Hola buenas hace unos dias me di cuenta de que al tener el portatil con la pantalla cerrada (que deberia estar en suspension) estaban los ventiladores funcionando a tope decidí abrir el administrador de tareas y vi un procceso que estaba ocupando el 93% de la cpu notepad.exe ya sabia que era un virus asi que finalice la tarea y busque donde estaba alojado(en la carpeta de windows) confirmaba lo obvio ya que el bloc de notas no ddeberia estar ahi el caso es que no consigo eliminarlo he buscado ayuda en estos foros y al ejecutar malwarebytes me ha saltado otro error WerFault.exe como troyano a esta url todo el rato ae-12-3104.bar1.madrid1.lev3l0.net creia que estaria vinculado con el notepad.exe pero no asi que si alguien de este foro me podría ayudar seria de agradecer ya que tengo bastantes cosas guardadas de la carrera y no quiero formatear el pc sin más
Buenas @Simon_Gar Bienvenido al Foro.!!!
Para revisar tu máquina, sigue estos pasos, en el orden indicado y leyendo todo lo explicado. 
Desactiva temporalmente el Antivirus 
Cómo deshabilitar temporalmente su Antivirus, mientras estemos realizando TODOS los pasos.
Vamos a descargar en TU ESCRITORIO(y NO en otro lugar 
) todas las herramientas que vamos a utilizar en este procedimiento (pero no las ejecutes todavía) :
-
Malwarebytes’ Anti-Malware + Manual.
revisa en detalle el manual, para que sepas usarlo y configurarlo correctamente. -
Farbar Recovery Scan Tool. seleccionando la versión adecuada para la arquitectura(32 o 64bits) de tu equipo.
Como saber si Mi Windows es de 32 o 64 Bits ?.
Ejecutas las herramientas de una en una y en el orden indicado :
CCleaner.-
-
Instalas y Ejecutas CCleaner siguiendo los pasos indicados en el manual.
-
Úsalo primero en su opción de Limpiador para borrar cookies, temporales de Internet y todos los archivos que te muestre como obsoletos.
-
Después usa su opción de Registro para limpiar todo el registro de Windows(haciendo copia de seguridad).
Malwarebytes.-
-
Instalas y Ejecutas MBAM siguiendo los pasos indicados en el manual.
-
Realiza un Análisis Personalizado.
-
Seleccionando TODOS a Cuarentena para enviarlo a la cuarentena y Reinicias el sistema.
-
En el apartado del programa
Historial de detecciones 
encontrarás el informe de MBAM, que debes copiar y pegar en tu próxima respuesta, para poder analizarlo.
AdwCleaner.-
-
Ejecuta Adwcleaner.exe.
-
Pulsamos en el botón Analizar ahora, y espera a que se realice el proceso, inmediatamente pulsa siempre sobre el botón Iniciar Reparación.
-
Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
-
El log/informe lo encontramos en la pestaña “Informes”, volviendo a abrir el programa si fuese necesario, para poder copiarlo y pegarlo en tu próxima respuesta.
-
El informe también se puede encontrar en C:\AdwCleaner\Logs\AdwCleaner[C00].txt
Junkware Removal Tool.-
-
Ejecuta JRT.exe.
-
Y pulsar cualquier tecla para continuar, esperar pacientemente a que termine el proceso.
-
Si en algún momento te pide Reiniciar hazlo.
-
Al finalizar, un registro/informe (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.
-
Copia y pega el contenido de JRT.txt en tu próxima respuesta.
Farbar Recovery Scan Tool.-
-
Ejecuta FRST.exe.
-
En el mensaje de la ventana del Disclaimer/Responsabilidad, pulsamos Sí/Yes
-
En la ventana principal pulsamos en el botón Analizar/Scan y esperamos a que concluya el proceso.
-
Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.
Poner los informes en tu próxima respuesta de :
- Malwarebytes, AdwCleaner, JRT, FRST + Addition.txt, y en ese orden.
Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(más de 64.000 caracteres aprox.).
Y nos cuentas como funciona tu equipo en relación al problema planteado.
Saludos Javier.
Hola de nuevo y gracias por su ayuda aqui van los informes :
//malwarebytes
Malwarebytes
www.malwarebytes.com
-Detalles del registro-
Fecha del análisis: 28/4/20
Hora del análisis: 12:32
Archivo de registro: 99541542-893b-11ea-86d8-98fa9ba0a96d.json
-Información del software-
Versión: 4.1.0.56
Versión de los componentes: 1.0.875
Versión del paquete de actualización: 1.0.23078
Licencia: Prueba
-Información del sistema-
SO: Windows 10 (Build 18362.778)
CPU: x64
Sistema de archivos: NTFS
Usuario: PORTATIL-SIMON\sigar
-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 548364
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 1 hr, 41 min, 48 seg
-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Activado
Heurística: Activado
PUP: Detectar
PUM: Detectar
-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)
Módulo: 0
(No hay elementos maliciosos detectados)
Clave del registro: 0
(No hay elementos maliciosos detectados)
Valor del registro: 0
(No hay elementos maliciosos detectados)
Datos del registro: 0
(No hay elementos maliciosos detectados)
Secuencia de datos: 0
(No hay elementos maliciosos detectados)
Carpeta: 0
(No hay elementos maliciosos detectados)
Archivo: 0
(No hay elementos maliciosos detectados)
Sector físico: 0
(No hay elementos maliciosos detectados)
WMI: 0
(No hay elementos maliciosos detectados)
(end)
//adwCleaner
# -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build: 04-03-2020
# Database: 2020-04-03.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 04-28-2020
# Duration: 00:00:10
# OS: Windows 10 Home
# Scanned: 32067
# Detected: 5
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\Users\sigar\AppData\Local\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\Windows\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER
Preinstalled.LenovoIMController Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
//JTR
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by sigar (Administrator) on 28/04/2020 at 16:30:39,34
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 28/04/2020 at 16:35:32,62
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 26-04-2020
Ejecutado por sigar (administrador) sobre PORTATIL-SIMON (LENOVO 81SX) (28-04-2020 16:36:13)
Ejecutado desde C:\Users\sigar\Desktop
Perfiles cargados: sigar (Perfiles disponibles: sigar)
Platform: Windows 10 Home Versión 1903 18362.778 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_d52c63e0e1c02c96\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_fd1ebe74690ca4a5\IntelCpHDCPSvc.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.2.93.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe <2>
(Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_c5e13868d4180cd2\Display.NvContainer\NVDisplay.Container.exe <2>
(Pioneer DJ Corporation -> Pioneer DJ Corporation.) C:\Program Files (x86)\Pioneer\DDJ-1000\DDJ-1000_AutoSetup.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [971256 2019-09-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [601784 2019-11-01] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\Run: [Spotify] => C:\Users\sigar\AppData\Roaming\Spotify\Spotify.exe [22899944 2020-04-28] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [31740816 2020-04-27] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\sigar\AppData\Local\Microsoft\Teams\Update.exe [2324624 2019-12-17] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3371296 2020-04-04] (Valve -> Valve Corporation)
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365160 2020-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\Run: [Voicemod] => C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe [2944488 2020-01-30] (Voicemod Sociedad Limitada -> Voicemod)
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\Run: [5KPlayer] => C:\Program Files (x86)\DearMob\5KPlayer\5KPlayer.exe [28158104 2020-03-24] (Digiarty Software, Inc. -> DearMob)
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\MountPoints2: {9cc71a7e-6c7d-11ea-90e5-50e085c6b65e} - "D:\setup.exe"
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\MountPoints2: {9cc71aaa-6c7d-11ea-90e5-50e085c6b65e} - "F:\setup.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.122\Installer\chrmstp.exe [2020-04-21] (Google LLC -> Google LLC)
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa
Startup: C:\Users\sigar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2020-04-08]
ShortcutTarget: MEGAsync.lnk -> C:\ProgramData\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {023F898A-BCC9-44C5-A2EA-E776280E6B15} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {0C949484-3182-48AF-AB44-664005B72AD8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6154584 2020-03-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {15D0E3AF-972C-42D0-9B64-06AA753FB15C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {218E25C3-9F0C-4C6A-9915-8CB13E5E8C2A} - System32\Tasks\Lenovo\FBNetFilter PNP Task => C:\Windows\System32\drivers\FBNetFilterInstall.exe [1149352 2019-03-04] (LENOVO (UNITED STATES) INC. -> Lenovo Group Ltd.)
Task: {3D461E0F-1C35-459B-BBCB-D3BE021B4DB8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {45440A23-1ABE-4E50-B823-CD3CE026917C} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {55FC49CF-7353-4066-A5F4-AA733CB5B2A9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158544 2020-03-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5B553B37-CCA0-461A-8139-835B7745073A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6046D4DD-96FD-450F-96C7-6F4A8732D4CC} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2038568 2020-03-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {69C45DD0-D13D-494E-817B-E90A539F00EF} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6F51C832-0FAF-45E6-9DC6-2DB7B05641B7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {7587A4CD-9DE5-4FFA-903F-2473B13D6B90} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility://
Task: {862B4CB4-F5C1-498C-8DDC-F0F7A1F3B95D} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8A983B41-B684-426F-A3F8-D5F5DF2A532C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\5984df62-6cea-48ce-903a-bd6723b51333 => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [80536 2020-02-11] (Lenovo -> Lenovo Group Ltd.)
Task: {A2377A30-FAC2-4653-9CA9-65AF606C8932} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\9bbc9ba4-a7a1-4236-a2ea-fe5ddf3ab3da => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [80536 2020-02-11] (Lenovo -> Lenovo Group Ltd.)
Task: {A66E4CB1-0983-4893-8637-63242924F87B} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [158648 2020-03-31] (Lenovo -> Lenovo Group Ltd.)
Task: {B9CE76D8-4376-44F4-BE90-730C4BFB7C0A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6154584 2020-03-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {BF11E15E-04C9-4ED2-9B20-93FAFB14BB52} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C1846883-5AC2-4902-82EC-14CE2920960C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c8f6f400-b90d-4d08-a078-49932433d3f7 => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [80536 2020-02-11] (Lenovo -> Lenovo Group Ltd.)
Task: {CA0A4326-1927-4B0C-BD9E-47821329351D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\Windows\system32\ImController.InfInstaller.exe [54424 2020-02-11] (Lenovo -> Lenovo Group Ltd.)
Task: {CB9D1919-73F5-40FA-8C51-7B608D30DE4A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-29] (Google Inc -> Google LLC)
Task: {D4E73E2A-EEB7-4F6B-88D1-37B5E0B46987} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8f246db0-85c5-4a8f-95c2-53f98c9a685d => C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [80536 2020-02-11] (Lenovo -> Lenovo Group Ltd.)
