program Files\BlueStacks
2020-01-25 22:15 - 2020-01-25 22:22 - 000000000 ____D C:\ProgramData\BlueStacks
2020-01-24 20:23 - 2020-01-24 20:30 - 000000000 ____D C:\Users\Gabriela Kary\Downloads\SmartGesture_Win81_64_VER228
2020-01-24 19:32 - 2020-01-24 19:32 - 000001124 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2020-01-24 19:32 - 2020-01-24 19:32 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\VS Revo Group
2020-01-24 19:32 - 2020-01-24 19:32 - 000000000 ____D C:\ProgramData\VS Revo Group
2020-01-24 19:32 - 2020-01-24 19:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2020-01-24 19:32 - 2020-01-24 19:32 - 000000000 ____D C:\Program Files\VS Revo Group
2020-01-24 19:32 - 2016-12-21 14:52 - 000040240 _____ (VS Revo Group) C:\WINDOWS\system32\Drivers\revoflt.sys
2020-01-24 19:30 - 2020-01-24 19:30 - 016701336 _____ (VS Revo Group ) C:\Users\Gabriela Kary\Downloads\RevoUninProSetup.exe
2020-01-24 14:12 - 2020-01-24 14:12 - 028306704 _____ C:\Users\Gabriela Kary\Downloads\SmartGesture_Win81_64_VER228.zip
2020-01-24 01:35 - 2020-01-24 01:35 - 000000000 ____D C:\ProgramData\AsusMissionManagerIni
2020-01-24 01:34 - 2020-01-24 01:34 - 000000000 ____D C:\Users\Administrador.GabrielaKary-PC\AppData\Local\ElevatedDiagnostics
2020-01-24 01:27 - 2020-01-24 01:27 - 011510792 _____ C:\Users\Administrador.GabrielaKary-PC\Downloads\ATK_Package_V100061.zip
2020-01-24 01:14 - 2020-01-24 01:25 - 000000000 ____D C:\Users\Administrador.GabrielaKary-PC\AppData\Local\D3DSCache
2020-01-24 01:12 - 2020-01-24 01:38 - 000000000 ____D C:\Users\Administrador.GabrielaKary-PC\Downloads\SmartGesture_WIN10_64_VER4019
2020-01-24 01:11 - 2020-01-24 01:12 - 057974350 _____ C:\Users\Administrador.GabrielaKary-PC\Downloads\SmartGesture_WIN10_64_VER4019.zip
2020-01-24 01:04 - 2020-01-24 01:04 - 057974350 _____ C:\Users\Gabriela Kary\Downloads\SmartGesture_WIN10_64_VER4019.zip
2020-01-24 01:04 - 2020-01-24 01:04 - 000000000 ____D C:\Users\Gabriela Kary\Downloads\SmartGesture_WIN10_64_VER4019
2020-01-24 00:59 - 2020-01-24 00:59 - 000000000 ____D C:\WINDOWS\PCHEALTH
2020-01-24 00:38 - 2020-02-13 11:04 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\D3DSCache
2020-01-24 00:25 - 2020-01-24 20:35 - 000000000 ____D C:\Users\Gabriela Kary\Downloads\SmartGesture_Win10_64_VER4024_DriverOnly
2020-01-24 00:02 - 2020-01-27 11:08 - 000000000 ____D C:\Users\Gabriela Kary\.atom
2020-01-24 00:01 - 2020-01-24 00:25 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Atom
2020-01-23 22:35 - 2020-02-22 01:03 - 000002924 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3
2020-01-23 22:35 - 2020-02-22 01:03 - 000002214 _____ C:\WINDOWS\system32\Tasks\ATK Package A22126881260
2020-01-23 22:22 - 2020-01-23 22:22 - 011510792 _____ C:\Users\Gabriela Kary\Downloads\ATK_Package_V100061.zip
2020-01-23 22:22 - 2020-01-23 22:22 - 000000000 ____D C:\Users\Gabriela Kary\Downloads\ATK_Package_V100061
2020-01-23 22:17 - 2020-01-23 22:17 - 000000000 ____D C:\Users\Gabriela Kary\Downloads\SmartGesture_Win10_64_VER4012
2020-01-23 22:15 - 2020-02-22 01:03 - 000002850 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-770216848-1095929110-15174267-1000
2020-01-23 21:53 - 2020-01-23 21:53 - 056364363 _____ C:\Users\Gabriela Kary\Downloads\SmartGesture_Win10_64_VER4012.zip
2020-01-23 21:36 - 2020-01-23 21:37 - 058305757 _____ C:\Users\Gabriela Kary\Downloads\SmartGesture_Win10_64_VER4024_DriverOnly.zip
2020-01-23 21:28 - 2020-02-05 01:27 - 000000000 ____D C:\Users\Administrador.GabrielaKary-PC\AppData\Local\PlaceholderTileLogoFolder
2020-01-23 20:10 - 2020-02-22 01:03 - 000002846 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-770216848-1095929110-15174267-500
2020-01-23 20:10 - 2020-01-23 20:11 - 000000000 ___RD C:\Users\Administrador.GabrielaKary-PC\SkyDrive
2020-01-23 20:01 - 2020-01-23 20:01 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\Comms
2020-01-23 19:55 - 2020-01-23 19:55 - 000000000 ____D C:\Users\Administrador.GabrielaKary-PC\AppData\Local\Comms
2020-01-23 19:52 - 2020-02-14 03:09 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\PlaceholderTileLogoFolder
2020-01-23 19:51 - 2020-01-25 00:28 - 000000000 ____D C:\ProgramData\Packages
2020-01-23 19:44 - 2019-03-18 15:20 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2020-01-23 19:44 - 2019-03-18 15:19 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2020-01-23 19:44 - 2019-03-18 15:07 - 006359552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2020-01-23 19:44 - 2019-03-18 15:01 - 005496832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2020-01-23 19:43 - 2020-01-23 19:43 - 000001450 _____ C:\Users\Gabriela Kary\Desktop\Microsoft Edge.lnk
2020-01-23 19:41 - 2020-01-23 19:41 - 000000000 ___HD C:\Users\Gabriela Kary\MicrosoftEdgeBackups
2020-01-23 19:41 - 2020-01-23 19:41 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\MicrosoftEdge
2020-01-23 19:40 - 2020-02-14 10:06 - 000000000 ___RD C:\Users\Gabriela Kary\3D Objects
2020-01-23 19:40 - 2020-01-23 19:40 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\Publishers
2020-01-23 19:39 - 2020-01-23 19:40 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\ConnectedDevicesPlatform
2020-01-23 19:39 - 2020-01-23 19:39 - 000000020 ___SH C:\Users\Gabriela Kary\ntuser.ini
2020-01-23 19:37 - 2017-03-09 01:17 - 012935296 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2020-01-23 19:37 - 2017-03-09 01:17 - 011330576 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2020-01-23 19:37 - 2017-03-09 01:17 - 001086408 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2020-01-23 19:37 - 2017-03-09 01:17 - 000975184 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2020-01-23 19:37 - 2017-03-09 01:17 - 000558728 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2020-01-23 19:37 - 2017-03-09 01:17 - 000553424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2020-01-23 19:37 - 2017-03-09 01:17 - 000242800 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2020-01-23 19:37 - 2017-03-09 01:17 - 000206000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2020-01-23 19:37 - 2017-03-09 01:17 - 000051184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 009025672 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 003529352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 003139208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 000593544 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 000560776 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 000536664 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2020-01-23 19:37 - 2017-03-09 01:16 - 000463960 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2020-01-23 19:37 - 2017-03-09 01:16 - 000460936 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 000458376 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000457864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000457864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000457352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000457344 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000455304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000455304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000453768 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000453768 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000450184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000449160 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000447112 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000446600 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000428680 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 000402568 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 000348808 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 000304264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2020-01-23 19:37 - 2017-03-09 01:16 - 000300128 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2020-01-23 19:37 - 2017-03-09 01:16 - 000276064 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2020-01-23 19:37 - 2017-03-09 01:16 - 000193112 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2020-01-23 19:37 - 2017-03-09 01:16 - 000160392 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 000145032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2020-01-23 19:37 - 2017-03-09 01:16 - 000134280 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4459.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 000082056 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 000043144 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2020-01-23 19:37 - 2017-03-09 01:16 - 000027784 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2020-01-23 19:37 - 2016-05-19 10:58 - 000017086 _____ C:\WINDOWS\system32\iglhxs64.vp
2020-01-23 19:37 - 2016-05-19 10:41 - 001981696 _____ C:\WINDOWS\system32\iglhxa64.cpa
2020-01-23 19:37 - 2016-05-19 10:41 - 000272928 _____ C:\WINDOWS\SysWOW64\igvpkrng600.bin
2020-01-23 19:37 - 2016-05-19 10:41 - 000272928 _____ C:\WINDOWS\system32\igvpkrng600.bin
2020-01-23 19:37 - 2016-05-19 10:41 - 000059425 _____ C:\WINDOWS\system32\iglhxo64.vp
2020-01-23 19:37 - 2016-05-19 10:41 - 000059398 _____ C:\WINDOWS\system32\iglhxg64.vp
2020-01-23 19:37 - 2016-05-19 10:41 - 000059230 _____ C:\WINDOWS\system32\iglhxc64.vp
2020-01-23 19:37 - 2016-05-19 10:41 - 000059104 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2020-01-23 19:37 - 2016-05-19 10:41 - 000058796 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2020-01-23 19:37 - 2016-05-19 10:41 - 000058109 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2020-01-23 19:37 - 2016-05-19 10:41 - 000001074 _____ C:\WINDOWS\system32\iglhxa64.vp
2020-01-23 19:36 - 2017-03-09 01:17 - 013182528 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2020-01-23 19:36 - 2017-03-09 01:17 - 011460448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2020-01-23 19:36 - 2017-03-09 01:16 - 013046920 _____ (Intel Corporation) C:\WINDOWS\system32\ig4icd64.dll
2020-01-23 19:36 - 2017-03-09 01:16 - 010829448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig4icd32.dll
2020-01-23 19:36 - 2017-03-09 01:16 - 005925984 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUI.exe
2020-01-23 19:36 - 2017-03-09 01:16 - 005382856 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2020-01-23 19:36 - 2017-03-09 01:16 - 000420960 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2020-01-23 19:36 - 2017-03-09 01:16 - 000206944 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2020-01-23 19:36 - 2017-03-09 01:16 - 000193160 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2020-01-23 19:36 - 2017-03-09 01:16 - 000128648 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2020-01-23 19:36 - 2017-03-09 01:16 - 000119432 _____ C:\WINDOWS\system32\igdde64.dll
2020-01-23 19:36 - 2017-03-09 01:16 - 000112264 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2020-01-23 19:36 - 2017-03-09 01:16 - 000099464 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2020-01-23 19:36 - 2016-05-19 10:44 - 000223664 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000210106 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000194245 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000166170 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000163421 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000159008 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000149682 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000148042 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000147393 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000147288 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000146004 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000145491 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000144645 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000144260 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000144020 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000143932 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000142882 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000142877 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000142717 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000142289 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000142008 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000141838 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000141049 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000137889 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000137784 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000137141 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000132623 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000126300 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000124650 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2020-01-23 19:36 - 2016-05-19 10:44 - 000000268 _____ C:\WINDOWS\system32\GfxUI.exe.config
2020-01-23 19:36 - 2016-05-19 10:41 - 000963452 _____ C:\WINDOWS\SysWOW64\igcodeckrng600.bin
2020-01-23 19:36 - 2016-05-19 10:41 - 000963452 _____ C:\WINDOWS\system32\igcodeckrng600.bin
2020-01-23 19:34 - 2020-01-23 19:34 - 000001450 _____ C:\Users\Administrador.GabrielaKary-PC\Desktop\Microsoft Edge.lnk
2020-01-23 19:33 - 2020-01-23 19:33 - 000000000 ____D C:\Program Files\Common Files\Atheros
2020-01-23 19:31 - 2020-01-23 19:31 - 000000000 ___HD C:\Users\Administrador.GabrielaKary-PC\MicrosoftEdgeBackups
2020-01-23 19:31 - 2020-01-23 19:31 - 000000000 ____D C:\Users\Administrador.GabrielaKary-PC\AppData\Local\MicrosoftEdge
2020-01-23 19:30 - 2020-01-23 19:30 - 000000000 ____D C:\Users\Administrador.GabrielaKary-PC\AppData\Local\Publishers
2020-01-23 19:29 - 2020-02-14 10:06 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-01-23 19:29 - 2020-02-13 20:41 - 000000000 ___RD C:\Users\Administrador.GabrielaKary-PC\3D Objects