Task: {D4EC8F37-3EEA-4307-9356-5D69CCBD4904} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158544 2020-03-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {D738BDD6-5DBC-4DA2-BC50-1CABBB357AF5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DA7FFD19-6745-4D9C-852E-CF015305393A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-29] (Google Inc -> Google LLC)
Task: {E0BDD0A4-1755-4A9F-9BC8-F244000334B8} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E8E70E7B-0175-4903-9BCB-0BF3CC2B8352} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EED49FF1-A633-4107-82B2-3B4A995789CC} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {F7E117E2-BB15-4E40-8A0D-B490DA0C482F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F87B9333-CCFC-4861-966B-1546ED48D733} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {FD001313-185C-4952-AEAE-341FFC657E3D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FDCAF267-24CD-4ED8-8B3E-52B6723FB1FF} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2f0a5449-c85c-425b-a5fa-ad1303203ed4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d89a6e35-4b47-455e-8ff7-4923ea719282}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
SearchScopes: HKU\S-1-5-21-1992403894-1641439580-3106245936-1001 -> DefaultScope {09620234-68CA-4D56-B780-AD2E2BCC54ED} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-01-17] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_231\bin\ssv.dll [2019-12-12] (Oracle America, Inc. -> Oracle Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-12-12] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-17] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-03-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-03-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-03-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-03-09] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-04-21] [UpdateUrl:hxxps://www.siteadvisor.com/waffinstall/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-12-12] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-12-12] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-1992403894-1641439580-3106245936-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\sigar\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-26] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Default [2020-04-28]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Presentaciones) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-11-29]
CHR Extension: (Documentos) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-11-29]
CHR Extension: (Google Drive) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-11-29]
CHR Extension: (YouTube) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-11-29]
CHR Extension: (Hojas de cálculo) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-11-29]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-20]
CHR Extension: (Vysor) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidgenkbbabolejbgbpnhbimgjbffefm [2020-02-15]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-04-14]
CHR Extension: (Player para ver Movistar+) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Default\Extensions\kenfcfndncbbggmafjjeihkdclggbojn [2020-01-21]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-29]
CHR Extension: (Gmail) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-11-29]
CHR Extension: (Chrome Media Router) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-22]
CHR Profile: C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-04-28]
CHR Notifications: Profile 1 -> hxxps://forospyware.com; hxxps://www.faceit.com
CHR Extension: (Presentaciones) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-03-22]
CHR Extension: (Documentos) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-03-22]
CHR Extension: (Google Drive) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-03-22]
CHR Extension: (YouTube) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-22]
CHR Extension: (Hojas de cálculo) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-03-22]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-23]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-22]
CHR Extension: (Gmail) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-03-22]
CHR Extension: (Chrome Media Router) - C:\Users\sigar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-23]
CHR Profile: C:\Users\sigar\AppData\Local\Google\Chrome\User Data\System Profile [2020-04-28]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 ACTION_SVC; C:\Program Files (x86)\Mirillis\Action!\action_svc.exe [16064 2014-10-25] (Mirillis -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11091224 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
R2 DDJ-1000_AutoSetup; C:\Program Files (x86)\Pioneer\DDJ-1000\DDJ-1000_AutoSetup.exe [119672 2017-12-14] (Pioneer DJ Corporation -> Pioneer DJ Corporation.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4506728 2020-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S2 DolbyDAXAPI; C:\Windows\system32\dolbyaposvc\DAX3API.exe [1926600 2019-09-02] (Dolby Laboratories, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-04-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 esifsvc; C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_uf.exe [2140552 2019-05-17] (Intel Corporation -> Intel Corporation)
S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [20195168 2020-04-27] (FACE IT LIMITED -> )
S4 FBNetFilterInstall; C:\Windows\System32\drivers\FBNetFilterInstall.exe [1149352 2019-03-04] (LENOVO (UNITED STATES) INC. -> Lenovo Group Ltd.)
R2 FMAPOService; C:\Windows\System32\FMService64.exe [359808 2019-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 ImControllerService; C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [80536 2020-02-11] (Lenovo -> Lenovo Group Ltd.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\SocketHeciServer.exe [876304 2019-08-30] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\TPMProvisioningService.exe [806152 2019-08-30] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_d52c63e0e1c02c96\jhi_service.exe [648080 2019-07-18] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.2.93.0\LenovoVantageService.exe [18696 2020-03-10] (Lenovo -> Lenovo Group Ltd.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
S2 LxssManagerUser; C:\Windows\system32\lxss\LxssManager.dll [632832 2020-01-17] (Microsoft Windows -> Microsoft Corporation)
R2 LxssManagerUser_40087; C:\Windows\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 LxssManagerUser_40087; C:\Windows\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-04-28] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [916712 2020-04-21] (McAfee, LLC -> McAfee, LLC)
S3 McSecDashboardService; C:\Program Files\McAfeeDashboard\McSecDashboardService.exe [1270536 2019-02-26] (McAfee, Inc. -> McAfee, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [447080 2019-07-24] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [943240 2019-07-24] (Razer USA Ltd. -> Razer Inc.)
R2 RtkAudioUniversalService; C:\Windows\System32\RtkAudUService64.exe [971256 2019-09-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 sshd; C:\Windows\System32\OpenSSH\sshd.exe [974848 2019-03-01] (Microsoft Windows -> )
S3 SshdBroker; C:\Windows\System32\SshdBroker.dll [290816 2020-02-28] (Microsoft Windows -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182120 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-03-25] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-03-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_c5e13868d4180cd2\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_c5e13868d4180cd2\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 CMUSBDAC; C:\Windows\system32\DRIVERS\CMUSBDAC.sys [3819744 2018-07-25] (WDKTestCert cm359,131641702659254692 -> C-MEDIA)
S3 DDJ-1000Audio; C:\Windows\system32\drivers\DDJ-1000Audio64.sys [51168 2017-12-13] (Pioneer DJ Corporation -> Pioneer DJ Corporation.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [136040 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\Windows\System32\DriverStore\FileRepository\dptf_acpi.inf_amd64_4a6ac5de2a7fb025\dptf_acpi.sys [77192 2019-05-16] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\dptf_cpu.sys [74120 2019-05-16] (Intel Corporation -> Intel Corporation)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2020-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2020-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 esif_lf; C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_lf.sys [407944 2019-05-16] (Intel Corporation -> Intel Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2020-04-28] (Malwarebytes Corporation -> Malwarebytes)
R0 FACEIT; C:\Windows\System32\Drivers\FACEIT.sys [20353096 2020-04-27] (FACE IT LIMITED -> )
S3 FBNetFilter; C:\Windows\System32\drivers\FBNetFlt.sys [43896 2019-09-10] (Microsoft Windows Hardware Compatibility Publisher -> Lenovo Group Ltd.)
S3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R3 iaLPSS2_GPIO2; C:\Windows\System32\drivers\iaLPSS2_GPIO2.sys [128608 2019-05-22] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R0 iaStorAC; C:\Windows\System32\drivers\iaStorAC.sys [1042072 2019-06-11] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\Windows\System32\DriverStore\FileRepository\ibtusb.inf_amd64_1d1bb12938dc20f2\ibtusb.sys [15220512 2019-09-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [214496 2020-04-28] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2020-04-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [195432 2020-04-28] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2020-04-28] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-04-28] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [124560 2020-04-28] (Malwarebytes Inc -> Malwarebytes)
R3 MEIx64; C:\Windows\System32\DriverStore\FileRepository\heci.inf_amd64_85021432489d6a1c\x64\TeeDriverW8x64.sys [266128 2019-04-17] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 Netwtw06; C:\Windows\System32\drivers\Netwtw06.sys [8723968 2019-03-19] (Microsoft Windows -> Intel Corporation)
R3 Netwtw08; C:\Windows\System32\drivers\Netwtw08.sys [9278240 2019-10-22] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_c5e13868d4180cd2\nvlddmkm.sys [23446760 2020-04-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2020-04-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-07-25] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation -> NVIDIA Corporation)
R3 P9Rdr; C:\Windows\System32\drivers\p9rdr.sys [88888 2019-11-29] (Microsoft Windows -> Microsoft Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [1158944 2019-07-18] (Realtek Semiconductor Corp. -> Realtek )
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [52240 2016-10-30] (Razer USA Ltd. -> Razer Inc)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43368 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 UcmCxUcsiNvppc; C:\Windows\System32\drivers\UcmCxUcsiNvppc.sys [715680 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
R0 VMSNPXY; C:\Windows\System32\drivers\VmsProxyHNic.sys [39736 2020-04-27] (Microsoft Windows -> Microsoft Corporation)
R3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [45408 2019-07-02] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [45960 2020-03-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [391392 2020-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-25] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-04-28 16:36 - 2020-04-28 16:36 - 000036012 _____ C:\Users\sigar\Desktop\FRST.txt
2020-04-28 16:35 - 2020-04-28 16:35 - 000000547 _____ C:\Users\sigar\Desktop\JRT.txt
2020-04-28 16:26 - 2020-04-28 16:26 - 000034876 _____ C:\Users\sigar\Desktop\cc_cop_seg.reg
2020-04-28 16:24 - 2020-04-28 16:23 - 008196784 _____ (Malwarebytes) C:\Users\sigar\Desktop\AdwCleaner (1).exe
2020-04-28 16:24 - 2020-04-28 16:23 - 001790024 _____ (Malwarebytes) C:\Users\sigar\Desktop\JRT.exe
2020-04-28 16:23 - 2020-04-28 16:28 - 000000000 ____D C:\AdwCleaner
2020-04-28 16:23 - 2020-04-28 16:27 - 000000000 ____D C:\Users\sigar\AppData\LocalLow\IGDump
2020-04-28 16:23 - 2020-04-28 16:23 - 008196784 _____ (Malwarebytes) C:\Users\sigar\Downloads\AdwCleaner.exe
2020-04-28 16:23 - 2020-04-28 16:23 - 008196784 _____ (Malwarebytes) C:\Users\sigar\Downloads\AdwCleaner (1).exe
2020-04-28 16:23 - 2020-04-28 16:23 - 001790024 _____ (Malwarebytes) C:\Users\sigar\Downloads\JRT.exe
2020-04-28 16:18 - 2020-04-28 16:18 - 000001552 _____ C:\Users\sigar\Desktop\informe malwarebyte.txt
2020-04-28 16:15 - 2020-04-28 16:15 - 000176344 _____ C:\Users\sigar\Desktop\cc_20200428_161501.reg
2020-04-28 16:11 - 2020-04-28 16:11 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-04-28 16:11 - 2020-04-28 16:11 - 000002886 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-04-28 16:11 - 2020-04-28 16:11 - 000000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-04-28 16:11 - 2020-04-28 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-04-28 16:11 - 2020-04-28 16:11 - 000000000 ____D C:\Program Files\CCleaner
2020-04-28 16:09 - 2020-04-28 16:10 - 022267336 _____ (Piriform Software Ltd) C:\Users\sigar\Downloads\ccsetup565.exe
2020-04-28 12:07 - 2020-04-28 12:07 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-04-28 12:07 - 2020-04-28 12:07 - 000214496 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-04-28 12:07 - 2020-04-28 12:07 - 000195432 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2020-04-28 12:07 - 2020-04-28 12:07 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-04-28 12:07 - 2020-04-28 12:07 - 000124560 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2020-04-28 12:07 - 2020-04-28 12:07 - 000073584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2020-04-28 12:07 - 2020-04-28 12:07 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2020-04-28 12:07 - 2020-04-28 12:07 - 000002044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-04-28 12:07 - 2020-04-28 12:07 - 000002032 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-04-28 12:07 - 2020-04-28 12:07 - 000000000 ____D C:\Users\sigar\AppData\Local\mbamtray