2020-01-23 19:28 - 2020-02-05 02:53 - 000000000 ____D C:\Users\Administrador.GabrielaKary-PC\AppData\Local\Packages
2020-01-23 19:28 - 2020-01-23 19:30 - 000000000 ____D C:\Users\Administrador.GabrielaKary-PC\AppData\Local\ConnectedDevicesPlatform
2020-01-23 19:27 - 2020-01-23 19:27 - 000000020 ___SH C:\Users\Administrador.GabrielaKary-PC\ntuser.ini
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Public\Documents\Mis vídeos
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Public\Documents\Mis imágenes
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Public\Documents\Mi música
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\Reciente
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\Plantillas
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\Mis documentos
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\Menú Inicio
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\Impresoras
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\Entorno de red
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\Documents\Mis vídeos
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\Documents\Mis imágenes
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\Documents\Mi música
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\Datos de programa
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\Configuración local
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historial
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\AppData\Local\Datos de programa
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default\AppData\Local\Archivos temporales de Internet
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\Reciente
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\Plantillas
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\Mis documentos
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\Menú Inicio
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\Impresoras
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\Entorno de red
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\Documents\Mis vídeos
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\Documents\Mis imágenes
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\Documents\Mi música
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\Datos de programa
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\Configuración local
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Historial
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Datos de programa
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Archivos temporales de Internet
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\ProgramData\Plantillas
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\ProgramData\Menú Inicio
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\ProgramData\Favoritos
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\ProgramData\Escritorio
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\ProgramData\Documentos
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\ProgramData\Datos de programa
2020-01-23 19:25 - 2020-01-23 19:25 - 000000000 _SHDL C:\Program Files\Archivos comunes
2020-01-23 19:24 - 2020-02-22 02:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-23 19:24 - 2020-02-22 01:04 - 000002122 _____ C:\WINDOWS\system32\Tasks\{C6B83AE3-034E-4844-B7BE-5E71616CA141}
2020-01-23 19:24 - 2020-02-22 01:04 - 000002122 _____ C:\WINDOWS\system32\Tasks\{B6883D5C-3DE1-4E78-BF19-527C7BDBEF3E}
2020-01-23 19:24 - 2020-02-22 01:04 - 000002122 _____ C:\WINDOWS\system32\Tasks\{AA244116-27C3-430E-B92D-3E655B78268F}
2020-01-23 19:24 - 2020-02-22 01:04 - 000002122 _____ C:\WINDOWS\system32\Tasks\{6B1FD6A4-DFE9-497C-B7C7-A82EF288A14B}
2020-01-23 19:24 - 2020-02-22 01:04 - 000002122 _____ C:\WINDOWS\system32\Tasks\{6263F325-B92F-49FA-9EFF-DE0D91264474}
2020-01-23 19:24 - 2020-02-22 01:03 - 000003776 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-01-23 19:24 - 2020-02-22 01:03 - 000003580 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA1ced5648c45b62c
2020-01-23 19:24 - 2020-02-22 01:03 - 000003520 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2020-01-23 19:24 - 2020-02-22 01:03 - 000003508 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-01-23 19:24 - 2020-02-22 01:03 - 000003454 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2020-01-23 19:24 - 2020-02-22 01:03 - 000003390 _____ C:\WINDOWS\system32\Tasks\G2MUploadTask-S-1-5-21-770216848-1095929110-15174267-1000
2020-01-23 19:24 - 2020-02-22 01:03 - 000003356 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1ced5648adcab03
2020-01-23 19:24 - 2020-02-22 01:03 - 000003296 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2020-01-23 19:24 - 2020-02-22 01:03 - 000003294 _____ C:\WINDOWS\system32\Tasks\G2MUpdateTask-S-1-5-21-770216848-1095929110-15174267-1000
2020-01-23 19:24 - 2020-02-22 01:03 - 000003004 _____ C:\WINDOWS\system32\Tasks\update-S-1-5-21-770216848-1095929110-15174267-1000
2020-01-23 19:24 - 2020-02-22 01:03 - 000003004 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2020-01-23 19:24 - 2020-02-22 01:03 - 000002840 _____ C:\WINDOWS\system32\Tasks\update-sys
2020-01-23 19:24 - 2020-02-22 01:03 - 000002648 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-01-23 19:24 - 2020-02-22 01:03 - 000002378 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice
2020-01-23 19:24 - 2020-02-22 01:03 - 000002366 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2020-01-23 19:24 - 2020-02-22 01:03 - 000002264 _____ C:\WINDOWS\system32\Tasks\{4DE5A624-A3F1-495E-8105-D6D15D50BB8A}
2020-01-23 19:24 - 2020-02-22 01:03 - 000002122 _____ C:\WINDOWS\system32\Tasks\{4F70C83B-CACA-4FF0-AEFB-14252590040C}
2020-01-23 19:24 - 2020-02-22 01:03 - 000002122 _____ C:\WINDOWS\system32\Tasks\{239BA00A-8DFC-44C2-9729-67E764D82316}
2020-01-23 19:24 - 2020-02-22 01:03 - 000002122 _____ C:\WINDOWS\system32\Tasks\{1268FA86-D8AF-489A-8C5E-0314587AF0BF}
2020-01-23 19:24 - 2020-02-03 22:21 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-01-23 19:24 - 2020-01-23 19:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\WPD
2020-01-23 19:24 - 2020-01-23 19:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\OfficeSoftwareProtectionPlatform
2020-01-23 19:24 - 2020-01-23 19:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2020-01-23 19:24 - 2013-09-30 12:51 - 000003694 _____ C:\WINDOWS\system32\Tasks\Programa de actualización online de Adobe
2020-01-23 19:24 - 2013-08-12 09:20 - 000003676 _____ C:\WINDOWS\system32\Tasks\Programa de actualización en línea de HP
2020-01-23 19:24 - 2013-06-15 21:25 - 000003440 _____ C:\WINDOWS\system32\Tasks\AdobeFlashPlayerUpdate
2020-01-23 19:24 - 2013-06-15 21:25 - 000003180 _____ C:\WINDOWS\system32\Tasks\AdobeFlashPlayerUpdate 2
2020-01-23 19:24 - 2013-02-19 00:10 - 000003230 _____ C:\WINDOWS\system32\Tasks\SidebarExecute
2020-01-23 19:24 - 2013-02-19 00:10 - 000003068 _____ C:\WINDOWS\system32\Tasks\ACMON
2020-01-23 19:24 - 2013-02-19 00:10 - 000003056 _____ C:\WINDOWS\system32\Tasks\ASUS P4G
2020-01-23 19:24 - 2013-02-19 00:09 - 000002986 _____ C:\WINDOWS\system32\Tasks\ASUS SmartLogon Console Sensor
2020-01-23 19:24 - 2013-02-11 19:46 - 000003704 _____ C:\WINDOWS\system32\Tasks\Java Update Scheduler
2020-01-23 19:24 - 2013-01-04 10:28 - 000003668 _____ C:\WINDOWS\system32\Tasks\Programa de actualización online de Sun Microsystems
2020-01-23 19:24 - 2012-12-02 17:51 - 000003392 _____ C:\WINDOWS\system32\Tasks\{E28F102E-75A1-4EA4-AEA6-10856DEF6027}
2020-01-23 19:24 - 2012-12-02 17:44 - 000003352 _____ C:\WINDOWS\system32\Tasks\{9806ED26-BD91-4A04-A1C4-4C5BB16D3848}
2020-01-23 19:24 - 2012-12-02 17:44 - 000003346 _____ C:\WINDOWS\system32\Tasks\{6FEDEFFC-72D9-4D0A-95F5-8A5701ED222A}
2020-01-23 19:24 - 2012-11-24 11:35 - 000002770 _____ C:\WINDOWS\system32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2012
2020-01-23 19:24 - 2012-11-23 10:48 - 000002788 _____ C:\WINDOWS\system32\Tasks\AWC Startup
2020-01-23 19:24 - 2012-06-18 20:24 - 000002984 _____ C:\WINDOWS\system32\Tasks\ATKOSD2
2020-01-23 19:23 - 2020-01-23 19:24 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2020-01-23 19:23 - 2020-01-23 19:24 - 000011433 _____ C:\WINDOWS\diagerr.xml
2020-01-23 19:05 - 2020-02-22 02:07 - 000000000 ____D C:\Users\Gabriela Kary
2020-01-23 19:05 - 2020-02-14 00:38 - 000002466 _____ C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-01-23 19:05 - 2020-02-13 23:10 - 000000000 ____D C:\Users\Administrador.GabrielaKary-PC
2020-01-23 19:05 - 2020-01-23 20:11 - 000002514 _____ C:\Users\Administrador.GabrielaKary-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\Reciente
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\Plantillas
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\Mis documentos
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\Menú Inicio
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\Impresoras
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\Entorno de red
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\Documents\Mis vídeos
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\Documents\Mis imágenes
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\Documents\Mi música
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\Datos de programa
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\Configuración local
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\AppData\Local\Historial
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\AppData\Local\Datos de programa
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Gabriela Kary\AppData\Local\Archivos temporales de Internet
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\Reciente
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\Plantillas
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\Mis documentos
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\Menú Inicio
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\Impresoras
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\Entorno de red
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\Documents\Mis vídeos
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\Documents\Mis imágenes
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\Documents\Mi música
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\Datos de programa
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\Configuración local
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\AppData\Local\Historial
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\AppData\Local\Datos de programa
2020-01-23 19:05 - 2020-01-23 19:05 - 000000000 _SHDL C:\Users\Administrador.GabrielaKary-PC\AppData\Local\Archivos temporales de Internet
2020-01-23 19:04 - 2020-02-19 10:23 - 002000234 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-23 18:59 - 2020-01-09 18:25 - 002874368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-01-23 18:52 - 2020-02-22 01:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-23 18:52 - 2020-02-14 09:57 - 000482912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-23 18:00 - 2019-03-19 01:44 - 000000001 ___SH C:\BOOTNXT
2020-01-23 17:15 - 2020-02-04 17:39 - 000000000 ___DC C:\WINDOWS\Panther
2020-01-23 16:47 - 2020-01-23 16:47 - 000000000 ___HD C:\$Windows.~WS
2020-01-23 14:53 - 2020-01-23 17:15 - 000000000 ____D C:\ESD
2020-01-23 14:43 - 2020-01-23 14:45 - 019255000 _____ (Microsoft Corporation) C:\Users\Gabriela Kary\Downloads\MediaCreationTool1909.exe
2020-01-23 14:33 - 2020-01-23 14:33 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2020-01-23 14:33 - 2020-01-23 14:33 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2020-01-23 14:31 - 2020-01-23 15:13 - 000000000 ____D C:\ProgramData\Gabriela Kary
2020-01-23 14:31 - 2020-01-23 14:31 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2020-01-23 14:24 - 2020-01-23 14:51 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-01-23 14:24 - 2020-01-23 14:24 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2020-01-23 14:24 - 2020-01-23 14:24 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2020-01-23 14:24 - 2020-01-23 14:24 - 000000000 ____D C:\WINDOWS\system32\msmq
2020-01-23 14:24 - 2020-01-23 14:24 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2020-01-23 14:24 - 2020-01-23 14:24 - 000000000 ____D C:\Program Files\Reference Assemblies
2020-01-23 14:24 - 2020-01-23 14:24 - 000000000 ____D C:\Program Files\MSBuild
2020-01-23 14:24 - 2020-01-23 14:24 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-01-23 14:24 - 2020-01-23 14:24 - 000000000 ____D C:\inetpub
2020-01-23 14:23 - 2019-03-01 13:31 - 001166488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2020-01-23 14:23 - 2019-03-01 13:31 - 000124568 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2020-01-23 14:23 - 2019-03-01 13:31 - 000035592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2020-01-23 14:23 - 2019-02-05 14:41 - 000778912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2020-01-23 14:23 - 2019-02-05 14:41 - 000103072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2020-01-23 14:23 - 2019-02-05 14:41 - 000035592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2020-01-23 14:22 - 2019-03-18 15:21 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2020-01-23 14:22 - 2019-03-18 15:16 - 000903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2020-01-23 14:22 - 2019-03-18 14:15 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2020-01-23 14:22 - 2019-03-18 14:09 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2020-01-23 14:22 - 2019-03-01 13:33 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2020-01-23 14:22 - 2018-08-09 10:53 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2020-01-23 13:57 - 2020-02-04 20:01 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\SquirrelTemp