2020-04-28 12:07 - 2020-04-28 12:07 - 000000000 ____D C:\Users\sigar\AppData\Local\mbam
2020-04-28 12:07 - 2020-04-28 12:07 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-04-28 12:06 - 2020-04-28 12:06 - 000000000 ____D C:\Program Files\Malwarebytes
2020-04-28 12:05 - 2020-04-28 12:05 - 001980016 _____ (Malwarebytes) C:\Users\sigar\Downloads\MBSetup.exe
2020-04-28 11:58 - 2020-04-28 16:36 - 000000000 ____D C:\FRST
2020-04-28 11:58 - 2020-04-28 11:58 - 002283008 _____ (Farbar) C:\Users\sigar\Desktop\FRST64.exe
2020-04-28 11:54 - 2020-04-28 11:54 - 000000246 _____ C:\DelFix.txt
2020-04-28 11:54 - 2020-04-28 11:54 - 000000000 ____D C:\Windows\ERUNT
2020-04-28 11:51 - 2020-04-28 11:51 - 000797760 _____ C:\Users\sigar\Downloads\delfix.exe
2020-04-27 22:50 - 2019-10-31 01:17 - 000079368 _____ (Razer Inc) C:\Windows\system32\RazerS2S3Coinstaller.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 025444352 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 022636544 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 019850240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 019812864 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 018027520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 017790464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 014818816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 009930552 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 008013824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 007849216 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 007756800 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 007604584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 007017472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 006523048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 006168064 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 005910016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 005040640 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 004611584 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 004563200 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 004538880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 004129624 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 003802624 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 003753472 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 003742544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 003729408 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 003708928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 003587384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 003547648 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 003512320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 003109376 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 002986808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 002951832 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 002871608 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 002800640 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 002800128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 002767928 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 002717184 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 002494744 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 002453504 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 002399544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmswitch.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 002180408 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 002131456 _____ (Microsoft Corporation) C:\Windows\system32\WpcDesktopMonSvc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 002126144 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 002114560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 002086656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001999960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001960448 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001945600 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001942528 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001918976 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001870408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001835008 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001783296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001764336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001762816 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001757096 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-04-27 22:45 - 2020-04-27 22:45 - 001729024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001726264 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001719808 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001697792 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001665216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001656904 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001646048 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001612800 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001610240 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001603584 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001587712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001545216 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 001512832 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 001497600 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001484384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001480192 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 001477112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001427456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001413840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001413704 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001397576 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 001378528 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001368576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001368576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001318912 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001300280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 001264640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 001263856 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 001261808 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001257472 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001245184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001243648 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001180672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001153024 _____ (Microsoft Corporation) C:\Windows\system32\windowsperformancerecordercontrol.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001151816 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001136128 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001127424 _____ (Microsoft Corporation) C:\Windows\system32\WpcRefreshTask.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001083904 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001081856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Vpn.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001077064 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 001071616 _____ (Microsoft Corporation) C:\Windows\system32\BTAGService.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001055376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001013000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001011200 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001009152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 001008128 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000993280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000983040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmkvsrcsnk.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000982840 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000980832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000974336 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000924672 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000923136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000915192 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000912896 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000893952 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000892416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000879616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000874296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windowsperformancerecordercontrol.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000865280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000865280 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000840704 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Language.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000836608 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000835584 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000822208 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000811320 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000785920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000783480 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000775696 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000772096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000768528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000759272 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000747320 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000729600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FlightSettings.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000722072 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BTAGService.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000684560 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000673704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000673464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000668672 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000654912 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000647680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000638480 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000637240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000632832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000629760 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000628616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000618296 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000605184 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000604984 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000595968 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000589384 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000561464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000555008 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2020-04-27 22:45 - 2020-04-27 22:45 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000538160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000530432 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000529408 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000524264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000516096 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000515600 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000513576 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000510792 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000507152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000498688 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000491008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000487784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000477496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2020-04-27 22:45 - 2020-04-27 22:45 - 000469504 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000465208 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000459688 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000456504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000456192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2020-04-27 22:45 - 2020-04-27 22:45 - 000452096 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000444416 _____ (Microsoft Corporation) C:\Windows\system32\MSFlacDecoder.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000441144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000437560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000420152 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000416016 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000415760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000410112 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000408064 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000406480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\es.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000380416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacDecoder.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000374784 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000355840 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\WpcApi.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000343552 _____ (Microsoft Corporation) C:\Windows\system32\wpr.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000339304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\es.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000330240 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000324408 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000323584 _____ (Microsoft Corporation) C:\Windows\system32\sppcommdlg.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\wbadmin.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000297272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicCapsule.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000278016 _____ (Microsoft Corporation) C:\Windows\system32\WpcTok.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000277864 _____ (Microsoft Corporation) C:\Windows\system32\LsaIso.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000268288 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000268008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000259776 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000259072 _____ (Microsoft Corporation) C:\Windows\system32\VPNv2CSP.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000251704 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000251392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\policymanagerprecheck.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000234496 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000231912 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000216888 _____ (Microsoft Corporation) C:\Windows\system32\NetMgmtIF.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000214528 _____ (Microsoft Corporation) C:\Windows\system32\srumsvc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scecli.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000211256 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000203264 _____ (Microsoft Corporation) C:\Windows\system32\LanguageComponentsInstaller.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000200192 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\Win32CompatibilityAppraiserCSP.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000193848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000192824 _____ (Microsoft Corporation) C:\Windows\system32\nvspinfo.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000190048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrad.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000185952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.XamlHost.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000178192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000178176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srumsvc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000164368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000152408 _____ (Microsoft Corporation) C:\Windows\system32\KerbClientShared.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000151352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scmbus.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000147696 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000142544 _____ (Microsoft Corporation) C:\Windows\system32\LicensingUI.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\slc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000140088 _____ C:\Windows\system32\nmscrub.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.XamlHost.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000130560 _____ (Microsoft Corporation) C:\Windows\system32\StorageUsage.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000129336 _____ (Microsoft Corporation) C:\Windows\system32\nmbind.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\UtcDecoderHost.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000127280 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000123952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KerbClientShared.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000122368 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000115120 _____ (Microsoft Corporation) C:\Windows\system32\phoneactivate.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000105984 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000105472 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000103936 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000102216 _____ (Microsoft Corporation) C:\Windows\system32\changepk.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Custom.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000093712 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000089912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000089336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000089088 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicAgent.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000088352 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3api.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3msm.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000084280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Custom.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000071480 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000066624 _____ (Microsoft Corporation) C:\Windows\system32\iumcrypt.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasacct.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\tbauth.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\srumapi.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\CloudNotifications.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000059192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storufs.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000058880 _____ C:\Windows\system32\runexehelper.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\audioresourceregistrar.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srumapi.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000050544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudNotifications.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\iaspolcy.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000048440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VmsProxy.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000047000 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\cmintegrator.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.Common.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\WiredNetworkCSP.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\UpgradeResultsUI.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iaspolcy.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000039736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VmsProxyHNic.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\WpcProxyStubs.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerCookies.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000036152 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000033080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\ias.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\KNetPwrDepBroker.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmintegrator.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000029184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicPS.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\flpydisk.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ias.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Custom.ps.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\slcext.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\sbservicetrigger.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000021520 _____ (Microsoft Corporation) C:\Windows\system32\kdhvcom.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slcext.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sfloppy.sys
2020-04-27 22:45 - 2020-04-27 22:45 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\icsunattend.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Custom.ps.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\pacjsworker.exe
2020-04-27 22:45 - 2020-04-27 22:45 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2020-04-27 22:45 - 2020-04-27 22:45 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2020-04-27 22:45 - 2020-04-27 22:45 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-04-27 22:45 - 2020-04-27 22:45 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-04-27 22:45 - 2020-04-27 22:45 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-04-27 22:45 - 2020-04-27 22:45 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-04-27 22:45 - 2020-04-27 22:45 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-04-27 22:45 - 2020-04-27 22:45 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-04-27 22:45 - 2020-04-27 22:45 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-04-27 22:45 - 2020-04-27 22:45 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2020-04-27 22:45 - 2020-04-27 22:45 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2020-04-27 22:45 - 2020-04-27 22:45 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2020-04-27 22:45 - 2020-04-27 22:45 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-04-27 22:41 - 2020-03-17 05:57 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-04-27 22:41 - 2020-03-17 05:56 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-04-26 19:17 - 2020-04-26 19:26 - 000005503 _____ C:\Users\sigar\Desktop\hiperz_test.txt
2020-04-26 14:24 - 2020-04-26 14:24 - 000000000 ____D C:\Users\sigar\Documents\Zoom
2020-04-26 14:23 - 2020-04-26 14:23 - 000000000 ____D C:\Users\sigar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2020-04-26 14:22 - 2020-04-26 14:23 - 000000000 ____D C:\Users\sigar\AppData\Roaming\Zoom
2020-04-24 19:13 - 2020-04-11 20:56 - 001729232 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-04-24 19:13 - 2020-04-11 20:56 - 001729232 _____ C:\Windows\system32\vulkaninfo.exe
2020-04-24 19:13 - 2020-04-11 20:56 - 001329360 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-04-24 19:13 - 2020-04-11 20:56 - 001329360 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2020-04-24 19:13 - 2020-04-11 20:56 - 001078992 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-04-24 19:13 - 2020-04-11 20:56 - 001078992 _____ C:\Windows\system32\vulkan-1.dll
2020-04-24 19:13 - 2020-04-11 20:56 - 000937680 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-04-24 19:13 - 2020-04-11 20:56 - 000937680 _____ C:\Windows\SysWOW64\vulkan-1.dll
2020-04-24 19:13 - 2020-04-11 20:56 - 000450280 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2020-04-24 19:13 - 2020-04-11 20:56 - 000346856 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2020-04-24 19:13 - 2020-04-11 20:55 - 011945872 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2020-04-24 19:13 - 2020-04-11 20:55 - 010286480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2020-04-24 19:13 - 2020-04-11 20:54 - 001481112 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2020-04-24 19:13 - 2020-04-11 20:54 - 001141992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2020-04-24 19:13 - 2020-04-11 20:54 - 001004960 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2020-04-24 19:13 - 2020-04-11 20:54 - 000816872 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2020-04-24 19:13 - 2020-04-11 20:54 - 000679656 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2020-04-24 19:13 - 2020-04-11 20:54 - 000676240 _____ C:\Windows\system32\nvofapi64.dll
2020-04-24 19:13 - 2020-04-11 20:54 - 000546536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2020-04-24 19:13 - 2020-04-11 20:54 - 000542952 _____ C:\Windows\SysWOW64\nvofapi.dll
2020-04-24 19:13 - 2020-04-11 20:53 - 017601632 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2020-04-24 19:13 - 2020-04-11 20:53 - 015158384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2020-04-24 19:13 - 2020-04-11 20:53 - 005855856 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2020-04-24 19:13 - 2020-04-11 20:53 - 005159520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2020-04-24 19:13 - 2020-04-11 20:53 - 002074208 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2020-04-24 19:13 - 2020-04-11 20:53 - 001566304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2020-04-24 19:13 - 2020-04-11 20:53 - 001350768 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2020-04-24 19:13 - 2020-04-11 20:53 - 001048504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2020-04-24 19:13 - 2020-04-11 20:53 - 000851040 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2020-04-24 19:13 - 2020-04-11 20:53 - 000811448 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2020-04-24 19:13 - 2020-04-11 20:53 - 000561776 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2020-04-24 19:13 - 2020-04-11 20:53 - 000443832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2020-04-24 19:13 - 2020-04-11 20:52 - 004195488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2020-04-24 19:13 - 2020-04-04 03:49 - 000106838 _____ C:\Windows\system32\nvidia-smi.1.pdf
2020-04-24 19:13 - 2020-04-04 03:49 - 000077294 _____ C:\Windows\system32\nvinfo.pb
2020-04-24 18:05 - 2020-04-27 22:54 - 020353096 _____ C:\Windows\system32\Drivers\FACEIT.sys
2020-04-24 00:39 - 2020-04-28 11:13 - 000000000 ____D C:\Users\sigar\AppData\Roaming\5KPlayer
2020-04-24 00:39 - 2020-04-24 00:39 - 000001217 _____ C:\Users\Public\Desktop\5KPlayer.lnk
2020-04-24 00:39 - 2020-04-24 00:39 - 000000000 ____D C:\Users\sigar\AppData\Roaming\Digiarty
2020-04-24 00:39 - 2020-04-24 00:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\5KPlayer
2020-04-24 00:39 - 2020-04-24 00:39 - 000000000 ____D C:\Program Files (x86)\DearMob
2020-04-24 00:17 - 2020-04-28 11:13 - 000000000 ____D C:\ProgramData\Voicemod
2020-04-24 00:15 - 2020-04-28 11:12 - 000000000 ____D C:\Users\sigar\AppData\Local\Voicemod
2020-04-24 00:15 - 2020-04-24 00:15 - 000000955 _____ C:\Users\Public\Desktop\Voicemod.lnk
2020-04-24 00:15 - 2020-04-24 00:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod Desktop
2020-04-24 00:15 - 2020-04-24 00:15 - 000000000 ____D C:\Program Files\Voicemod Desktop
2020-04-24 00:15 - 2019-07-02 16:50 - 000045408 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\vmdrv.sys
2020-04-23 23:37 - 2020-04-23 23:37 - 000000000 ____D C:\Users\sigar\AppData\Local\Colossal Order