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-02-22 02:42 - 2019-03-19 01:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-22 02:20 - 2011-10-18 17:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2020-02-22 02:20 - 2011-10-18 17:00 - 000000000 ____D C:\Program Files (x86)\ASUS
2020-02-22 02:17 - 2012-11-21 10:37 - 000000000 ___HD C:\ASUS.DAT
2020-02-22 02:09 - 2019-12-22 19:34 - 000000404 _____ C:\WINDOWS\Tasks\update-sys.job
2020-02-22 02:09 - 2019-12-22 19:34 - 000000404 _____ C:\WINDOWS\Tasks\update-S-1-5-21-770216848-1095929110-15174267-1000.job
2020-02-22 02:09 - 2018-05-14 16:45 - 000000714 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-770216848-1095929110-15174267-1000.job
2020-02-22 02:09 - 2018-05-14 16:45 - 000000618 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-770216848-1095929110-15174267-1000.job
2020-02-22 02:09 - 2018-03-20 18:12 - 000000000 ____D C:\WINDOWS\Prey
2020-02-22 02:09 - 2015-11-17 13:59 - 000001006 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2020-02-22 02:09 - 2015-11-17 13:59 - 000001002 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2020-02-22 02:08 - 2019-03-19 01:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-02-22 02:04 - 2012-11-23 10:48 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\IObit
2020-02-22 02:04 - 2012-06-18 20:27 - 000000000 ____D C:\Program Files (x86)\CyberLink
2020-02-21 21:41 - 2019-03-19 01:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-21 21:41 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-21 21:08 - 2014-04-15 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player
2020-02-21 18:25 - 2019-03-19 01:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-02-21 18:25 - 2016-11-18 12:02 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-02-21 18:12 - 2012-11-24 14:24 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-02-21 18:03 - 2019-12-22 17:37 - 000000000 ____D C:\Users\Gabriela Kary\Desktop\Gisele
2020-02-20 13:48 - 2014-01-27 12:24 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\Packages
2020-02-20 13:47 - 2019-10-03 20:32 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-02-19 16:32 - 2015-11-17 13:59 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-02-19 10:33 - 2019-03-19 01:50 - 000000000 ____D C:\WINDOWS\INF
2020-02-19 10:26 - 2017-08-30 12:01 - 000529027 ____N C:\WINDOWS\Minidump\021920-47375-01.dmp
2020-02-19 10:23 - 2019-03-19 08:59 - 000864984 _____ C:\WINDOWS\system32\perfh00A.dat
2020-02-19 10:23 - 2019-03-19 08:59 - 000192684 _____ C:\WINDOWS\system32\perfc00A.dat
2020-02-15 23:51 - 2018-05-14 16:45 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\GoToMeeting
2020-02-14 10:31 - 2019-03-19 01:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-02-14 10:30 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2020-02-14 07:21 - 2019-03-19 01:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-02-14 07:21 - 2019-03-19 01:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-02-14 07:21 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-02-14 07:21 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-02-14 07:21 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-02-14 07:21 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-02-14 07:21 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-02-14 07:21 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-02-14 07:21 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-02-14 07:21 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-02-14 07:21 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-02-14 07:21 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-02-14 07:21 - 2019-03-19 01:37 - 000000000 ____D C:\WINDOWS\servicing
2020-02-14 04:01 - 2009-07-29 02:09 - 000410834 __RSH C:\bootmgr
2020-02-14 03:06 - 2012-12-01 17:18 - 000000000 ____D C:\Program Files (x86)\WinRAR
2020-02-14 02:57 - 2019-03-19 08:59 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2020-02-14 02:57 - 2019-03-19 08:59 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2020-02-14 02:57 - 2019-03-19 08:59 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2020-02-14 02:57 - 2019-03-19 01:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-02-14 02:57 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2020-02-14 02:56 - 2019-03-19 08:59 - 000000000 ____D C:\WINDOWS\system32\winrm
2020-02-14 02:56 - 2019-03-19 08:59 - 000000000 ____D C:\WINDOWS\system32\slmgr
2020-02-14 02:56 - 2019-03-19 08:59 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2020-02-14 02:56 - 2019-03-19 01:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-02-14 02:56 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-02-14 02:56 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-02-14 02:55 - 2019-03-19 01:52 - 000000000 ___SD C:\WINDOWS\system32\dsc
2020-02-14 02:54 - 2019-03-19 09:02 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-02-14 02:54 - 2019-03-19 09:02 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-02-14 02:54 - 2019-03-19 01:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-02-14 02:48 - 2014-01-15 17:57 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2020-02-14 02:47 - 2013-06-13 20:00 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\CrashDumps
2020-02-14 02:47 - 2012-11-23 20:27 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\Google
2020-02-14 02:33 - 2013-07-11 17:13 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-02-14 01:58 - 2012-11-24 10:48 - 120407888 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-02-14 01:36 - 2012-06-18 20:16 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-02-14 01:32 - 2012-06-18 20:21 - 000000000 ___HD C:\Program Files (x86)\Temp
2020-02-14 01:28 - 2017-09-07 16:36 - 000000000 ____D C:\WINDOWS\system32\DAX3
2020-02-14 01:28 - 2017-09-07 16:36 - 000000000 ____D C:\WINDOWS\system32\DAX2
2020-02-14 01:27 - 2012-06-18 20:21 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-02-14 01:11 - 2016-04-30 21:27 - 000000000 ____D C:\Program Files (x86)\Cisco
2020-02-14 01:11 - 2012-06-18 20:22 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2020-02-14 01:11 - 2012-06-18 20:22 - 000000000 ____D C:\Program Files (x86)\Atheros
2020-02-14 01:04 - 2012-11-23 10:54 - 000000000 ____D C:\ProgramData\AVAST Software
2020-02-14 00:50 - 2012-12-01 17:18 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-02-14 00:50 - 2012-12-01 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-02-14 00:38 - 2012-12-02 17:02 - 000000000 ___RD C:\Users\Gabriela Kary\SkyDrive
2020-02-14 00:35 - 2012-11-23 20:28 - 000000000 ____D C:\Program Files (x86)\Google
2020-02-14 00:33 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-02-14 00:33 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-02-13 21:00 - 2019-03-19 09:02 - 000000000 ____D C:\Program Files\Windows Portable Devices
2020-02-13 21:00 - 2019-03-19 09:02 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2020-02-13 21:00 - 2019-03-19 09:02 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2020-02-13 21:00 - 2019-03-19 09:02 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2020-02-13 21:00 - 2019-03-19 09:00 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2020-02-13 21:00 - 2019-03-19 08:59 - 000000000 ____D C:\WINDOWS\SysWOW64\es
2020-02-13 21:00 - 2019-03-19 08:59 - 000000000 ____D C:\WINDOWS\system32\es
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\TextInput
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\InstallShield
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\setup
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\Keywords
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\icsxml
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\downlevel
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\DDFs
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\Com
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\IME
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-02-13 21:00 - 2019-03-19 01:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-02-13 20:45 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2020-02-13 20:45 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2020-02-13 20:45 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2020-02-13 20:45 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2020-02-13 20:45 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\MUI
2020-02-13 20:45 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2020-02-13 20:45 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\IME
2020-02-13 20:45 - 2009-07-14 00:20 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2020-02-13 20:44 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\Containers
2020-02-13 20:44 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\Branding
2020-02-13 20:43 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\appcompat
2020-02-13 20:43 - 2014-05-22 10:39 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Nero
2020-02-13 20:43 - 2012-12-02 16:48 - 000000000 ___RD C:\Users\Gabriela Kary\Dropbox
2020-02-13 20:41 - 2019-03-19 01:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-02-13 20:41 - 2017-09-07 14:02 - 000000000 ____D C:\Program Files\KMSpico
2020-02-13 20:41 - 2014-12-05 21:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-02-13 20:40 - 2015-01-26 20:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-02-13 20:05 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\registration
2020-02-13 19:29 - 2016-09-14 08:32 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\Spotify
2020-02-13 19:23 - 2012-11-23 11:18 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-02-13 12:27 - 2019-03-19 01:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-02-13 11:34 - 2014-01-27 12:24 - 000000000 ____D C:\Users\Invitado
2020-02-13 11:34 - 2014-01-27 12:24 - 000000000 ____D C:\Users\ASPNET
2020-02-13 11:34 - 2014-01-27 12:24 - 000000000 ____D C:\Users\Administrador
2020-02-13 11:34 - 2014-01-27 12:24 - 000000000 ____D C:\Users\__vmware_user__
2020-02-12 00:57 - 2013-11-24 22:14 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\cache
2020-02-11 21:58 - 2017-12-05 09:29 - 000000027 _____ C:\Users\Gabriela Kary\Downloads\RFQ-20171205PO#10001LCL Shipment_DOC.r11
2020-02-05 01:52 - 2019-03-19 08:59 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2020-02-05 01:52 - 2019-03-19 08:59 - 000000000 ____D C:\WINDOWS\system32\WCN
2020-02-05 01:50 - 2019-03-19 01:52 - 000000000 ____D C:\Program Files\Windows Defender
2020-02-05 01:50 - 2019-03-19 01:52 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-02-04 23:20 - 2016-09-14 08:31 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Spotify
2020-02-04 15:32 - 2017-08-30 12:01 - 000816267 ____N C:\WINDOWS\Minidump\020420-34546-01.dmp
2020-02-03 17:56 - 2019-03-19 01:56 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-02-03 17:56 - 2019-03-19 01:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-02-01 10:30 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-01-31 15:28 - 2017-08-30 12:01 - 000882475 ____N C:\WINDOWS\Minidump\013120-41687-01.dmp
2020-01-30 21:06 - 2013-02-21 23:38 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\ElevatedDiagnostics
2020-01-25 22:20 - 2019-10-18 21:17 - 000002079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2020-01-25 22:20 - 2019-10-18 21:17 - 000002067 _____ C:\Users\Public\Desktop\BlueStacks Multi-Instance Manager.lnk
2020-01-25 22:20 - 2019-10-18 21:17 - 000001784 _____ C:\Users\Public\Desktop\BlueStacks.lnk
2020-01-25 22:20 - 2019-10-18 21:17 - 000001766 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk
2020-01-25 22:15 - 2019-10-18 21:09 - 000000000 ____D C:\Users\Public\BlueStacks
2020-01-25 22:15 - 2019-10-18 21:09 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\BlueStacks
2020-01-25 22:12 - 2019-10-18 21:09 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Local\BlueStacksSetup
2020-01-25 15:08 - 2017-09-18 11:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-01-24 00:35 - 2009-07-13 23:34 - 000000678 _____ C:\WINDOWS\win.ini
2020-01-23 22:05 - 2014-02-26 08:14 - 000000282 __RSH C:\ProgramData\ntuser.pol
2020-01-23 20:33 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2020-01-23 19:55 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\ServiceState
2020-01-23 19:45 - 2019-03-19 09:01 - 000000000 ____D C:\WINDOWS\OCR
2020-01-23 19:41 - 2014-10-31 17:01 - 000000000 ____D C:\Users\Administrador.GabrielaKary-PC\AppData\Local\Adobe
2020-01-23 19:35 - 2019-03-19 01:52 - 000000000 ____D C:\ProgramData\USOPrivate
2020-01-23 19:27 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\spool
2020-01-23 19:25 - 2019-03-19 01:52 - 000000000 ____D C:\Program Files\Windows NT
2020-01-23 19:22 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\Globalization
2020-01-23 19:21 - 2019-03-19 01:52 - 000000000 __RHD C:\Users\Public\Libraries
2020-01-23 19:07 - 2020-01-17 11:14 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-01-23 19:07 - 2018-09-19 19:20 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Stremio
2020-01-23 19:07 - 2015-10-24 13:32 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2020-01-23 19:07 - 2015-06-26 10:43 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wordfast
2020-01-23 19:07 - 2013-01-03 17:06 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DRAE
2020-01-23 19:07 - 2012-11-23 11:12 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2020-01-23 19:06 - 2013-08-15 11:23 - 000000000 ____D C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ImTOO
2020-01-23 19:04 - 2011-10-18 16:44 - 001904380 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2020-01-23 18:00 - 2009-07-29 02:09 - 000008192 __RSH C:\BOOTSECT.BAK
2020-01-23 17:39 - 2009-07-14 01:45 - 000009696 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-01-23 17:39 - 2009-07-14 01:45 - 000009696 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-01-23 16:25 - 2013-01-04 11:01 - 000000000 ____D C:\ProgramData\VMware
2020-01-23 16:25 - 2013-01-04 11:01 - 000000000 ____D C:\Program Files (x86)\VMware
2020-01-23 14:51 - 2019-12-22 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2020-01-23 14:51 - 2019-03-19 08:59 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2020-01-23 14:51 - 2019-03-19 01:56 - 000000000 ____D C:\WINDOWS\Setup
2020-01-23 14:51 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-01-23 14:51 - 2019-03-19 01:49 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2020-01-23 14:51 - 2018-11-07 12:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-01-23 14:51 - 2018-09-05 17:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDL Trados Studio 2017 Apps
2020-01-23 14:51 - 2018-09-05 17:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDL Trados Studio 2017
2020-01-23 14:51 - 2018-03-22 23:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ApSIC Tools
2020-01-23 14:51 - 2017-08-28 16:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2020-01-23 14:51 - 2015-06-26 10:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BCL easyConverter SDK
2020-01-23 14:51 - 2014-11-27 18:16 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe
2020-01-23 14:51 - 2014-10-28 21:37 - 000000000 ____D C:\WINDOWS\SysWOW64\vbox
2020-01-23 14:51 - 2014-10-28 21:37 - 000000000 ____D C:\WINDOWS\system32\vbox
2020-01-23 14:51 - 2014-05-22 10:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 10
2020-01-23 14:51 - 2014-05-19 09:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2020-01-23 14:51 - 2013-09-12 23:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2020-01-23 14:51 - 2013-08-11 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2020-01-23 14:51 - 2013-06-20 10:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2020-01-23 14:51 - 2013-01-04 15:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2020-01-23 14:51 - 2013-01-04 15:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2020-01-23 14:51 - 2013-01-04 15:27 - 000000000 ____D C:\WINDOWS\SHELLNEW
2020-01-23 14:51 - 2013-01-04 10:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Transit XV
2020-01-23 14:51 - 2013-01-03 19:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDL Passolo 2011
2020-01-23 14:51 - 2013-01-03 19:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDL Passolo 2009
2020-01-23 14:51 - 2013-01-03 18:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDL Passolo 2007
2020-01-23 14:51 - 2013-01-03 18:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core FTP
2020-01-23 14:51 - 2013-01-03 18:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word Magic Software 5.6
2020-01-23 14:51 - 2013-01-03 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PractiCount & Invoice (Business)
2020-01-23 14:51 - 2013-01-03 16:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diccionario de uso del español
2020-01-23 14:51 - 2013-01-03 16:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Collins
2020-01-23 14:51 - 2013-01-03 16:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diccionario Longman Advanced
2020-01-23 14:51 - 2013-01-03 16:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 11
2020-01-23 14:51 - 2013-01-03 13:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
2020-01-23 14:51 - 2013-01-03 13:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealVNC
2020-01-23 14:51 - 2012-12-22 21:11 - 000000000 __SHD C:\WINDOWS\system32\%APPDATA%
2020-01-23 14:51 - 2012-12-02 17:50 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
2020-01-23 14:51 - 2012-12-02 17:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OmegaT
2020-01-23 14:51 - 2012-12-01 17:24 - 000000000 __SHD C:\WINDOWS\SysWOW64\%APPDATA%
2020-01-23 14:51 - 2012-11-24 14:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cobian Backup 11
2020-01-23 14:51 - 2012-11-23 10:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 3
2020-01-23 14:51 - 2012-06-18 20:30 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite
2020-01-23 14:51 - 2012-06-18 20:28 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUSDVD
2020-01-23 14:51 - 2012-06-18 20:13 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2020-01-23 14:51 - 2012-06-18 20:13 - 000000000 ____D C:\Program Files\Common Files\Intel
2020-01-23 14:51 - 2012-06-18 20:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility
2020-01-23 14:51 - 2011-10-18 17:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Park
2020-01-23 14:51 - 2011-10-18 16:55 - 000000000 ____D C:\WINDOWS\tr
2020-01-23 14:51 - 2011-10-18 16:55 - 000000000 ____D C:\WINDOWS\th
2020-01-23 14:51 - 2011-10-18 16:55 - 000000000 ____D C:\WINDOWS\fr
2020-01-23 14:51 - 2011-10-18 16:55 - 000000000 ____D C:\WINDOWS\es
2020-01-23 14:51 - 2011-10-18 16:55 - 000000000 ____D C:\WINDOWS\en
2020-01-23 14:51 - 2011-10-18 16:55 - 000000000 ____D C:\WINDOWS\ar
2020-01-23 14:51 - 2011-10-18 16:50 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2020-01-23 14:51 - 2011-10-18 16:50 - 000000000 ____D C:\Program Files (x86)\Windows Live
2020-01-23 14:51 - 2011-10-18 16:48 - 000000000 ____D C:\Program Files\Windows Live
2020-01-23 14:51 - 2011-02-18 15:42 - 000000000 ____D C:\WINDOWS\system32\SPReview
2020-01-23 14:51 - 2011-02-18 15:22 - 000000000 ____D C:\WINDOWS\system32\EventProviders
2020-01-23 14:51 - 2009-07-14 02:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2020-01-23 14:51 - 2009-07-14 00:20 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2020-01-23 14:51 - 2009-07-14 00:20 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2020-01-23 14:34 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\schemas
2020-01-23 14:34 - 2017-09-08 12:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutePDF
2020-01-23 14:34 - 2017-04-07 10:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McGraw-Hill
2020-01-23 14:34 - 2013-01-04 10:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Idiom
2020-01-23 14:34 - 2013-01-03 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDL
2020-01-23 14:34 - 2013-01-03 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDL International
2020-01-23 14:34 - 2013-01-03 17:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diccionario Espasa de Medicina
2020-01-23 14:34 - 2013-01-03 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diccionario Jurídico Espasa
2020-01-23 14:34 - 2013-01-03 16:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diccion@rios Espasa
2020-01-23 14:34 - 2012-11-24 14:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
2020-01-23 14:33 - 2019-03-19 01:52 - 000000000 __SHD C:\Program Files\Windows Sidebar
2020-01-23 14:33 - 2019-03-19 01:52 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2020-01-23 14:33 - 2016-04-30 21:27 - 000000000 ____D C:\Program Files\Intel
2020-01-23 14:33 - 2012-06-18 20:21 - 000000000 ____D C:\Program Files\Realtek
2020-01-23 14:33 - 2012-06-18 20:18 - 000000000 ____D C:\Program Files\Synaptics
2020-01-23 14:33 - 2009-07-14 02:32 - 000000000 ____D C:\Program Files\Microsoft Games
2020-01-23 14:33 - 2009-07-14 02:32 - 000000000 ____D C:\Program Files\DVD Maker
2020-01-23 14:24 - 2020-01-09 18:26 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2020-01-23 14:24 - 2020-01-09 18:26 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2020-01-23 14:24 - 2020-01-09 18:26 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2020-01-23 14:24 - 2020-01-09 18:26 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2020-01-23 14:24 - 2020-01-09 18:26 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2020-01-23 14:24 - 2020-01-09 18:26 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2020-01-23 14:24 - 2020-01-09 18:26 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2020-01-23 14:24 - 2020-01-09 18:26 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2020-01-23 14:24 - 2020-01-09 18:26 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2020-01-23 14:24 - 2020-01-09 18:26 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngkeyhelper.dll
2020-01-23 14:24 - 2019-03-19 02:00 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2020-01-23 14:24 - 2019-03-19 02:00 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2020-01-23 14:24 - 2019-03-19 02:00 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2020-01-23 14:24 - 2019-03-19 02:00 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2020-01-23 14:24 - 2019-03-19 02:00 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2020-01-23 14:24 - 2019-03-19 02:00 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2020-01-23 14:24 - 2019-03-19 02:00 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2020-01-23 14:24 - 2019-03-19 02:00 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2020-01-23 14:24 - 2019-03-19 02:00 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2020-01-23 14:24 - 2019-03-19 02:00 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2020-01-23 14:24 - 2019-03-19 02:00 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2020-01-23 14:24 - 2019-03-19 02:00 - 000009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2020-01-23 14:24 - 2019-03-19 01:58 - 000783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2020-01-23 14:24 - 2019-03-19 01:58 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2020-01-23 14:24 - 2019-03-19 01:58 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2020-01-23 14:24 - 2019-03-19 01:58 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2020-01-23 14:24 - 2019-03-19 01:58 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2020-01-23 14:24 - 2019-03-19 01:58 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2020-01-23 14:24 - 2019-03-19 01:58 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2020-01-23 14:24 - 2019-03-19 01:58 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2020-01-23 14:24 - 2019-03-19 01:58 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2020-01-23 14:24 - 2019-03-19 01:58 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2020-01-23 14:24 - 2019-03-19 01:58 - 000009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2020-01-23 14:24 - 2019-03-19 01:57 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2020-01-23 14:23 - 2019-03-19 02:00 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2020-01-23 14:23 - 2019-03-19 02:00 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2020-01-23 14:23 - 2019-03-19 01:58 - 001401344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2020-01-23 14:23 - 2019-03-19 01:58 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2020-01-23 14:23 - 2019-03-19 01:58 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2020-01-23 14:22 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2020-01-23 14:22 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2020-01-23 14:22 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2020-01-23 14:22 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2020-01-23 14:22 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2020-01-23 14:22 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2020-01-23 14:22 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\et-EE
2020-01-23 14:22 - 2019-03-19 01:52 - 000000000 ____D C:\WINDOWS\system32\es-MX