2020-04-23 23:13 - 2020-04-23 23:13 - 000000801 _____ C:\Users\Public\Desktop\Cities Skylines.lnk
2020-04-23 23:13 - 2020-04-23 23:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cities Skylines
2020-04-23 23:11 - 2020-04-23 23:11 - 000000000 ____D C:\Games
2020-04-23 16:18 - 2020-04-27 22:54 - 000000000 ____D C:\Program Files\FACEIT AC
2020-04-23 16:18 - 2020-04-23 16:18 - 000000903 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT AC.lnk
2020-04-23 16:18 - 2020-04-23 16:18 - 000000891 _____ C:\Users\Public\Desktop\FACEIT AC.lnk
2020-04-22 18:32 - 2020-04-22 18:32 - 000000000 ____D C:\ProgramData\Steam
2020-04-22 10:13 - 2020-04-23 16:19 - 000000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2020-04-22 10:13 - 2020-04-23 16:19 - 000000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2020-04-22 10:13 - 2020-04-22 10:13 - 000000000 ____D C:\Users\sigar\AppData\Local\LogMeIn
2020-04-22 10:13 - 2020-04-22 10:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2020-04-22 10:13 - 2020-04-22 10:13 - 000000000 ____D C:\ProgramData\LogMeIn
2020-04-22 10:13 - 2020-04-22 10:13 - 000000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2020-04-20 02:27 - 2020-04-20 09:49 - 000013730 _____ C:\ProgramData\DisplaySessionContainer13.log_backup1
2020-04-18 22:45 - 2020-04-18 22:45 - 000000234 _____ C:\Users\sigar\Desktop\Monopoly Plus.url
2020-04-17 23:06 - 2020-04-17 23:06 - 000000000 ____D C:\Users\sigar\AppData\Roaming\Monopoly Plus
2020-04-17 22:15 - 2020-04-17 22:15 - 009142272 _____ C:\Users\sigar\Downloads\hamachi.msi
2020-04-17 22:12 - 2020-04-28 16:12 - 000000000 ____D C:\Users\sigar\AppData\Local\LogMeIn Hamachi
2020-04-17 22:10 - 2020-04-17 22:10 - 003320005 _____ C:\Users\sigar\Downloads\Hamachi - santi3229.rar
2020-04-17 22:04 - 2020-04-17 22:19 - 000000000 ____D C:\Program Files (x86)\Monopoly v1.1.1.0
2020-04-17 22:01 - 2020-04-17 22:04 - 000000000 ____D C:\Users\sigar\Documents\MEGAsync Downloads
2020-04-16 23:47 - 2020-04-19 02:44 - 000016760 _____ C:\ProgramData\DisplaySessionContainer11.log_backup1
2020-04-16 15:52 - 2020-04-16 15:54 - 000152033 _____ C:\Users\sigar\Downloads\PAINT.jfif
2020-04-16 01:51 - 2020-04-16 23:47 - 000014238 _____ C:\ProgramData\DisplaySessionContainer10.log_backup1
2020-04-14 23:56 - 2020-04-16 01:51 - 000013536 _____ C:\ProgramData\DisplaySessionContainer9.log_backup1
2020-04-14 14:42 - 2020-04-14 14:42 - 000000000 ____D C:\Program Files\Razer Chroma SDK
2020-04-14 14:42 - 2020-04-14 14:42 - 000000000 ____D C:\Program Files (x86)\Razer Chroma SDK
2020-04-14 14:40 - 2020-04-27 22:50 - 000000000 ____D C:\Program Files (x86)\Razer
2020-04-14 14:40 - 2020-04-14 14:43 - 000000000 ____D C:\ProgramData\Razer
2020-04-14 14:40 - 2020-04-14 14:40 - 026356160 _____ C:\Users\sigar\Downloads\WebDownload_Razer_Synapse_Installer_v2.21.24.10.exe
2020-04-14 14:40 - 2020-04-14 14:40 - 000000000 ____D C:\Users\sigar\AppData\Local\Razer
2020-04-14 14:40 - 2020-04-14 14:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2020-04-13 23:28 - 2020-04-14 23:56 - 000027135 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1
2020-04-13 02:39 - 2020-04-13 23:28 - 000012957 _____ C:\ProgramData\DisplaySessionContainer7.log_backup1
2020-04-12 19:29 - 2020-04-12 19:29 - 000000000 ____D C:\ProgramData\For Honor Data
2020-04-12 19:01 - 2020-04-12 19:01 - 000000233 _____ C:\Users\sigar\Desktop\For Honor.url
2020-04-12 18:57 - 2020-04-12 18:57 - 130191536 _____ (Ubisoft) C:\Users\sigar\Downloads\UplayInstaller.exe
2020-04-12 18:57 - 2020-04-12 18:57 - 000001289 _____ C:\Users\sigar\Desktop\Uplay.lnk
2020-04-12 01:26 - 2020-04-12 01:26 - 000157673 _____ C:\Users\sigar\Downloads\Piratas_del_Caribe_La_venganza_de_Salazar_BDremux_1080p.torrent
2020-04-11 04:31 - 2020-04-11 04:31 - 000000000 ____D C:\Users\sigar\AppData\LocalLow\PixelDough
2020-04-11 04:30 - 2020-04-11 04:30 - 030403303 _____ C:\Users\sigar\Downloads\Start Survey.zip
2020-04-11 01:07 - 2020-04-11 01:07 - 000132934 _____ C:\Users\sigar\Downloads\piratas-del-caribe-4-bdremux-1080-px.torrent
2020-04-10 22:36 - 2020-04-10 22:36 - 000000000 ____D C:\Users\sigar\AppData\Local\log
2020-04-10 22:35 - 2020-04-23 16:18 - 000000000 ____D C:\Users\sigar\AppData\Roaming\FACEIT
2020-04-10 22:35 - 2020-04-23 16:18 - 000000000 ____D C:\Users\sigar\AppData\Local\FACEITApp
2020-04-10 22:35 - 2020-04-10 22:35 - 000000000 ____D C:\Users\sigar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FACEIT Ltd
2020-04-10 22:34 - 2020-04-10 22:35 - 064574912 _____ (FACEIT Ltd.) C:\Users\sigar\Downloads\FACEIT-setup-latest.exe
2020-04-10 00:50 - 2020-04-10 00:50 - 000141274 _____ C:\Users\sigar\Downloads\piratas-del-caribe-3-bdremux-1080-px.torrent
2020-04-08 00:53 - 2020-04-08 00:53 - 000000810 _____ C:\Users\Public\Desktop\MEGAsync.lnk
2020-04-08 00:53 - 2020-04-08 00:53 - 000000000 ____D C:\Users\sigar\AppData\Local\Mega Limited
2020-04-08 00:53 - 2020-04-08 00:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEGAsync
2020-04-08 00:53 - 2020-04-08 00:53 - 000000000 ____D C:\ProgramData\MEGAsync
2020-04-08 00:52 - 2020-04-08 00:52 - 035158928 _____ (MEGA Limited) C:\Users\sigar\Downloads\MEGAsyncSetup.exe
2020-04-07 02:24 - 2020-04-07 02:24 - 000000000 ____D C:\Users\Public\Documents\Steam
2020-04-07 02:13 - 2020-04-26 16:40 - 000000000 ____D C:\Users\sigar\AppData\LocalLow\uTorrent
2020-04-07 01:40 - 2020-04-23 23:13 - 000000000 ___HD C:\Windows\msdownld.tmp
2020-04-07 01:39 - 2020-04-23 23:13 - 000000000 ____D C:\Windows\SysWOW64\directx
2020-04-07 01:17 - 2020-04-07 01:17 - 000141332 _____ C:\Users\sigar\Downloads\LofF2-www.gamesfull.org.torrent
2020-04-07 01:17 - 2020-04-07 01:17 - 000141332 _____ C:\Users\sigar\Downloads\LofF2-www.gamesfull.org (1).torrent
2020-04-05 16:54 - 2019-07-18 04:43 - 000325520 _____ (Intel Corporation) C:\Windows\system32\JHI64.dll
2020-04-05 16:54 - 2019-07-18 04:43 - 000307088 _____ (Intel Corporation) C:\Windows\system32\TEEManagement64.dll
2020-04-05 16:54 - 2019-07-18 04:43 - 000274320 _____ (Intel Corporation) C:\Windows\SysWOW64\JHI.dll
2020-04-05 16:54 - 2019-07-18 04:43 - 000257424 _____ (Intel Corporation) C:\Windows\SysWOW64\TEEManagement.dll
2020-04-05 16:53 - 2019-10-22 15:08 - 021628008 _____ C:\Windows\system32\Drivers\Netwfw08.dat
2020-04-05 16:53 - 2019-09-11 01:03 - 001126552 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtCOM64.dll
2020-04-05 16:53 - 2019-09-11 01:03 - 000833832 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64U.dll
2020-04-05 16:53 - 2019-09-11 01:03 - 000482104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2020-04-05 16:53 - 2019-09-11 00:47 - 035592469 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2020-04-05 16:53 - 2019-09-02 02:37 - 002424616 _____ (Dolby Laboratories) C:\Windows\system32\DolbyAPOv2100.dll
2020-04-05 16:53 - 2019-09-02 02:37 - 001660160 _____ (Dolby Laboratories) C:\Windows\system32\DolbyAPOv251.dll
2020-04-05 16:53 - 2019-09-02 02:37 - 001633320 _____ (Dolby Laboratories) C:\Windows\system32\DolbyAPOvlldp120.dll
2020-04-05 16:53 - 2019-09-02 02:37 - 001536744 _____ (Dolby Laboratories) C:\Windows\system32\DolbyAPOvlldp130.dll
2020-04-05 16:53 - 2019-09-02 02:37 - 001474768 _____ (Dolby Laboratories) C:\Windows\system32\DolbyAPOvlldp.dll
2020-04-05 16:53 - 2019-09-02 02:37 - 000817160 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDax3Apo.dll
2020-04-05 16:53 - 2019-08-16 00:49 - 006472192 _____ (Fortemedia Corporation) C:\Windows\system32\FMPCHAPO64.dll
2020-04-05 16:53 - 2019-08-16 00:49 - 004512928 _____ (Fortemedia) C:\Windows\system32\FM_Speech_PP64.dll
2020-04-05 02:26 - 2020-04-05 02:26 - 000265849 _____ C:\Users\sigar\Downloads\tcpoptimizer.zip
2020-04-05 01:19 - 2020-04-05 02:39 - 000000000 ____D C:\Users\sigar\AppData\Roaming\obs-studio
2020-04-05 01:18 - 2020-04-05 01:18 - 000000000 ____D C:\Program Files\obs-studio
2020-04-05 00:14 - 2020-04-05 00:14 - 000000000 ___HD C:\OneDriveTemp
2020-04-04 02:18 - 2020-04-04 02:18 - 000000000 ____D C:\Users\sigar\AppData\Roaming\Aspyr Media
2020-04-04 02:18 - 2020-04-04 02:18 - 000000000 ____D C:\Users\sigar\AppData\LocalLow\Bloober Team
2020-04-04 02:18 - 2020-04-04 02:18 - 000000000 ____D C:\Users\sigar\AppData\Local\cache
2020-04-04 02:18 - 2020-04-04 02:18 - 000000000 ____D C:\Users\sigar\AppData\Local\Aspyr Media
2020-04-03 21:56 - 2020-04-05 01:18 - 000001063 _____ C:\Users\Public\Desktop\OBS Studio.lnk
2020-04-03 21:56 - 2020-04-05 01:18 - 000000000 ____D C:\ProgramData\obs-studio-hook
2020-04-03 21:56 - 2020-04-03 21:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2020-04-03 21:55 - 2020-04-03 21:55 - 073458888 _____ (obsproject.com) C:\Users\sigar\Downloads\OBS-Studio-25.0.1-Full-Installer-x64.exe
2020-04-03 18:01 - 2020-04-03 18:01 - 000000000 ____D C:\UserBenchmark
2020-04-02 16:35 - 2020-04-02 16:35 - 000010383 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1
2020-04-02 11:05 - 2020-04-02 11:05 - 000000000 ____D C:\Windows\system32\Samsung
2020-04-02 11:05 - 2020-04-02 11:05 - 000000000 ____D C:\ProgramData\Samsung
2020-04-02 11:05 - 2019-09-26 04:44 - 000043368 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ss_conn_usb_driver2.sys
2020-04-01 14:13 - 2020-04-20 16:15 - 000000000 ____D C:\Users\sigar\Desktop\Prueba Ev continua simon garcia garcia
2020-04-01 11:34 - 2020-04-01 11:34 - 000190607 _____ C:\Users\sigar\Downloads\Tarea 1.pdf
2020-03-29 23:53 - 2020-03-29 23:54 - 000000000 ____D C:\Users\sigar\AppData\Local\PAYDAY 2
2020-03-29 23:41 - 2020-04-05 00:46 - 000007605 _____ C:\Users\sigar\AppData\Local\Resmon.ResmonCfg
2020-03-29 23:30 - 2020-03-29 23:30 - 000000222 _____ C:\Users\sigar\Desktop\PAYDAY 2.url
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-04-28 16:31 - 2019-09-06 01:23 - 000000000 ____D C:\ProgramData\NVIDIA
2020-04-28 16:24 - 2019-11-29 17:30 - 000000000 ____D C:\Users\sigar\AppData\Roaming\Discord
2020-04-28 16:24 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-04-28 16:22 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\NDF
2020-04-28 16:12 - 2020-03-23 20:33 - 000000000 ____D C:\Users\sigar\AppData\Roaming\DAEMON Tools Lite
2020-04-28 16:12 - 2019-12-14 16:24 - 000000000 ____D C:\Program Files (x86)\Steam
2020-04-28 16:12 - 2019-12-04 20:43 - 000000000 ____D C:\Users\sigar\AppData\Local\CrashDumps
2020-04-28 16:12 - 2019-04-19 07:54 - 000000000 ____D C:\Windows\panther
2020-04-28 16:12 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\LiveKernelReports
2020-04-28 16:12 - 2019-03-19 06:50 - 000000000 ____D C:\Windows\INF
2020-04-28 16:06 - 2019-04-19 06:58 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-04-28 13:46 - 2019-11-29 15:28 - 000000000 ____D C:\Users\sigar\AppData\Local\Spotify
2020-04-28 13:16 - 2019-12-14 22:00 - 000000000 ____D C:\Users\sigar\AppData\Roaming\WhatsApp
2020-04-28 12:54 - 2019-11-29 15:28 - 000000000 ____D C:\Users\sigar\AppData\Roaming\Spotify
2020-04-28 12:37 - 2019-09-06 01:23 - 000021643 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-04-28 12:37 - 2019-09-06 01:23 - 000010392 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-04-28 12:07 - 2019-03-19 06:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-04-28 11:36 - 2019-09-06 01:23 - 000016096 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-04-28 11:18 - 2019-09-06 11:02 - 000791524 _____ C:\Windows\system32\perfh00A.dat
2020-04-28 11:18 - 2019-09-06 11:02 - 000156762 _____ C:\Windows\system32\perfc00A.dat
2020-04-28 11:18 - 2019-04-19 07:08 - 001774366 _____ C:\Windows\system32\PerfStringBackup.INI
2020-04-28 11:12 - 2019-12-04 20:47 - 000001206 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-04-28 11:12 - 2019-11-29 15:26 - 000000000 ___RD C:\Users\sigar\OneDrive
2020-04-28 11:12 - 2019-09-06 01:23 - 000000134 _____ C:\Windows\system32\regtest.txt
2020-04-28 11:12 - 2019-04-19 07:00 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-04-27 22:51 - 2019-03-19 06:37 - 000786432 _____ C:\Windows\system32\config\BBI
2020-04-27 22:51 - 2019-03-19 06:37 - 000000000 ____D C:\Windows\CbsTemp
2020-04-27 22:48 - 2019-04-19 06:58 - 000434168 _____ C:\Windows\system32\FNTCACHE.DAT
2020-04-27 22:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\SystemResources
2020-04-27 22:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2020-04-27 22:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\migwiz
2020-04-27 22:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\ShellExperiences
2020-04-27 22:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\Provisioning
2020-04-27 22:47 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\bcastdvr
2020-04-27 22:44 - 2019-12-05 02:09 - 000011751 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2020-04-27 22:13 - 2019-11-29 15:24 - 000000000 ____D C:\Users\sigar\AppData\Local\VirtualStore
2020-04-27 21:14 - 2019-11-29 15:24 - 000024002 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-04-26 15:04 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\AppReadiness
2020-04-26 14:21 - 2020-03-23 20:00 - 000000000 ____D C:\Users\sigar\AppData\Local\BitTorrentHelper
2020-04-24 19:16 - 2019-11-29 16:58 - 000000000 ____D C:\Users\sigar\AppData\Local\NVIDIA
2020-04-24 19:11 - 2019-11-29 20:29 - 000001458 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2020-04-24 19:11 - 2019-09-06 01:24 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-24 19:11 - 2019-09-06 01:24 - 000004106 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-24 19:11 - 2019-09-06 01:24 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-24 19:11 - 2019-09-06 01:24 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-24 19:11 - 2019-09-06 01:24 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-24 19:11 - 2019-09-06 01:24 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-24 19:11 - 2019-09-06 01:24 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-24 19:11 - 2019-09-06 01:24 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-24 19:11 - 2019-09-06 01:23 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-24 19:11 - 2019-09-06 01:23 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-24 19:11 - 2019-09-06 01:23 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-04-24 19:11 - 2019-09-06 01:23 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-04-24 19:11 - 2019-09-06 01:22 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-04-24 00:16 - 2019-09-06 01:09 - 000000000 ____D C:\ProgramData\Package Cache