==================== Archivos en la raíz de algunos directorios ========

2013-09-30 14:37 - 2013-09-30 14:37 - 000023604 _____ () C:\Users\Gabriela Kary\AppData\Roaming\Pixillion.dmp
2014-05-19 09:24 - 2019-11-13 23:27 - 000005632 _____ () C:\Users\Gabriela Kary\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-01-04 10:40 - 2013-01-04 10:40 - 000000101 _____ () C:\Users\Gabriela Kary\AppData\Local\fusioncache.dat
2018-11-07 19:54 - 2018-11-07 19:54 - 000000000 _____ () C:\Users\Gabriela Kary\AppData\Local\oobelibMkey.log
2015-10-18 10:58 - 2015-10-19 21:31 - 000000073 _____ () C:\Users\Gabriela Kary\AppData\Local\package.nw.new
2019-12-22 19:34 - 2019-12-22 19:34 - 000000003 _____ () C:\Users\Gabriela Kary\AppData\Local\updater.log
2019-12-22 19:34 - 2019-12-22 19:34 - 000000424 _____ () C:\Users\Gabriela Kary\AppData\Local\UserProducts.xml
2019-12-18 14:51 - 2019-12-18 14:51 - 000000000 _____ () C:\Users\Gabriela Kary\AppData\Local\{046D7C68-8B3A-461B-9D09-173585A49E37}

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

Y esto es lo último. Quedo a la espera de una respuesta para saber que más hacer. Gracias

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 16-02-2020
Ejecutado por Gabriela Kary (22-02-2020 02:42:36)
Ejecutado desde C:\Users\Gabriela Kary\Desktop
Windows 10 Home Versión 1909 18363.657 (X64) (2020-01-23 22:26:29)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-770216848-1095929110-15174267-500 - Administrator - Enabled) => C:\Users\Administrador.GabrielaKary-PC
ASPNET (S-1-5-21-770216848-1095929110-15174267-1002 - Limited - Enabled)
DefaultAccount (S-1-5-21-770216848-1095929110-15174267-503 - Limited - Disabled)
Gabriela Kary (S-1-5-21-770216848-1095929110-15174267-1000 - Administrator - Enabled) => C:\Users\Gabriela Kary
HomeGroupUser$ (S-1-5-21-770216848-1095929110-15174267-1034 - Limited - Enabled)
Invitado (S-1-5-21-770216848-1095929110-15174267-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-770216848-1095929110-15174267-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Avast Antivirus (Disabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