2020-04-23 21:14 - 2019-12-14 16:30 - 000000000 ____D C:\Users\sigar\AppData\Local\Ubisoft Game Launcher
2020-04-23 17:14 - 2019-12-07 18:55 - 000000000 ____D C:\Users\sigar\AppData\Local\ElevatedDiagnostics
2020-04-23 16:18 - 2019-11-29 17:30 - 000000000 ____D C:\Users\sigar\AppData\Local\SquirrelTemp
2020-04-21 22:14 - 2019-11-29 15:27 - 000002310 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-21 22:14 - 2019-11-29 15:27 - 000002269 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-04-17 14:46 - 2019-11-29 15:26 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1992403894-1641439580-3106245936-1001
2020-04-17 14:46 - 2019-11-29 15:20 - 000002412 _____ C:\Users\sigar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-12 19:29 - 2020-01-21 01:28 - 000000000 ____D C:\Users\sigar\Documents\My Games
2020-04-12 19:29 - 2020-01-21 01:27 - 000000000 ____D C:\Users\sigar\AppData\Roaming\EasyAntiCheat
2020-04-11 20:53 - 2019-12-14 23:43 - 000655288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2020-04-11 20:52 - 2019-09-06 10:56 - 004927744 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2020-04-11 05:09 - 2019-12-09 18:36 - 000015791 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2020-04-10 17:11 - 2019-12-04 20:56 - 000000000 ____D C:\Users\sigar\AppData\Local\D3DSCache
2020-04-09 17:45 - 2020-03-13 16:50 - 000000000 ____D C:\Users\sigar\AppData\Local\Battle.net
2020-04-09 17:45 - 2020-03-13 16:46 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-04-09 17:43 - 2020-03-12 23:45 - 000000000 ____D C:\Program Files (x86)\Call of Duty Modern Warfare
2020-04-09 17:33 - 2019-12-11 05:17 - 000000000 ____D C:\ProgramData\Intel
2020-04-08 00:29 - 2019-11-29 15:26 - 000000000 ____D C:\Users\sigar\AppData\Local\PlaceholderTileLogoFolder
2020-04-08 00:29 - 2019-11-29 15:24 - 000000000 ____D C:\Users\sigar\AppData\Local\Packages
2020-04-08 00:29 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-04-07 19:58 - 2019-09-06 01:24 - 002799416 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2020-04-07 19:58 - 2019-09-06 01:24 - 002159592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2020-04-07 19:58 - 2019-09-06 01:24 - 001314792 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2020-04-07 19:50 - 2019-12-14 22:00 - 000000000 ____D C:\Users\sigar\AppData\Local\WhatsApp
2020-04-07 02:28 - 2019-12-06 15:02 - 000000000 ____D C:\Program Files\Epic Games
2020-04-05 16:58 - 2019-09-06 01:23 - 000000000 ____D C:\Windows\system32\dolbyaposvc
2020-04-05 16:54 - 2020-03-27 15:07 - 000000000 ____D C:\Windows\TempInst
2020-04-05 16:54 - 2019-11-29 15:31 - 000000000 ____D C:\BIOS
2020-04-05 16:53 - 2019-03-19 06:52 - 000000000 ____D C:\Windows\system32\Drivers\DriverData
2020-04-03 17:59 - 2019-12-05 14:23 - 000000000 ____D C:\Program Files\OrCAD_Demo
2020-04-03 17:53 - 2020-03-03 21:51 - 000001862 _____ C:\Users\sigar\Desktop\LeagueClient - Acceso directo.lnk
2020-04-02 16:28 - 2020-01-05 12:46 - 000744808 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
==================== Archivos en la raíz de algunos directorios ========
2020-03-29 23:41 - 2020-04-05 00:46 - 000007605 _____ () C:\Users\sigar\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
==================== Final de FRST.txt ========================Texto preformateadoResultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 26-04-2020
Ejecutado por sigar (28-04-2020 16:36:58)
Ejecutado desde C:\Users\sigar\Desktop
Windows 10 Home Versión 1903 18362.778 (X64) (2019-11-29 19:18:51)
Modo de Inicio: Normal
==========================================================
==================== Cuentas: =============================
Administrador (S-1-5-21-1992403894-1641439580-3106245936-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1992403894-1641439580-3106245936-503 - Limited - Disabled)
Invitado (S-1-5-21-1992403894-1641439580-3106245936-501 - Limited - Disabled)
sigar (S-1-5-21-1992403894-1641439580-3106245936-1001 - Administrator - Enabled) => C:\Users\sigar
WDAGUtilityAccount (S-1-5-21-1992403894-1641439580-3106245936-504 - Limited - Disabled)
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: McAfee VirusScan (Enabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}
FW: McAfee Firewall (Enabled) {B3F62DDF-980B-3470-75A7-407A2E6F58C7}
==================== Programas instalados ======================
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
5KPlayer (HKLM-x32\...\5KPlayer) (Version: 6.2 - DearMob, Inc.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Actualización de NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
balenaEtcher 1.5.79 (HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\{d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b}) (Version: 1.5.79 - Balena Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
Cities Skylines Deluxe Edition MULTi8 - ElAmigos versión 1.13.0 (HKLM-x32\...\{93BFC3F2-15D2-4F7F-B20F-60304032749E}_is1) (Version: 1.13.0 - Paradox Interactive)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.12.0.1152 - Disc Soft Ltd)
DDJ-1000 Driver (HKLM-x32\...\DDJ-1000) (Version: 1.000 - Pioneer DJ Corporation.)
Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.11 - Bloodshed Software)
Discord (HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{385D03C4-767B-4B5F-A627-61319D136EF4}) (Version: 1.1.236.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FACEIT (HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\FACEITApp) (Version: 1.24.0 - FACEIT Ltd.)
FACEIT Anti-Cheat (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 2.0 - FACEIT LTD)
ForHonor (HKLM-x32\...\Uplay Install 569) (Version: - Ubisoft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.122 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Java 8 Update 231 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.2.93.0 - Lenovo Group Ltd.)
LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.92 - McAfee, LLC.)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft Office 365 ProPlus - es-es (HKLM\...\O365ProPlusRetail - es-es) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\Teams) (Version: 1.2.00.34161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27033 (HKLM-x32\...\{cc3a7c63-31fb-4129-9024-63ebefd86a95}) (Version: 14.16.27033.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27033 (HKLM-x32\...\{624ba875-fdfc-4efa-9c66-b170dfebc3ec}) (Version: 14.16.27033.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{810F1419-7760-402E-8772-B4054FAA2B72}) (Version: 1.0.0.0 - Mojang)
Monopoly Plus (HKLM-x32\...\Uplay Install 3774) (Version: - Ubisoft)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA Controlador de audio HD 1.3.38.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.26 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 445.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 445.87 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.3.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.3.63 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA USBC Driver 1.38.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.38.831.832 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.1 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20242 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Pioneer MIX 64bit Driver (HKLM\...\Pioneer MIX) (Version: 5.8.3.0002 - Pioneer DJ Corporation.)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.6 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.10 - Razer Inc.)
rekordbox 5.8.3 64bit (HKLM\...\Pioneer rekordbox 5.8.3) (Version: 5.8.3.0002 - Pioneer DJ)
Software para dispositivos de chipset Intel® (HKLM-x32\...\{fcfc894b-0d54-4d39-826f-dcb39ce5dde7}) (Version: 10.1.17861.8101 - Intel(R) Corporation)
Spotify (HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\Spotify) (Version: 1.1.31.703.g256add22 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.2.0.32462 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 104.1 - Ubisoft)
Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 1.2.6.8 - Voicemod S.L.)
WhatsApp (HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\WhatsApp) (Version: 0.4.1307 - WhatsApp)
Zoom (HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)
Packages:
=========
Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-12-14] (Microsoft Corporation)
Complemento de motor del medio de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-12-14] (Microsoft Corporation)
Dolby Atmos for Gaming -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAtmosforGaming_3.20301.311.0_x64__rz1tebttyb220 [2019-09-06] (Dolby Laboratories)
EdgeDevtoolsPlugin -> C:\Windows\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2020-04-27] (Microsoft Corporation)
Extensión de vídeo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-11-30] (Microsoft Corporation)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-02-27] (Instagram)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-22] (INTEL CORP)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2003.10.0_x64__k1h2ywk1493x8 [2020-03-24] (LENOVO INC.)
LenovoUtility -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.1.4.0_x64__5grkq8ppsgwt4 [2020-01-05] (LENOVO INC) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-30] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-30] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-02-27] (Microsoft Studios) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.956.0_x64__56jybvy8sckqj [2019-11-29] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.180.0_x64__dt26b99r8h8gj [2019-09-06] (Realtek Semiconductor Corp)
VLC -> C:\Program Files\WindowsApps\VideoLAN.VLC_3.2.1.0_x64__paz6r1rewnh0a [2020-04-08] (VideoLAN)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
CustomCLSID: HKU\S-1-5-21-1992403894-1641439580-3106245936-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\sigar\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19317.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1992403894-1641439580-3106245936-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\sigar\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19317.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2020-03-16] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2020-03-16] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2020-03-16] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2020-03-16] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2020-03-16] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2020-03-16] (Mega Limited -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2020-03-16] (Mega Limited -> )
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2020-03-16] (Mega Limited -> )
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-28] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2020-03-16] (Mega Limited -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2020-03-16] (Mega Limited -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_c5e13868d4180cd2\nvshext.dll [2020-04-11] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-28] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Lista blanca) ====================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\system32\ficvdec_x64.dll [652288 2013-05-28] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () [Archivo no firmado]
==================== Accesos directos & WMI ========================
(Las entradas pueden ser listadas para ser restauradas o eliminadas.)
ShortcutWithArgument: C:\Users\sigar\Desktop\Simon - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\sigar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Vysor.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gidgenkbbabolejbgbpnhbimgjbffefm
ShortcutWithArgument: C:\Users\sigar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default
==================== Módulos cargados (Lista blanca) =============
2019-12-15 19:57 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [Archivo no firmado] C:\Program Files\7-Zip\7-zip.dll
2020-03-26 21:39 - 2019-10-27 07:41 - 001631744 _____ (Robert Simpson, et al.) [Archivo no firmado] C:\Program Files (x86)\Lenovo\VantageService\3.2.93.0\x64\SQLite.Interop.dll
==================== Alternate Data Streams (Lista blanca) ========
==================== Modo Seguro (Lista blanca) ==================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
==================== Asociación (Lista blanca) =================
==================== Internet Explorer sitios de confianza/restringidos ==========
(Si una entrada es incluida en el fixlist, será eliminada del registro.)
IE trusted site: HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\sharepoint.com -> hxxps://usales-files.sharepoint.com
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
2020-01-28 19:22 - 2020-01-28 19:22 - 000000375 _____ C:\Windows\system32\drivers\etc\hosts.ics
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Users\sigar\AppData\Local\Microsoft\WindowsApps;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\sigar\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg
DNS Servers: El medio no está conectado a internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.
Network Binding:
=============
Ethernet: Conmutador virtual extensible para Hyper-V -> vms_pp (disabled)
Hamachi: Conmutador virtual extensible para Hyper-V -> vms_pp (disabled)
Wi-Fi: Conmutador virtual extensible para Hyper-V -> vms_pp (disabled)
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
(Si una entrada es incluida en el fixlist, será eliminada.)
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-1992403894-1641439580-3106245936-1001\...\StartupApproved\Run: => "Spotify"
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [{C6B2D5D6-77C2-4051-8F91-DF6C319F59E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9CFBE84E-E67C-4B75-87BA-4CA5FB16BF87}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E1E073BA-7FE8-4C66-AAC1-6485D6BDE67C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{804EC70E-5A01-466B-881F-EC7A106A8688}C:\users\sigar\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sigar\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{AA043C57-E4DC-4C5A-AD63-C867021A5CF0}C:\users\sigar\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sigar\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1409C0E7-7B5D-4374-904F-555DCA02666C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DFAE5068-58FF-44D6-9B06-D9D7BCBEDD78}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{046ED77A-2DB0-4094-A740-3B51BB148562}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D69B4E81-8C09-4E19-A6B9-1CA8EFFFB68E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4121E1CA-1286-4A6E-81BC-70CB6BDEDD07}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{C432BAE1-B6B1-429B-A37C-285F42C26F14}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F0CA1D3F-F0B1-4FA3-B7FC-9552F012AD78}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{992B3DF6-3880-4404-B382-62D0E6100212}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{FA5A48CC-C135-4A98-B10D-AC3CC2DE13B5}C:\users\sigar\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sigar\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{EF3A9FD6-1C7D-4A63-81E2-9E2E280C6C2B}C:\users\sigar\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sigar\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{9251F152-FEA4-4A4F-BD5E-4D9C32FBA2FA}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{15AFBAE3-7EFB-4F77-A008-AB9CFE2B585A}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [{A5F8A4EF-7CF3-4604-8DA5-18BB48DE9885}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{27494E24-ECDF-4FDE-A7B3-278194E80776}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B61CB668-D1BD-43A6-8BE0-E153C3A0F2DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{93ED0880-95FE-4BAB-8093-B0CED66FED65}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{77532DD0-303F-4000-8C11-ED144EF95EBB}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe (Hirez Studios, Inc.) [Archivo no firmado]
FirewallRules: [UDP Query User{7A0DB2E4-CEDE-42DB-87EA-19CB4881A569}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe (Hirez Studios, Inc.) [Archivo no firmado]
FirewallRules: [TCP Query User{7211A5AE-E686-4B7E-A9B4-4B2FFF0F8C8C}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe (Hirez Studios, Inc.) [Archivo no firmado]
FirewallRules: [UDP Query User{18DDC3A9-3A09-4CCA-8409-E0DC887831C1}C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe (Hirez Studios, Inc.) [Archivo no firmado]
FirewallRules: [{19379927-70AC-4476-8A63-8B647357EB1D}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{24631C7B-898A-4091-8544-5B76FD602F14}] => (Allow) %systemroot%\system32\alg.exe Ningún archivo
FirewallRules: [{B9A52865-E907-4565-93D9-2AE044525F58}] => (Allow) C:\Program Files\Pioneer\rekordbox 5.8.3\rekordbox.exe (Pioneer DJ Corporation -> Pioneer DJ Corporation)
FirewallRules: [{0D8B7664-2DF7-4730-BDEB-45505D81B4AD}] => (Allow) C:\Program Files\Pioneer\rekordbox 5.8.3\psvnfsd.exe (Pioneer DJ Corporation -> Pioneer DJ Corporation.)
FirewallRules: [{899CD899-A15B-47D6-B655-EC431FE7963C}] => (Allow) C:\Program Files\Pioneer\rekordbox 5.8.3\psvlinksysmgr.exe (Pioneer DJ Corporation -> Pioneer DJ Corporation.)
FirewallRules: [{652DCB2E-F4DB-4FCC-AC4A-5A5F18FAD4AC}] => (Allow) C:\Program Files\Pioneer\rekordbox 5.8.3\edb_streamd.exe (Pioneer DJ Corporation -> )
FirewallRules: [{7E209815-E422-46FF-892E-267C97AB281F}] => (Allow) C:\Program Files\Pioneer\rekordbox 5.8.3\ls-unity-rekordbox-win-64bit.exe (Pioneer DJ Corporation -> )
FirewallRules: [{189E0697-42D8-40A3-89DA-0DFDE323A273}] => (Allow) C:\Program Files\Pioneer\rekordbox 5.8.3\rbHttpServer.exe (Pioneer DJ Corporation -> )
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe Ningún archivo
FirewallRules: [{161DB036-32B4-40E1-9111-C89171613E69}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [Archivo no firmado]
FirewallRules: [{3C434EB3-0AFB-4C59-9A71-CDACE59C61C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe () [Archivo no firmado]
FirewallRules: [{C089C845-83B5-443C-B9FD-1BDC49F70EB8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{D60CE996-8777-4A34-A94B-DFAEC259DB0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{7C1C0FA9-5221-498A-BF7E-3A28E516A821}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{5F6DE8E2-B4B9-46FC-BF5B-C2A6A401BE0E}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{88D702A7-3734-4B52-BD30-332B688E1F0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe () [Archivo no firmado]
FirewallRules: [{5AA9D43C-E89A-4513-8EB1-C95713BF42D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{DCE564F5-E17D-4FAD-ACB1-B390ADB65BF6}C:\program files (x86)\ubisoft\ubisoft game launcher\games\forhonor\forhonor.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\forhonor\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [UDP Query User{1E2E6F42-D75C-41A7-BCC4-B3E91C47F938}C:\program files (x86)\ubisoft\ubisoft game launcher\games\forhonor\forhonor.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\forhonor\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{B46870E6-4928-4E26-A2AF-3B480A53F208}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Monopoly Plus\Monopoly.exe (Ubisoft Entertainment -> Asobo Studio)
FirewallRules: [{52A8A81A-8AF1-47E9-BDE2-20AAF112BFC8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{D9679A4B-AFE9-4B78-970E-10E7D4C11E59}C:\program files (x86)\dearmob\5kplayer\5kplayer.exe] => (Allow) C:\program files (x86)\dearmob\5kplayer\5kplayer.exe (Digiarty Software, Inc. -> DearMob)
FirewallRules: [UDP Query User{AE449947-9594-4A90-8B5E-EAA7F1E7D6D2}C:\program files (x86)\dearmob\5kplayer\5kplayer.exe] => (Allow) C:\program files (x86)\dearmob\5kplayer\5kplayer.exe (Digiarty Software, Inc. -> DearMob)
FirewallRules: [{EBB3FE30-52F2-4AA6-979A-E51DD45C3918}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BB06378C-D780-4549-BC55-34EF592D63D8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8B55BD08-F444-4F17-B813-C546161C9549}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{72219EEC-0149-4498-9BAD-0B88AB879297}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CBEFBD46-FC77-4BAB-A5B2-59316C5BEC04}] => (Allow) C:\Users\sigar\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
==================== Puntos de Restauración =========================
26-04-2020 22:22:20 Punto de control programado
28-04-2020 16:23:53 JRT Pre-Junkware Removal
28-04-2020 16:30:39 JRT Pre-Junkware Removal
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
Name: Hamachi Network Interface
Description: Hamachi Network Interface
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn, Inc.
Service: hamachi
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (04/28/2020 11:13:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: VoicemodDesktop.exe, versión: 1.2.6.8, marca de tiempo: 0x5e32f772
Nombre del módulo con errores: VoicemodSDK.dll, versión: 0.0.0.0, marca de tiempo: 0x5e316595
Código de excepción: 0xc000041d
Desplazamiento de errores: 0x0000000000077acf
Identificador del proceso con errores: 0x3ea0
Hora de inicio de la aplicación con errores: 0x01d61d3d28f3048d
Ruta de acceso de la aplicación con errores: C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe
Ruta de acceso del módulo con errores: C:\Users\sigar\AppData\Local\Temp\VoicemodSDKDotNET.Amd64.1.3.0.7\VoicemodSDK.dll
Identificador del informe: d1dd6ff9-fd26-4f18-b1a1-f9bac5395607
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:
Error: (04/28/2020 11:13:20 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: VoicemodDesktop.exe, versión: 1.2.6.8, marca de tiempo: 0x5e32f772
Nombre del módulo con errores: VoicemodSDK.dll, versión: 0.0.0.0, marca de tiempo: 0x5e316595
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000077acf
Identificador del proceso con errores: 0x3ea0
Hora de inicio de la aplicación con errores: 0x01d61d3d28f3048d
Ruta de acceso de la aplicación con errores: C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe
Ruta de acceso del módulo con errores: C:\Users\sigar\AppData\Local\Temp\VoicemodSDKDotNET.Amd64.1.3.0.7\VoicemodSDK.dll
Identificador del informe: 60e3808c-84b0-48cf-942e-231649060da7
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:
Error: (04/28/2020 11:13:19 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplicación: VoicemodDesktop.exe
Versión de Framework: v4.0.30319
Descripción: el proceso terminó debido a una excepción no controlada.
Información de la excepción: System.AccessViolationException
en _zElAbXuCLXHhQGIecEp2wZXbREg._qmDZiNFWflESsR86mOdlYY2AlcD()
en _OaYZagPelHKZDAiecxXIshKvWv0._tzGwSAIPMwCLBrImQd9xfBACFay()
en _VYwd5frpW4muRfyObhb4MVsGhJb._GK7N5FL6xO8NyCxvJVu74PXocpe()
en _VYwd5frpW4muRfyObhb4MVsGhJb+_tQXf72Y3nmICEjoRueBhMkI5t5c._rofecWqksjUmfNQ44wfQ6unHpNW()
en System.Windows.Threading.Dispatcher.Invoke(System.Action, System.Windows.Threading.DispatcherPriority, System.Threading.CancellationToken, System.TimeSpan)
en _VYwd5frpW4muRfyObhb4MVsGhJb._zc58AAj9Pz6JTVU1U9XF4BtjeoF(StreamInfo)
en _VYwd5frpW4muRfyObhb4MVsGhJb+_tQXf72Y3nmICEjoRueBhMkI5t5c._rofecWqksjUmfNQ44wfQ6unHpNW()
en System.Windows.Threading.Dispatcher.Invoke(System.Action, System.Windows.Threading.DispatcherPriority, System.Threading.CancellationToken, System.TimeSpan)
en _VYwd5frpW4muRfyObhb4MVsGhJb._zc58AAj9Pz6JTVU1U9XF4BtjeoF(StreamInfo)
en _VYwd5frpW4muRfyObhb4MVsGhJb._jD1TaRNGhRI7NVOLMqwmLRimVOg()
en _VYwd5frpW4muRfyObhb4MVsGhJb._aj1KIQFpCmebCygNfdAa11p2oaP(System.Object, System.Windows.RoutedEventArgs)
en System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
en System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
en System.Windows.BroadcastEventHelper.BroadcastEvent(System.Windows.DependencyObject, System.Windows.RoutedEvent)
en System.Windows.BroadcastEventHelper.BroadcastLoadedEvent(System.Object)
en MS.Internal.LoadedOrUnloadedOperation.DoWork()
en System.Windows.Media.MediaContext.FireLoadedPendingCallbacks()
en System.Windows.Media.MediaContext.FireInvokeOnRenderCallbacks()
en System.Windows.Media.MediaContext.RenderMessageHandlerCore(System.Object)
en System.Windows.Media.MediaContext.RenderMessageHandler(System.Object)
en System.Windows.Interop.HwndTarget.OnResize()
en System.Windows.Interop.HwndTarget.HandleMessage(MS.Internal.Interop.WindowMessage, IntPtr, IntPtr)
en System.Windows.Interop.HwndSource.HwndTargetFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
en MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
en MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
en System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
en System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
en System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
en MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
Error: (04/27/2020 10:53:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: VoicemodDesktop.exe, versión: 1.2.6.8, marca de tiempo: 0x5e32f772
Nombre del módulo con errores: VoicemodSDK.dll, versión: 0.0.0.0, marca de tiempo: 0x5e316595
Código de excepción: 0xc000041d
Desplazamiento de errores: 0x0000000000077acf
Identificador del proceso con errores: 0x2950
Hora de inicio de la aplicación con errores: 0x01d61cd5d23cde00
Ruta de acceso de la aplicación con errores: C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe
Ruta de acceso del módulo con errores: C:\Users\sigar\AppData\Local\Temp\VoicemodSDKDotNET.Amd64.1.3.0.7\VoicemodSDK.dll
Identificador del informe: 12335a36-e50f-4a7e-9d3d-5477d7280247
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:
Error: (04/27/2020 10:53:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: VoicemodDesktop.exe, versión: 1.2.6.8, marca de tiempo: 0x5e32f772
Nombre del módulo con errores: VoicemodSDK.dll, versión: 0.0.0.0, marca de tiempo: 0x5e316595
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000077acf
Identificador del proceso con errores: 0x2950
Hora de inicio de la aplicación con errores: 0x01d61cd5d23cde00
Ruta de acceso de la aplicación con errores: C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe
Ruta de acceso del módulo con errores: C:\Users\sigar\AppData\Local\Temp\VoicemodSDKDotNET.Amd64.1.3.0.7\VoicemodSDK.dll
Identificador del informe: 8bfd3b77-138e-4389-82ff-a18aa74bfb78
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:
Error: (04/27/2020 10:53:03 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplicación: VoicemodDesktop.exe
Versión de Framework: v4.0.30319
Descripción: el proceso terminó debido a una excepción no controlada.