ABBYY FineReader 11 (HKLM-x32\...\{F1100000-0011-0000-0001-074957833700}) (Version: 11.0.460 - ABBYY)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.22 - Adobe Systems)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.330 - Adobe)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.9.199 - Adobe Systems, Inc.)
Advanced SystemCare 3 (HKLM-x32\...\Advanced SystemCare 3_is1) (Version: 3.8.0 - IObit)
Akamai NetSession Interface (HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\Akamai) (Version:  - Akamai Technologies, Inc)
Alcor Micro USB Card Reader (HKLM-x32\...\{4555BB9E-E715-4260-A178-E8EFD2B653E3}) (Version: 1.2.0117.08443 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 1.2.0117.08443 - Alcor Micro Corp.)
ApSIC Xbench 3.0 (HKLM-x32\...\ApSIC Xbench) (Version: 3.0.0.1419 - ApSIC, S.L.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.50 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0037 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.24 - asus)
ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.108.222 - eCareme Technologies, Inc.)
AsusScr_K3 Series_ENG (HKLM-x32\...\AsusScr_K3 Series_ENG) (Version: 1.0.0001 - ASUS)
ATK Package (ASUS Keyboard Hotkeys) (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0061 - ASUSTeK COMPUTER INC.)
Atom (HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\atom) (Version: 1.43.0 - GitHub Inc.)
Avast Driver Updater (HKLM-x32\...\{630C3D8E-2BEE-465F-9E59-BB069ED10761}) (Version: 2.5.6 - AVAST Software) Hidden
Avast Driver Updater (HKLM-x32\...\Avast Driver Updater) (Version: 2.5.6 - AVAST Software)
Avast Premium Security (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Backup and Sync from Google (HKLM\...\{825F60D9-2633-4D52-B2B0-5DA143433BBC}) (Version: 3.48.8668.1933 - Google, Inc.)
BCL easyConverter SDK 1.0.0 (HKLM-x32\...\{58BCCF7A-0F6F-4082-AD84-482D30415639}) (Version: 1.00.0034 - BCL Technologies)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.160.10.1119 - BlueStack Systems, Inc.)
Chrome Remote Desktop Host (HKLM-x32\...\{EF08968E-F7E7-43EA-95B1-1E8ACC8CC459}) (Version: 80.0.3987.18 - Google Inc.)
Cisco WebEx Meetings (HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\ActiveTouchMeetingClient) (Version:  - Cisco WebEx LLC)
Cobian Backup 11 Gravity (HKLM-x32\...\CobBackup11) (Version:  - )
Collins Master Dictionary (HKLM-x32\...\{AB8F9BA0-D552-4644-B22B-B594E9A7DB88}) (Version: 1.01.0000 - RHM)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controle ActiveX do Windows Live Mesh para Conexões Remotas (HKLM-x32\...\{39B3184E-0BFB-40FA-ADDC-E7E2D535CDA9}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Core FTP Pro 2.1 (HKLM-x32\...\Core FTP Pro 2.1) (Version:  - )
CutePDF Writer 2.7 (HKLM\...\CutePDF Writer Installation) (Version:  - )
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2926 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Deadtime Stories (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-118716773}) (Version:  - Oberon Media)
Diccion@rios Espasa (HKLM-x32\...\Diccion@rios Espasa) (Version:  - )
Diccionario de uso del español (HKLM-x32\...\{9E12B067-E70C-11D4-B835-00609784DEA0}) (Version: 2.00.01 - Editorial Gredos)
Diccionario Espasa de Medicina (HKLM-x32\...\Diccionario Espasa de Medicina) (Version:  - )
Diccionario Jurídico Espasa (HKLM-x32\...\Diccionario Jurídico Espasa) (Version:  - )
Diccionario Longman Advanced (HKLM-x32\...\Diccionario Longman Advanced1.0) (Version:  - )
DRAE (HKLM-x32\...\DRAE) (Version: 1.0.0.0 - RAE)
Dream Vacation Solitaire (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111249233}) (Version:  - Oberon Media)
Dropbox (HKLM-x32\...\Dropbox) (Version: 91.4.548 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.295.1 - Dropbox, Inc.) Hidden
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Farm Frenzy 3 - Madagascar (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-119205603}) (Version:  - Oberon Media)
FileZilla Client 3.7.1 (HKLM-x32\...\FileZilla Client) (Version: 3.7.1 - FileZilla Project)
Galapago (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version:  - Oberon Media)
Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Game Park Console (HKLM-x32\...\Game Park Console) (Version: 1.2.4.431 - Oberon Media Inc.)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.46.5308 - GOM & Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.106 - Google LLC)
Google Earth Pro (HKLM\...\{70A0F34E-564B-4F93-ADD6-3BAEC6E44075}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Google+ Auto Backup (HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.)
GoTo Opener (HKLM-x32\...\{1F803452-798F-49FB-A5DD-9F527F7017E4}) (Version: 1.0.473 - LogMeIn, Inc.)
GoToMeeting 10.8.0.16786 (HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\GoToMeeting) (Version: 10.8.0.16786 - LogMeIn, Inc.)
HijackThis 1.99.0 (HKLM-x32\...\HijackThis) (Version: 1.99.0 - Soeperman Enterprises Ltd.)
HP Deskjet 2510 series Ayuda (HKLM-x32\...\{72B5E26E-FE32-4E0E-BAD2-1546A2D9EAF6}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 2510 series Estudio para la mejora del producto (HKLM\...\{D9C3A88D-5B0F-4FC3-8A7C-96B4E9AB1ADC}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Deskjet 2510 series Setup Guide (HKLM-x32\...\{216C7F38-4BBC-4E9A-8392-C9FA21B54386}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 2510 series Software básico del dispositivo (HKLM\...\{A8F738FC-F8E7-4581-8929-F22136401377}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.3341 - HP Photo Creations Powered by RocketLife)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
Idiom WorldServer Desktop Workbench (HKLM-x32\...\{7AD087F4-C7B6-4349-A9BF-0484BE301033}) (Version: 9.0.1.60 - Idiom Technologies, Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2462 - Intel Corporation)
J2SE Runtime Environment 5.0 Update 10 (HKLM-x32\...\{3248F0A8-6813-11D6-A77B-00B0D0150100}) (Version: 1.5.0.100 - Sun Microsystems, Inc.)
Java(TM) 6 Update 14 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216014F0}) (Version: 6.0.140 - Sun Microsystems, Inc.)
Java(TM) 6 Update 39 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216039FF}) (Version: 6.0.390 - Oracle)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K-Lite Mega Codec Pack 10.4.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.4.5 - )
Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 1.0.0.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 47.0.2 (x86 es-AR) (HKLM-x32\...\Mozilla Firefox 47.0.2 (x86 es-AR)) (Version: 47.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
OmegaT version 2.5.5_03 (HKLM-x32\...\OmegaT 2.5.5_03_is1) (Version:  - OmegaT)
OmegaT version 3.6.0_04 (HKLM-x32\...\OmegaT 3.6.0_04_is1) (Version:  - OmegaT)
OpenOffice.org 3.4.1 (HKLM-x32\...\{7A5B4D34-7FB3-44E6-9DCC-4AF507700A1E}) (Version: 3.41.9593 - Apache Software Foundation)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
Photoshop CS5 Extended 12.0 (HKLM-x32\...\Photoshop CS5 Extended 12.0) (Version:  - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Plants vs Zombies (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117080787}) (Version:  - Oberon Media)
Popcorn Time (HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\Popcorn Time) (Version:  - Popcorn Official) <==== ATENCIÓN
PractiCount and Invoice 3.1 (Business) (HKLM-x32\...\{F6532BB3-1BB3-4D70-912D-13A19B11B322}_is1) (Version: 3.1 - Practiline Software)
Prey Anti-Theft (HKLM-x32\...\{698B896B-C2B4-444E-B312-EA2530CDD033}) (Version: 1.7.3 - Prey, Inc.) Hidden
Qualcomm Atheros 11ac Wireless LAN&Bluetooth Installer (HKLM-x32\...\{3241744A-BA36-41F0-B4AA-EF3946D00632}) (Version: 11.0.0.10434 - Qualcomm)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8564 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 4.2.3 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.2.3 - VS Revo Group, Ltd.)
SafeZone Stable 1.51.2220.62 (HKLM-x32\...\SafeZone 1.51.2220.62) (Version: 1.51.2220.62 - Avast Software) Hidden
SDL MultiTerm 2009 Administrator (HKLM-x32\...\{48401067-6865-480B-B961-24731C529FDB}) (Version: 8.5.506.0 - SDL)
SDL MultiTerm 2009 Convert (HKLM-x32\...\{B20D7ACA-AD82-4167-BCD8-038F6E39F012}) (Version: 8.5.506.0 - SDL)
SDL MultiTerm 2009 Core SP3 (HKLM-x32\...\{7FF1945C-4400-4EA4-B9B3-CD0EC21DCB5E}) (Version: 8.5.166.0 - SDL)
SDL MultiTerm 2009 Extract (HKLM-x32\...\{EA7AC182-CB13-499B-A9B0-CE64D010A1B2}) (Version: 8.5.506.0 - SDL)
SDL MultiTerm 2009 SP3 (HKLM-x32\...\{5E457532-09EF-4D2C-8574-9E0DBF99517A}) (Version: 8.5.166.0 - SDL)
SDL MultiTerm 2009 Word Integration (HKLM-x32\...\{1F60A8E0-7B44-485D-8288-22F18FD8E49D}) (Version: 8.5.506.0 - SDL)
SDL MultiTerm SideBySide Tools (HKLM-x32\...\{18107EE8-6977-4181-A2D2-A9DF2DB609DD}) (Version: 1.0.166 - SDL)
SDL Passolo 2007 (HKLM-x32\...\SDL Passolo 2007) (Version: 2007 - PASS Engineering GmbH)
SDL Passolo 2009 SP7 (HKLM-x32\...\SDL Passolo 2009 SP7) (Version: SDL Passolo 2009 SP7 - SDL Passolo GmbH)
SDL Passolo 2011 (HKLM-x32\...\SDL Passolo 2011) (Version: SDL Passolo 2011 SP3 - SDL Passolo GmbH)
SDL Trados 2007 (HKLM-x32\...\{69C76448-D4B8-4886-A848-61CD4EB4B2C7}) (Version: 8.3.863 - SDL International)
SDL Trados 2017 - Remove suite of products (HKLM-x32\...\TranslationStudio2017) (Version: 5.0.5746 - SDL)
SDL Trados Studio 2009 SP3 (HKLM-x32\...\{399F2130-59E1-11DF-9F46-8091DFD72085}) (Version: 1.3.2229.0 - SDL)
SDL Trados Studio 2017  (HKLM-x32\...\{B0764AC8-49AB-46CE-A80B-7C121AB08850}) (Version: 5.0.5746 - SDL)
SDL Trados Synergy 2007 (HKLM-x32\...\{7E62742F-1EEF-4532-B7FF-2D58004BDEAE}) (Version: 2.3.161.0 - SDL International)
SDL WorldServer Components 5.0 (HKLM-x32\...\{7A6C5491-8268-4B0C-988F-B4C08D73E657}) (Version: 5.0.5746 - SDL)
SDLX (HKLM-x32\...\{CE98383B-7BB4-457C-AEAB-D89E9537628F}) (Version: 9.3.7044 - )
SDLX (HKLM-x32\...\{F148DEF8-8CCB-4157-A48B-DDBB957AF9F8}) (Version: 9.3.7044 - SDL International) Hidden
Sentinel Protection Installer 7.5.0 (HKLM-x32\...\{A5A63519-F5C2-4F4A-849A-F28A1AB3D522}) (Version: 7.5.0 - SafeNet, Inc.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Skype versión 8.42 (HKLM-x32\...\Skype_is1) (Version: 8.42 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\Spotify) (Version: 1.1.25.559.g85cf5e4c - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Stremio (HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\Stremio) (Version: 4.4.10 - Smart Code Ltd.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.6.0 - Synaptics Incorporated)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.93332 - TeamViewer)
Transit XV (HKLM-x32\...\{07213F5B-E3ED-11D5-AFBD-000476918112}) (Version: 1.00.0000 - STAR Deutchland GmbH)
UltraISO Premium V9.33 (HKLM-x32\...\UltraISO_is1) (Version:  - )
Unlocker 1.9.0-x64 (HKLM\...\Unlocker) (Version: 1.9.0-x64 - Cedrick Collomb)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VNC Enterprise Edition E4.4.2 (HKLM\...\RealVNC_is1) (Version: E4.4.2 (r13117) - RealVNC Ltd.)
VNC Mirror Driver 1.8.0 (HKLM\...\VNCMirror_is1) (Version: 1.8.0 - RealVNC Ltd.)
WhatsApp (HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\WhatsApp) (Version: 0.4.315 - WhatsApp)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live 程式集 (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.32.3 - ASUS)
WinRAR 5.71 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.25 - ASUS)
Word Magic Professional Suite Premier 5.6 (HKLM-x32\...\{01AF8EF9-CF10-4A60-9787-27A4CFD81920}) (Version: 5.6.0 - Word Magic Software Inc.)
Wordfast (HKLM-x32\...\Wordfast) (Version:  - )
World of Goo (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-116672750}) (Version:  - Oberon Media)
Zoom (HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)
بريد Windows Live (HKLM-x32\...\{0A4C4B29-5A9D-4910-A13C-B920D5758744}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
معرض صور Windows Live (HKLM-x32\...\{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-02-13] (Microsoft Studios) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2020-02-13] (Microsoft Corporation) [MS Ad]

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-770216848-1095929110-15174267-1000_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Gabriela Kary\AppData\Local\GoToMeeting\8625\G2MOutlookAddin64.dll => Ningún archivo
CustomCLSID: HKU\S-1-5-21-770216848-1095929110-15174267-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Gabriela Kary\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-770216848-1095929110-15174267-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Gabriela Kary\Dropbox [2012-12-02 16:48]
CustomCLSID: HKU\S-1-5-21-770216848-1095929110-15174267-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Gabriela Kary\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc -> Google Inc.)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\ASUSWSShellExt64.dll [2011-05-25] (eCareme Technologies, Inc.) [Archivo no firmado]
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\ASUSWSShellExt64.dll [2011-05-25] (eCareme Technologies, Inc.) [Archivo no firmado]
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Ningún archivo
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [FineReader11ContextMenu] -> {79E48320-C6B5-49F1-992B-571D53586885} => C:\Program Files (x86)\ABBYY FineReader 11\FRIntegration.x64.dll [2012-01-19] (ABBYY SOLUTIONS LIMITED -> ABBYY.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers1-x32: [PractiCount.Bu] -> {EBDF1F20-C829-11D1-8233-0020AF3E97A9} => C:\Windows\SysWow64\PCountBuCME.dll [2006-07-28] (Practiline Software) [Archivo no firmado]
ContextMenuHandlers1-x32: [TranslationStudioShlExt] -> {E7DEC74B-A003-4D8C-B6C7-A35663094777} => C:\Program Files (x86)\SDL\SDL Trados Studio\Studio1\TranslationStudioExt.dll [2010-08-19] (TODO: <Company name>) [Archivo no firmado]
ContextMenuHandlers1-x32: [TranslationStudioShlExt2011] -> {F6C08E19-DCE1-45B5-A225-E94FADB585DD} => C:\Program Files (x86)\SDL\SDL Trados Studio\Studio5\TranslationStudioExt.dll [2016-11-10] (TODO: <Company name>) [Archivo no firmado]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [XbShellEx] -> {127EA5BF-BA08-454E-BA6E-5484096F4B11} => C:\Program Files (x86)\ApSIC\Xbench\XbShellEx-291623448.dll [2018-01-23] (ApSIC, S.L. -> )
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2007-07-17] (EZB Systems, Inc.) [Archivo no firmado]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\XPClient.DLL [2011-07-29] (eCareme Technologies, Inc.) [Archivo no firmado]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-21] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-04-29] () [Archivo no firmado]
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Ningún archivo
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers4-x32: [PractiCount.Bu] -> {EBDF1F20-C829-11D1-8233-0020AF3E97A9} => C:\Windows\SysWow64\PCountBuCME.dll [2006-07-28] (Practiline Software) [Archivo no firmado]
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2007-07-17] (EZB Systems, Inc.) [Archivo no firmado]
ContextMenuHandlers4: [XbShellEx] -> {127EA5BF-BA08-454E-BA6E-5484096F4B11} => C:\Program Files (x86)\ApSIC\Xbench\XbShellEx-291623448.dll [2018-01-23] (ApSIC, S.L. -> )
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.32.0.dll [2020-02-19] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> Ningún archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-14] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers6: [FineReader11ContextMenu] -> {79E48320-C6B5-49F1-992B-571D53586885} => C:\Program Files (x86)\ABBYY FineReader 11\FRIntegration.x64.dll [2012-01-19] (ABBYY SOLUTIONS LIMITED -> ABBYY.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-21] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers6-x32: [PractiCount.Bu] -> {EBDF1F20-C829-11D1-8233-0020AF3E97A9} => C:\Windows\SysWow64\PCountBuCME.dll [2006-07-28] (Practiline Software) [Archivo no firmado]
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2019-03-29] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2007-07-17] (EZB Systems, Inc.) [Archivo no firmado]
ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-04-29] () [Archivo no firmado]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.LAGS] => C:\WINDOWS\system32\lagarith.dll [148992 2011-12-07] ( ) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.X264] => C:\WINDOWS\system32\x264vfw64.dll [3554304 2013-03-17] (x264vfw project) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.XVID] => C:\WINDOWS\system32\xvidvfw.dll [258560 2011-06-24] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\WINDOWS\system32\ff_vfw.dll [127488 2014-04-24] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\WINDOWS\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] ( ) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3649536 2013-03-17] (x264vfw project) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [243200 2011-06-24] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112640 2014-04-24] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [Archivo no firmado]

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

Shortcut: C:\Users\Gabriela Kary\Favorites\Sitio para descargas de NCH Software.lnk -> hxxp://www.nchsoftware.com/es/index.htm
ShortcutWithArgument: C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Menú de aplicaciones de Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --show-app-list
ShortcutWithArgument: C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default

==================== Módulos cargados (Lista blanca) =============

2009-03-01 23:07 - 2009-03-01 23:07 - 000200704 _____ ( ) [Archivo no firmado] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\LogicNP.EZShellExtensions.dll
2020-01-27 12:58 - 2020-01-27 12:58 - 001110528 _____ () [Archivo no firmado] \\?\C:\Windows\Prey\versions\1.9.3\node_modules\sqlite3\lib\binding\node-v57-win32-ia32\node_sqlite3.node
2012-09-23 20:44 - 2012-09-23 20:44 - 000010240 _____ () [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\es_es\acrotray.esp
2010-01-02 11:42 - 2010-01-02 11:42 - 000098304 _____ () [Archivo no firmado] C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2010-04-29 20:40 - 2010-04-29 20:40 - 000013312 _____ () [Archivo no firmado] C:\Program Files\Unlocker\UnlockerCOM.dll
2012-09-23 20:44 - 2012-09-23 20:44 - 000010240 _____ (Adobe Systems Inc.) [Archivo no firmado] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp
2012-06-18 20:16 - 2010-12-20 17:49 - 001892352 _____ (Apache Software Foundation) [Archivo no firmado] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll
2011-05-25 04:09 - 2011-05-25 04:09 - 000227840 _____ (eCareme Technologies, Inc.) [Archivo no firmado] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\ASUSWSShellExt64.dll
2011-07-28 05:48 - 2011-07-28 05:48 - 000274432 _____ (eCareme Technologies, Inc.) [Archivo no firmado] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\eCaremeDLL.dll
2011-07-29 06:37 - 2011-07-29 06:37 - 004526080 _____ (eCareme Technologies, Inc.) [Archivo no firmado] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\XPClient.dll
2012-06-18 20:16 - 2010-12-20 17:45 - 000069632 _____ (Intel Corporation) [Archivo no firmado] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll
2012-11-24 14:29 - 2012-07-31 12:12 - 000009728 _____ (Luis Cobian) [Archivo no firmado] C:\Program Files (x86)\Cobian Backup 11\CobStringList.dll
2016-10-11 16:16 - 2016-10-11 16:16 - 000867328 _____ (Robert Simpson, et al.) [Archivo no firmado] C:\Program Files (x86)\Common Files\SDL\Telemetrics\SQLite.Interop.dll
2009-10-28 22:41 - 2009-10-28 22:41 - 000270336 _____ (The Apache Software Foundation) [Archivo no firmado] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\log4net.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\HiddenBootMount:$WIMMOUNTDATA [370]
AlternateDataStreams: C:\ProgramData\Temp:1FCE3F44 [108]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-770216848-1095929110-15174267-1000\...\1-se.com -> 1-se.com

Hay 11400 más sitios.


==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2012-11-23 11:26 - 2017-07-10 18:57 - 000453167 ____R C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1	www.007guard.com
127.0.0.1	007guard.com
127.0.0.1	008i.com
127.0.0.1	www.008k.com
127.0.0.1	008k.com
127.0.0.1	www.00hq.com
127.0.0.1	00hq.com
127.0.0.1	010402.com
127.0.0.1	www.032439.com
127.0.0.1	032439.com
127.0.0.1	www.0scan.com
127.0.0.1	0scan.com
127.0.0.1	1000gratisproben.com
127.0.0.1	www.1000gratisproben.com
127.0.0.1	1001namen.com
127.0.0.1	www.1001namen.com
127.0.0.1	100888290cs.com
127.0.0.1	www.100888290cs.com
127.0.0.1	www.100sexlinks.com
127.0.0.1	100sexlinks.com
127.0.0.1	10sek.com
127.0.0.1	www.10sek.com
127.0.0.1	www.1-2005-search.com
127.0.0.1	1-2005-search.com
127.0.0.1	123fporn.info
127.0.0.1	www.123fporn.info
127.0.0.1	123haustiereundmehr.com
127.0.0.1	www.123haustiereundmehr.com
127.0.0.1	123moviedownload.com
127.0.0.1	www.123moviedownload.com

Hay 15545 más lineas.


==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;;C:\Program Files (x86)\SDL International\SDLX;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\QuickTime\QTSystem\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-770216848-1095929110-15174267-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Gabriela Kary\Desktop\Escritorio\Gaby\Fotos\Chutrulo\Con chutrulo.jpg
DNS Servers: 200.28.4.130 - 200.28.4.129
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Ningún archivo)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

MSCONFIG\Services: BBSvc => 3
MSCONFIG\Services: c2cautoupdatesvc => 2
MSCONFIG\Services: c2cpnrsvc => 2
MSCONFIG\Services: chromoting => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: gusvc => 3
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: SBSDWSCService => 2
MSCONFIG\Services: SentinelKeysServer => 2
MSCONFIG\Services: SentinelProtectionServer => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: tor => 2
MSCONFIG\Services: ufad-ws60 => 3
MSCONFIG\Services: VMAuthdService => 2
MSCONFIG\Services: VMUSBArbService => 2
MSCONFIG\Services: WinDefend => 2
MSCONFIG\Services: WinVNC4 => 2
MSCONFIG\Services: wuauserv => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Actualizar la licencia de ESET.lnk => C:\Windows\pss\Actualizar la licencia de ESET.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Synchronizer.lnk => C:\Windows\pss\Adobe Reader Synchronizer.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Gabriela Kary^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft SharePoint Workspace.lnk => C:\Windows\pss\Microsoft SharePoint Workspace.lnk.Startup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Gabriela Kary\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Cobian Backup 11 interface => "C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe" -service
MSCONFIG\startupreg: GrooveMonitor => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEMN.EXE
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: IntelWireless => "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
MSCONFIG\startupreg: OfficeSyncProcess => "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
MSCONFIG\startupreg: OneDrive => "C:\Users\Gabriela Kary\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Spotify => "C:\Users\Gabriela Kary\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Gabriela Kary\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: SynAsusAcpi => %ProgramFiles%\Synaptics\SynTP\SynAsusAcpi.exe
MSCONFIG\startupreg: Wireless Console 3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{AF2C5609-374D-4BC4-90B1-5911DF307AF6}] => (Allow) C:\Users\Gabriela Kary\AppData\Roaming\Zoom\bin\airhost.exe Ningún archivo
FirewallRules: [{07DDA868-213D-4B6E-B2A6-1C94A38C70E3}] => (Allow) C:\Users\Gabriela Kary\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{34A1490F-4522-432E-B431-1C24D6F7D36C}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\80.0.3987.18\remoting_host.exe (Google LLC -> Google Inc.)
FirewallRules: [{70537836-9AA1-41A5-AF59-7E03C5553300}] => (Allow) LPort=1688
FirewallRules: [{74C9C4B6-F42F-4044-8F8C-188D945224BF}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe Ningún archivo
FirewallRules: [{D4223FAC-A7E7-4277-8065-079FE639B864}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe Ningún archivo
FirewallRules: [{4FAD5A05-E9DF-4FB7-B443-E26E14F29145}] => (Allow) C:\Users\Gabriela\airhost.exe Ningún archivo
FirewallRules: [{8C68AA83-4D6C-4BC0-8A59-C445552B6890}] => (Allow) C:\Users\Gabriela\Zoom.exe Ningún archivo
FirewallRules: [{B3693E52-4E56-41C0-BEE7-EE2AB925372F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{746BC6E5-DF8D-4C84-9EDA-C6504B58D2E5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{636AED53-6D5A-4936-BB96-163A914E5CB6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5588DC9D-424D-4644-AF95-842E3C0772D8}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{5787C971-0444-4C1D-A7F3-6650588A51FB}C:\users\gabriela kary\appdata\local\programs\lnv\stremio-4\node.exe] => (Allow) C:\users\gabriela kary\appdata\local\programs\lnv\stremio-4\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [TCP Query User{A91C23A9-03B0-49F9-96A3-2FC7DD88853F}C:\users\gabriela kary\appdata\local\programs\lnv\stremio-4\node.exe] => (Allow) C:\users\gabriela kary\appdata\local\programs\lnv\stremio-4\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{D2CB5E66-E0DB-46FF-A6F0-9454E0BCCDEC}] => (Block) C:\Program Files (x86)\SDL\SDL Trados Studio\Studio5 ()
FirewallRules: [{870D661B-8FEC-4576-B849-514E217DCA94}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{68EEAF37-DB8A-4682-AB07-7E6116835838}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{DAD7AEF5-0CBC-44CC-B4DC-0324FBCEBB2D}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{74FC7BDA-ADE6-4B02-AD91-0045FAEFA1F0}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [UDP Query User{FE9CE173-FF95-40A7-B940-CC01D96D605E}C:\users\gabriela kary\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gabriela kary\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{0AAEA943-6925-44C4-B236-0D23A4A66CA6}C:\users\gabriela kary\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gabriela kary\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{7319EAC4-0FF8-465A-B7C7-853929A93828}C:\users\gabriela kary\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gabriela kary\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{F93E7C5D-DE2E-4C71-9CBC-BB2B255FAF9E}C:\users\gabriela kary\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gabriela kary\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7FB4FB8E-EF9A-40C9-BF83-6F769541FD1E}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe Ningún archivo
FirewallRules: [UDP Query User{4D63BAEC-7BCF-431A-BE0D-700F92843A71}C:\users\gabriela kary\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\gabriela kary\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [TCP Query User{45328529-734B-4B3E-853A-E04A49CC19AC}C:\users\gabriela kary\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\gabriela kary\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [{443657DA-4928-48FD-9076-A5106408053B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C180DBAA-E927-4974-9B3F-D32C1A4080DC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{19E79CBA-5CBF-4CBD-98FA-D8F1D19335E2}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{FB6E6813-B09C-4A32-919E-441D6CDBC246}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{45AC4F70-F33C-42E4-AD81-88FB1FE77BB3}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{95BCB296-2E53-4BBE-B406-017CACACF7DB}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{3A6636E1-0B4B-4E13-866C-E6AA3366C830}] => (Allow) C:\Program Files\HP\HP Deskjet 2510 series\Bin\USBSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{07C46F3B-0546-49B8-ABC3-625206C4BA84}] => (Allow) LPort=48114
FirewallRules: [{31612A01-6764-41A2-87BF-17023CF4B0B8}] => (Allow) LPort=48113
FirewallRules: [{256E2F61-3DAF-4A19-A110-FE99263EAD43}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe Ningún archivo
FirewallRules: [{20D2D114-1489-4114-B9F0-27555D8E9AF6}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe Ningún archivo
FirewallRules: [{99C75E38-A412-4202-93F0-5DD5758758CB}] => (Allow) C:\Program Files\RealVNC\VNC4\winvnc4.exe (RealVNC Limited -> RealVNC Ltd.)
FirewallRules: [{D175F7C0-A159-4476-99C7-EA6A25569EEC}] => (Allow) C:\Program Files\RealVNC\VNC4\winvnc4.exe (RealVNC Limited -> RealVNC Ltd.)
FirewallRules: [{0FBC269D-C2E9-49C4-99A5-8BC45E1D9C6D}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc. -> SafeNet, Inc.)
FirewallRules: [{04C96610-B730-4773-AD09-0B0C235CE30C}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc. -> SafeNet, Inc.)
FirewallRules: [{55D4A95E-FE7E-4AD0-BA97-EC4257EFF997}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{B0CD35FF-0AC9-4E47-AD70-E5BEFEED0F99}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (SafeNet, Inc. -> SafeNet, Inc)
FirewallRules: [{099B76AB-5FE4-44B3-AC77-1FC46AEB0824}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{B3D88AFC-3B28-4CD3-905D-918E06151A4A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink -> CyberLink Corp.)
FirewallRules: [{8B3A8E41-299F-462F-8BEB-2B3F7B457402}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7F9AAA09-56A0-404C-8315-8207FA9CBD10}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D2C3EDB7-2964-47BD-B4F6-2376FBB95766}] => (Allow) LPort=1900
FirewallRules: [{42BAD269-5F2C-4065-874D-0A670DAEDF57}] => (Allow) LPort=2869
FirewallRules: [{F2929C2E-6241-42C8-AC5E-860EB0B3CDB1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DDA95258-1A7A-49AA-9C01-50F1EE982C62}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{5012434E-DB78-49DF-A7F7-F797EC77698C}] => (Allow) C:\Windows\Prey\versions\1.9.3\bin\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{013FA98A-6516-4099-BE13-D3AE1ABF2C29}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{C4EB45EB-0E8E-4F14-93ED-3BABB6262DE9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3D8DF32B-36B5-407D-84B8-01C7440EF10E}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Puntos de Restauración =========================