Información de la excepción: System.AccessViolationException
en _zElAbXuCLXHhQGIecEp2wZXbREg._qmDZiNFWflESsR86mOdlYY2AlcD()
en _OaYZagPelHKZDAiecxXIshKvWv0._tzGwSAIPMwCLBrImQd9xfBACFay()
en _VYwd5frpW4muRfyObhb4MVsGhJb._GK7N5FL6xO8NyCxvJVu74PXocpe()
en _VYwd5frpW4muRfyObhb4MVsGhJb+_tQXf72Y3nmICEjoRueBhMkI5t5c._rofecWqksjUmfNQ44wfQ6unHpNW()
en System.Windows.Threading.Dispatcher.Invoke(System.Action, System.Windows.Threading.DispatcherPriority, System.Threading.CancellationToken, System.TimeSpan)
en _VYwd5frpW4muRfyObhb4MVsGhJb._zc58AAj9Pz6JTVU1U9XF4BtjeoF(StreamInfo)
en _VYwd5frpW4muRfyObhb4MVsGhJb._jD1TaRNGhRI7NVOLMqwmLRimVOg()
en _VYwd5frpW4muRfyObhb4MVsGhJb._aj1KIQFpCmebCygNfdAa11p2oaP(System.Object, System.Windows.RoutedEventArgs)
en System.Windows.EventRoute.InvokeHandlersImpl(System.Object, System.Windows.RoutedEventArgs, Boolean)
en System.Windows.UIElement.RaiseEventImpl(System.Windows.DependencyObject, System.Windows.RoutedEventArgs)
en System.Windows.BroadcastEventHelper.BroadcastEvent(System.Windows.DependencyObject, System.Windows.RoutedEvent)
en System.Windows.BroadcastEventHelper.BroadcastLoadedEvent(System.Object)
en MS.Internal.LoadedOrUnloadedOperation.DoWork()
en System.Windows.Media.MediaContext.FireLoadedPendingCallbacks()
en System.Windows.Media.MediaContext.FireInvokeOnRenderCallbacks()
en System.Windows.Media.MediaContext.RenderMessageHandlerCore(System.Object)
en System.Windows.Media.MediaContext.RenderMessageHandler(System.Object)
en System.Windows.Interop.HwndTarget.OnResize()
en System.Windows.Interop.HwndTarget.HandleMessage(MS.Internal.Interop.WindowMessage, IntPtr, IntPtr)
en System.Windows.Interop.HwndSource.HwndTargetFilterMessage(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
en MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
en MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
en System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
en System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
en System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
en MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
Error: (04/27/2020 10:49:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: VoicemodDesktop.exe, versión: 1.2.6.8, marca de tiempo: 0x5e32f772
Nombre del módulo con errores: VoicemodSDK.dll, versión: 0.0.0.0, marca de tiempo: 0x5e316595
Código de excepción: 0xc000041d
Desplazamiento de errores: 0x0000000000077acf
Identificador del proceso con errores: 0x420
Hora de inicio de la aplicación con errores: 0x01d61cd555e0cf8d
Ruta de acceso de la aplicación con errores: C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe
Ruta de acceso del módulo con errores: C:\Users\sigar\AppData\Local\Temp\VoicemodSDKDotNET.Amd64.1.3.0.7\VoicemodSDK.dll
Identificador del informe: 052d74b6-561d-44c4-bdaa-ca66f7d54f6f
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:
Error: (04/27/2020 10:49:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: VoicemodDesktop.exe, versión: 1.2.6.8, marca de tiempo: 0x5e32f772
Nombre del módulo con errores: VoicemodSDK.dll, versión: 0.0.0.0, marca de tiempo: 0x5e316595
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000077acf
Identificador del proceso con errores: 0x420
Hora de inicio de la aplicación con errores: 0x01d61cd555e0cf8d
Ruta de acceso de la aplicación con errores: C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe
Ruta de acceso del módulo con errores: C:\Users\sigar\AppData\Local\Temp\VoicemodSDKDotNET.Amd64.1.3.0.7\VoicemodSDK.dll
Identificador del informe: f61b8874-7fd1-472a-8b14-56c118fdc5d0
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:
Errores del sistema:
=============
Error: (04/28/2020 04:30:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA LocalSystem Container terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.
Error: (04/28/2020 04:30:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA Display Container LS terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.
Error: (04/28/2020 04:30:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Dolby DAX API Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (04/28/2020 04:25:15 PM) (Source: DCOM) (EventID: 10000) (User: PORTATIL-SIMON)
Description: No se puede iniciar un servidor DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Error
"2147942767"
al iniciar este comando:
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (04/28/2020 04:12:36 PM) (Source: DCOM) (EventID: 10000) (User: PORTATIL-SIMON)
Description: No se puede iniciar un servidor DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Error
"2147942767"
al iniciar este comando:
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (04/28/2020 11:12:09 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 6:05:39 del 28/04/2020 resultó inesperado.
Error: (04/28/2020 11:11:47 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684Error irrecuperable al procesar los datos de restauración.
Error: (04/27/2020 10:47:16 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x8024001e: 2020-02 Actualización acumulativa de .NET Framework 3.5 y 4.8 para Windows 10 Version 1903 para x64 (KB4537572).
Windows Defender:
===================================
Date: 2020-04-22 01:55:08.536
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {4D6D3951-EBA1-4142-82AE-D70CE69540FD}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-04-15 23:02:00.787
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {1C9CC591-B88E-4CA6-9969-C14AD0E6CBD6}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-03-31 17:20:34.536
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {E97EE342-170D-4CF6-86AF-D0789B9E75A4}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-03-31 01:46:19.020
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {6B4A8596-FC74-4A27-8E0C-F167F8D23FE6}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-03-22 01:58:44.677
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {4CFA6D67-B078-4722-A3BF-0C4ED611334E}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-04-05 00:23:50.965
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.313.779.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor:
Versión anterior del motor: 1.1.16900.4
Código de error: 0x80070422
Descripción del error: No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.
CodeIntegrity:
===================================
Date: 2020-04-04 01:05:35.577
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Users\sigar\AppData\Roaming\Discord\0.0.306\modules\discord_hook\e3bbef833e\DiscordHook64.dll that did not meet the Microsoft signing level requirements.
Date: 2020-04-04 01:04:47.475
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Users\sigar\AppData\Roaming\Discord\0.0.306\modules\discord_hook\e3bbef833e\DiscordHook64.dll that did not meet the Microsoft signing level requirements.
Date: 2020-04-03 23:09:57.757
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Users\sigar\AppData\Roaming\Discord\0.0.306\modules\discord_hook\e3bbef833e\DiscordHook64.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-05 11:30:40.365
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.
Date: 2020-01-05 11:30:40.361
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.
Date: 2020-01-05 11:30:40.355
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.
Date: 2020-01-05 11:30:40.351
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.
Date: 2020-01-05 11:30:40.327
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.
==================== Información de la memoria ===========================
BIOS: LENOVO BHCN36WW 02/10/2020
Placa base: LENOVO LNVNB161216
Procesador: Intel(R) Core(TM) i7-9750H CPU @ 2.60GHz
Porcentaje de memoria en uso: 35%
RAM física total: 16303.24 MB
RAM física disponible: 10586.52 MB
Virtual total: 18863.24 MB
Virtual disponible: 11732.37 MB
==================== Unidades ================================
Drive c: (Windows-SSD) (Fixed) (Total:399.96 GB) (Free:88.85 GB) NTFS
\\?\Volume{b44abdb7-5fcf-4c6a-ae12-1d3a0e5227fe}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.54 GB) NTFS
\\?\Volume{19e18427-a23c-4ba5-949c-cabc35d206f2}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 62D9A015)
Partition: GPT.
==================== Final de Addition.txt =======================creo que ya esta todo el FRST me ha tocado cortarlo en trozos ya que era muy largo un saludo y perdón por las molestias
Hola.
Por lo que veo en los informes tanto de AdwCleaner, JRT y Malwarebytes NO habia ninguna infección que eliminar o al menos NO fueron encontradas. 
Faltaría que nos comentes SI el problema continua o ya NO…??
Hola Javier!
Siento por la tardanza al escribir este mensaje, el notepad.exe ha dejado de dar problemas como si hubiera desaparecido y el troyano que detectaba malwarebytes que le bloqueaba el acceso a cada minuto , cesó como si hubieran desaparecido solos de momentos no han vuelto a dar problemas y tras varios analisis mas estos dias sigue sin detectarse nada de ellos esperemos que se hayan ido para siempre si hay alguna actualizacion mas escribiré otro mensaje de momento solo puedo decir que muchisimas gracias por su ayuda y su atención,estoy muy agradecido 
Perfecto @Simon_Gar excelente, nos alegra ver que ya está el problema inicial completamente arreglado, ahora solo queda eliminar las herramientas usadas.
Para hacerlo descarga DelFix.exe en tu escritorio.
-
Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador -).
-
Marca todas las casillas, y pulsas en Run
Se abrirá el informe (DelFix.txt), puedes cerrarlo.
Para cualquier otro problema, no dudes en volver a postear., ya sabes dónde estamos.
Tema Solucionado.
Saludos, Javier.