12-02-2020 16:59:07 Operación de restauración
13-02-2020 13:48:52 Removed Avast Driver Updater
13-02-2020 13:51:49 Removed Avast Driver Updater
13-02-2020 19:01:29 Operación de restauración
14-02-2020 01:06:54 Installed DriverSetupUtility
22-02-2020 01:32:28 Punto de control programado
22-02-2020 02:03:47 AdwCleaner_BeforeCleaning_22/02/2020_02:03:43

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (02/22/2020 02:33:08 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10716,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (02/22/2020 02:24:02 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3868,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (02/22/2020 02:07:24 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.

Error: (02/22/2020 02:07:24 AM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]

Error: (02/22/2020 02:07:21 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error al actualizar el estado de Malwarebytes a SECURITY_PRODUCT_STATE_OFF.

Error: (02/22/2020 12:38:02 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error al actualizar el estado de Avast Antivirus a SECURITY_PRODUCT_STATE_ON.

Error: (02/21/2020 10:13:41 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10052,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (02/21/2020 09:46:10 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10700,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Bien… y ahora sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :

• Para hacerlo descarga Delfix en tu escritorio.

• Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")

• Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO

• Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

En el equipo con los demas programas cerrados:

Inicio >>> Ejecutar >>>Escribes notepad.exe.

Ahora copia y pega estos archivos dentro del Notepad:

Start
CreateRestorePoint:
CloseProcesses:

FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  Ningún archivo
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -  Ningún archivo
U3 idsvc; no ImagePath
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]
2020-01-23 19:24 - 2020-02-22 01:03 - 000002264 _____ C:\WINDOWS\system32\Tasks\{4DE5A624-A3F1-495E-8105-D6D15D50BB8A}
2020-01-23 19:24 - 2020-02-22 01:03 - 000002122 _____ C:\WINDOWS\system32\Tasks\{4F70C83B-CACA-4FF0-AEFB-14252590040C}
2020-01-23 19:24 - 2020-02-22 01:03 - 000002122 _____ C:\WINDOWS\system32\Tasks\{239BA00A-8DFC-44C2-9729-67E764D82316}
2020-01-23 19:24 - 2020-02-22 01:03 - 000002122 _____ C:\WINDOWS\system32\Tasks\{1268FA86-D8AF-489A-8C5E-0314587AF0BF}
2020-01-23 19:24 - 2012-12-02 17:51 - 000003392 _____ C:\WINDOWS\system32\Tasks\{E28F102E-75A1-4EA4-AEA6-10856DEF6027}
2020-01-23 19:24 - 2012-12-02 17:44 - 000003352 _____ C:\WINDOWS\system32\Tasks\{9806ED26-BD91-4A04-A1C4-4C5BB16D3848}
2020-01-23 19:24 - 2012-12-02 17:44 - 000003346 _____ C:\WINDOWS\system32\Tasks\{6FEDEFFC-72D9-4D0A-95F5-8A5701ED222A}
2019-12-18 14:51 - 2019-12-18 14:51 - 000000000 _____ () C:\Users\Gabriela Kary\AppData\Local\{046D7C68-8B3A-461B-9D09-173585A49E37}
hortcut: C:\Users\Gabriela Kary\Favorites\Sitio para descargas de NCH Software.lnk -> hxxp://www.nchsoftware.com/es/index.htm
ShortcutWithArgument: C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Menú de aplicaciones de Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --show-app-list
ShortcutWithArgument: C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default
AlternateDataStreams: C:\HiddenBootMount:$WIMMOUNTDATA [370]
AlternateDataStreams: C:\ProgramData\Temp:1FCE3F44 [108]


HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.

• Ejecutas Frst.exe.

• Presionas el botón Corregir y aguardas a que termine.

• La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).

Lo pegas en tu próxima respuesta, comentado como va el problema

Ademas vas a hacer un ANALISIS PERSONALIZADO con Malwarebytes.Fijate en el manual y marcas todas las casillas para hacerlo y me pegas el log

Fixlog.txt

El punto de restauración fue creado correctamente.
Procesos cerrados correctamente.
HKLM\SOFTWARE\Policies\Mozilla => eliminado correctamente
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => no encontrado
HKLM\Software\Classes\PROTOCOLS\Handler\skype4com => no encontrado
idsvc => servicio no encontrado.
SWDUMon => servicio no encontrado.
"C:\WINDOWS\system32\Tasks\{4DE5A624-A3F1-495E-8105-D6D15D50BB8A}" => no encontrado
"C:\WINDOWS\system32\Tasks\{4F70C83B-CACA-4FF0-AEFB-14252590040C}" => no encontrado
"C:\WINDOWS\system32\Tasks\{239BA00A-8DFC-44C2-9729-67E764D82316}" => no encontrado
"C:\WINDOWS\system32\Tasks\{1268FA86-D8AF-489A-8C5E-0314587AF0BF}" => no encontrado
"C:\WINDOWS\system32\Tasks\{E28F102E-75A1-4EA4-AEA6-10856DEF6027}" => no encontrado
"C:\WINDOWS\system32\Tasks\{9806ED26-BD91-4A04-A1C4-4C5BB16D3848}" => no encontrado
"C:\WINDOWS\system32\Tasks\{6FEDEFFC-72D9-4D0A-95F5-8A5701ED222A}" => no encontrado
"C:\Users\Gabriela Kary\AppData\Local\{046D7C68-8B3A-461B-9D09-173585A49E37}" => no encontrado
hortcut: C:\Users\Gabriela Kary\Favorites\Sitio para descargas de NCH Software.lnk -> hxxp://www.nchsoftware.com/es/index.htm => Error: Ninguna corrección automática encontrada para esta entrada.
C:\Users\Gabriela Kary\AppData\Local\Google\Chrome\User Data\Menú de aplicaciones de Chrome.lnk => Acceso directo argumento eliminado correctamente
C:\Users\Gabriela Kary\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk => Acceso directo argumento eliminado correctamente
"C:\HiddenBootMount" => ":$WIMMOUNTDATA" ADS no encontrado.
"C:\ProgramData\Temp" => ":1FCE3F44" ADS no encontrado.
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-770216848-1095929110-15174267-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-770216848-1095929110-15174267-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 1 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 2 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de red Bluetooth mientras los medios
est‚n desconectados.

Adaptador de Ethernet Conexi¢n de  rea local:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 1:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 2:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de red inal mbrica:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::fdfa:b295:dcfe:c8ac%7
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.84
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.1.1

Adaptador de Ethernet Conexi¢n de red Bluetooth:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= Final de CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

0 out of 0 jobs canceled.

========= Final de CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= Final de CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 12893055 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 277790 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 15520 B
NetworkService => 17224 B
Gabriela Kary => 39024 B
Administrador.GabrielaKary-PC => 39024 B

RecycleBin => 0 B
EmptyTemp: => 22.4 MB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 16:36:08 ====

Informe Malwarebytes

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 22/2/20
Hora del análisis: 16:51
Archivo de registro: b57f1b26-55ac-11ea-b820-dc85de150611.json

-Información del software-
Versión: 4.0.4.49
Versión de los componentes: 1.0.823
Versión del paquete de actualización: 1.0.19632
Licencia: Prueba

-Información del sistema-
SO: Windows 10 (Build 18362.657)
CPU: x64
Sistema de archivos: NTFS
Usuario: GabrielaKary-PC\Gabriela Kary

-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 621106
Amenazas detectadas: 5
Amenazas en cuarentena: 5
Tiempo transcurrido: 3 hr, 30 min, 24 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 5
RiskWare.KG, C:\PROGRAM FILES (X86)\ESET\MINODLOGIN\UNINST.EXE, En cuarentena, 12732, 74363, 1.0.19632, , ame, 
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE 3\AWCINIT.EXE, En cuarentena, 3828, 396386, 1.0.19632, , ame, 
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE 3\AWC.EXE.BAK, En cuarentena, 3828, 396386, 1.0.19632, , ame, 
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE 3\FILESWEEP.DLL, En cuarentena, 3828, 396386, 1.0.19632, , ame, 
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE 3\ROUTINE.DLL, En cuarentena, 3828, 396386, 1.0.19632, , ame, 

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

Me pones los informes,y con esto creo que estaria listo

mbar-logt.txt

Malwarebytes Anti-Rootkit BETA 1.10.3.1001
www.malwarebytes.org

Database version:
  main:    v2020.02.23.04
  rootkit: v2020.02.23.04

Windows 10 x64 NTFS
Internet Explorer 11.657.18362.0
Gabriela Kary :: GABRIELAKARY-PC [administrator]

23/02/2020 12:34:17
mbar-log-2020-02-23 (12-34-17).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 303458
Time elapsed: 1 hour(s), 54 minute(s), 35 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

system-log.txt

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.10.3.1001

(c) Malwarebytes Corporation 2011-2012

OS version: 10.0.9200 Windows 10 x64

Account is Administrative

Internet Explorer version: 11.657.18362.0

Java version: 1.6.0_39

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED, R:\ DRIVE_FIXED
CPU speed: 2.295000 GHz
Memory total: 6208761856, free: 2279178240

Downloaded database version: v2020.02.23.04
Downloaded database version: v2020.02.23.04
Downloaded database version: v2018.01.20.01
=======================================
Initializing...
Driver version: 4.3.0.15
------------ Kernel report ------------
     02/23/2020 12:33:43
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kd.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\System32\drivers\msrpc.sys
\SystemRoot\System32\drivers\ksecdd.sys
\SystemRoot\System32\drivers\werkernel.sys
\SystemRoot\System32\drivers\CLFS.SYS
\SystemRoot\System32\drivers\tm.sys
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\BOOTVID.dll
\SystemRoot\System32\drivers\FLTMGR.SYS
\SystemRoot\System32\drivers\clipsp.sys
\SystemRoot\System32\drivers\cmimcext.sys
\SystemRoot\System32\drivers\ntosext.sys
\SystemRoot\system32\CI.dll
\SystemRoot\System32\drivers\cng.sys
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\WppRecorder.sys
\SystemRoot\system32\drivers\SleepStudyHelper.sys
\SystemRoot\System32\Drivers\acpiex.sys
\SystemRoot\system32\drivers\SgrmAgent.sys
\SystemRoot\System32\drivers\ACPI.sys
\SystemRoot\System32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\aswElam.sys
\SystemRoot\System32\drivers\intelpep.sys
\SystemRoot\system32\drivers\WindowsTrustedRT.sys
\SystemRoot\System32\drivers\WindowsTrustedRTProxy.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\drivers\msisadrv.sys
\SystemRoot\System32\drivers\pci.sys
\SystemRoot\System32\drivers\vdrvroot.sys
\SystemRoot\system32\drivers\pdc.sys
\SystemRoot\system32\drivers\CEA.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\System32\drivers\spaceport.sys
\SystemRoot\System32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\System32\drivers\storahci.sys
\SystemRoot\System32\drivers\storport.sys
\SystemRoot\System32\drivers\EhStorClass.sys
\SystemRoot\System32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Wof.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\System32\drivers\wfplwfs.sys
\SystemRoot\system32\drivers\aswVmm.sys
\SystemRoot\system32\drivers\aswRvrt.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\System32\drivers\volume.sys
\SystemRoot\System32\drivers\volsnap.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\system32\drivers\iorate.sys
\SystemRoot\System32\drivers\disk.sys
\SystemRoot\System32\drivers\CLASSPNP.SYS
\SystemRoot\system32\drivers\aswbuniv.sys
\SystemRoot\system32\drivers\aswbidsh.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\drivers\cdrom.sys
\SystemRoot\system32\drivers\aswSP.sys
\SystemRoot\system32\drivers\aswSnx.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\system32\drivers\filecrypt.sys
\SystemRoot\system32\drivers\tbs.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\system32\drivers\aswKbd.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_307898c750ba9e44\BasicDisplay.sys
\SystemRoot\System32\DriverStore\FileRepository\basicrender.inf_amd64_ba2a8de08ea0d469\BasicRender.sys
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\aswRdr2.sys
\SystemRoot\system32\drivers\afunix.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\drivers\vwififlt.sys
\SystemRoot\System32\drivers\pacer.sys
\SystemRoot\system32\drivers\aswNetSec.sys
\SystemRoot\system32\drivers\netbios.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\System32\drivers\npsvctrig.sys
\SystemRoot\System32\drivers\mssmbios.sys
\??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys
\SystemRoot\System32\drivers\gpuenergydrv.sys
\??\C:\WINDOWS\system32\drivers\mbae64.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\drivers\bam.sys
\??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
\SystemRoot\system32\drivers\aswbidsdriver.sys
\SystemRoot\system32\drivers\aswArPot.sys
\SystemRoot\system32\DRIVERS\ahcache.sys
\SystemRoot\System32\drivers\Vid.sys
\SystemRoot\System32\drivers\winhvr.sys
\SystemRoot\System32\DriverStore\FileRepository\compositebus.inf_amd64_43ac632006e874bb\CompositeBus.sys
\SystemRoot\System32\drivers\kdnic.sys
\SystemRoot\System32\DriverStore\FileRepository\umbus.inf_amd64_e566af5dd9858a0e\umbus.sys
\SystemRoot\System32\drivers\CAD.sys
\SystemRoot\system32\DRIVERS\igdkmd64.sys
\SystemRoot\System32\drivers\TeeDriverW8x64.sys
\SystemRoot\System32\drivers\usbehci.sys
\SystemRoot\System32\drivers\USBPORT.SYS
\SystemRoot\System32\drivers\HDAudBus.sys
\SystemRoot\System32\drivers\portcls.sys
\SystemRoot\System32\drivers\drmk.sys
\SystemRoot\System32\drivers\athw8x.sys
\SystemRoot\System32\drivers\vwifibus.sys
\SystemRoot\System32\drivers\USBXHCI.SYS
\SystemRoot\system32\drivers\ucx01000.sys
\SystemRoot\System32\drivers\L1C63x64.sys
\SystemRoot\System32\drivers\i8042prt.sys
\SystemRoot\System32\drivers\mouclass.sys
\SystemRoot\System32\drivers\kbdclass.sys
\SystemRoot\System32\drivers\CmBatt.sys
\SystemRoot\System32\drivers\BATTC.SYS
\SystemRoot\System32\drivers\intelppm.sys
\SystemRoot\System32\drivers\wmiacpi.sys
\SystemRoot\System32\drivers\NdisVirtualBus.sys
\SystemRoot\System32\DriverStore\FileRepository\swenum.inf_amd64_1c567926e5b29133\swenum.sys
\SystemRoot\System32\drivers\rdpbus.sys
\SystemRoot\System32\drivers\usbhub.sys
\SystemRoot\System32\drivers\USBD.SYS
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\System32\drivers\HdAudio.sys
\SystemRoot\System32\drivers\UsbHub3.sys
\SystemRoot\system32\DRIVERS\btfilter.sys
\SystemRoot\System32\drivers\BTHUSB.sys
\SystemRoot\System32\drivers\bthport.sys
\SystemRoot\System32\drivers\usbccgp.sys
\SystemRoot\System32\Drivers\usbvideo.sys
\SystemRoot\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
\SystemRoot\System32\drivers\rfcomm.sys
\SystemRoot\System32\drivers\BthEnum.sys
\SystemRoot\System32\drivers\bthpan.sys
\SystemRoot\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys
\SystemRoot\System32\drivers\btampm.sys
\SystemRoot\System32\drivers\bthhfenum.sys
\SystemRoot\System32\drivers\BthHfAud.sys
\SystemRoot\System32\Drivers\fastfat.SYS
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\win32kfull.sys
\SystemRoot\System32\drivers\HIDPARSE.SYS
\SystemRoot\System32\win32kbase.sys
\SystemRoot\System32\Drivers\dump_diskdump.sys
\SystemRoot\System32\drivers\dump_storahci.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\System32\drivers\monitor.sys
\SystemRoot\System32\drivers\dxgmms2.sys
\SystemRoot\System32\cdd.dll
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\drivers\wcifs.sys
\SystemRoot\system32\drivers\cldflt.sys
\SystemRoot\system32\drivers\storqosflt.sys
\SystemRoot\system32\drivers\aswMonFlt.sys
\SystemRoot\system32\drivers\mmcss.sys
\SystemRoot\System32\Drivers\MbamChameleon.sys
\SystemRoot\system32\drivers\aswStm.sys
\SystemRoot\system32\drivers\mslldp.sys
\SystemRoot\system32\drivers\lltdio.sys
\SystemRoot\system32\drivers\rspndr.sys
\SystemRoot\System32\DRIVERS\wanarp.sys
\SystemRoot\system32\drivers\ndisuio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\drivers\winquic.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\System32\drivers\vwifimp.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\Drivers\Sentinel64.sys
\??\C:\Program Files\BlueStacks\BstkDrv_bgp.sys
\SystemRoot\system32\drivers\mqac.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\drivers\Ndu.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\drivers\rassstp.sys
\SystemRoot\System32\DRIVERS\NDProxy.sys
\SystemRoot\System32\drivers\AgileVpn.sys
\SystemRoot\System32\drivers\rasl2tp.sys
\SystemRoot\System32\drivers\raspptp.sys
\SystemRoot\System32\DRIVERS\raspppoe.sys
\SystemRoot\System32\drivers\condrv.sys
\SystemRoot\System32\DRIVERS\ndistapi.sys
\SystemRoot\System32\drivers\ndiswan.sys
\SystemRoot\System32\Drivers\mbamswissarmy.sys
\SystemRoot\system32\DRIVERS\mwac.sys
\SystemRoot\system32\DRIVERS\farflt.sys
\??\C:\WINDOWS\system32\DRIVERS\mbam.sys
\SystemRoot\system32\drivers\bindflt.sys
\??\C:\WINDOWS\system32\drivers\455B65A9.sys
----------- End -----------
Done!

Scan started
Database versions:
  main:    v2020.02.23.04
  rootkit: v2020.02.23.04

<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffff9789e50f2060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
--------- Disk Stack ------
DevicePointer: 0xffff9789e50d38f0, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xffff9789e50f2060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
DevicePointer: 0xffff9789e1e2ddd0, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xffff9789e1e2a060, DeviceName: \Device\0000002e\, DriverName: \Driver\storahci\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: B8ADAD7E

Partition information:

    Partition 0 type is Other (0xc)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 2048  Numsec = 67108864
    Partition is bootable
    Partition file system is FAT32

    Partition 1 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 67110912  Numsec = 729040163
    Partition is bootable
    Partition file system is NTFS

    Partition 2 type is Other (0x27)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 796151808  Numsec = 1138688
    Partition is not bootable
    Partition file system is NTFS

    Partition 3 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 797292544  Numsec = 179476480
    Partition is not bootable
    Partition file system is NTFS

Disk Size: 500107862016 bytes
Sector size: 512 bytes

Done!
Scan finished
=======================================


Removal queue found; removal started
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-0-2048-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-1-67110912-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-2-796151808-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-3-797292544-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
Removal finished

Segun Malwarebytes Anti-Rootkit no tengo nada. De echo no tuve que hacer limpieza. Pero me sucede lo siguiente en Chrome: Lo cual, una de las primeras cosas que mencioné al iniciar el tema es que me salia que Chrome esta administrado por una organización, y es una notebook personal que tenia sincronizada mi cuenta de correo de Gmail (con la cual segun el soporte de google nunca deberia aparecer que esta administrado por una organizacion). En aquel entonces habia ejecutado un archivo que indicó un experto de Google que me borró el mensaje, mas sin embargo nunca logré que realice una limpieza el mismo navegador (como lo indica la imagen de arriba, siempre me da error). Y me sucede por ej, que inicio sesion de Whatsapp web (con la opcion de mantener la sesion activa), cierro el navegador al no necesitar mas la note, luego cuando vuelvo a abrir WhatsApp Web me vuelve a mostrar el QR como si nunca hubiera iniciado y me sigue mostrando la app que tengo una sesion activa.

Esto solo a modo de ejemplo. Siento que toda la info esta en riesgo. Actualmente no tengo mi cuenta de Gmail sincronizada a Chrome. Pero necesito tenerla por temas de trabajo. Y no me siento segura.

• Realiza copia marcadores de Chrome (Exportar MARCADORES) >> https://support.google.com/chrome/answer/96816?hl=es

• Desinstalas Chrome con Revo.

• Descarga e instalas >> Revo Uninstaller | InfoSpyware

• Luego, segun Indico, desinstalas el / los programas indicados, seleccionando cuando lo indique Revo, el Modo Avanzado

• Marcas NOMBRE PROGRAMA y pulsas desinstalar en el menu de Revo, en Modo Avanzado

• Cuando lo hagas, se iniciara el desinstalador de NOMBRE DE PROGRAMA y al finalizar (si alguno te pide reiniciar, pulsas en NO o Cancelar y continuas con Revo), realizas:

1. Pulsas Analizar en Revo, para que analice los restos del programa

2. Pulsas seleccionar todo, para eliminar restos del registro

3. Pulsas borrar todo

4. Pulsas siguiente

5. Pulsas seleccionar todo, para eliminar, si hay, carpetas

6. Pulsas borrar todo

7. Pulsas finalizar

Eliminas estas carpetas si estan:

1. C:\ProgramData\Google/Chrome

2. C:\Users\All Users\Google\Chrome

3. C:\Users\TU NOMBRE DE USUARIO\AppData\Local\Google\Chrome

4. C:\Users\TU NOMBRE DE USUARIO\AppData\Roaming\Google\Chrome

• Para poder ver esas ubicaciónes, debe Mostrar archivos ocultos

Reinstalas >> https://www.google.es/chrome/browser/desktop/

Tengo Revo Unistaller, y ayer se me venció la version de prueba. Puedo desinstalarlo y poder volver a instalarlo? Ahora me solicita activarlo con licencia y no la puedo pagar

Desinstalar la que tienes,y pon esta que es free

Vale. Eso mismo ya lo había hecho con Revo Uninstaller Pro y Chrome me siguió apareciendo igual administrado por un tercero pero por lo que he podido ver estos días que me has ayudado es que aún tenía muy infectada la computadora.

Acabo de reinstalar Chrome. Voy a hacer la prueba de si sigue sucediendo lo mismo con WhatsApp Web y con la herramienta de limpieza del navegador antes de sincronizar mí cuenta de Gmail. Hay algo que me recomiendes hacer para seguir viendo si queda algún virus en mí computadora?

Prueba el pc y nada mas…ya no hay virus

Ok. Muchas gracias. Ultimas consultas, sin intención de abusar. He notado la notebook especialmente lenta al iniciar luego del cagadon con los virus, y al abrir cualquier programa. Que podría hacer?

Y cómo borro todo los archivos y softwares que descargue esto últimos días?

Gracias por toda tu ayuda