Opera consume 1Gb de RAM y disco al 100%

Eliminar Malwares
1

Buenas, hace unos días he notado que la PC anda algo lenta. Esta PC que utilizo es comunitaria, por así decirlo, la usamos todos en la casa, y pues no estoy seguro de qué es lo que haya pasado, pero hace días el ventilador de la laptop empieza a sonar de la nada y luego vuelve a estar quieto, cosa que no hacía antes, y la PC se ha vuelto lenta. Hoy estuvo especialmente lenta y cuando abrí el administrador de tareas me llevé esta sorpresa:

image
image1366×768 239 KB

Además, he notado también que el consumo de Disco llega al 100% con procesos llamados “System”, “Herramientas de Eliminación de Software Malintencionado”, “Windows Modules Installer Worker”, por ejemplo, de los cuales no he podido sacar una captura porque indistintamente segundo con segundo, bajan y suber el consumo de Disco.

Me recomendaron utilizar AdwCleaner en mi PC, y cuando lo hice no detectó ninguna amenaza.

Gracias de antemano por la respuesta.

2

Desinstala Opera y reinicias el PC

Comentas cono funciona

3

Buenas, el día de hoy he encendido la PC y al parecer por alguna extraña razón todo ha regresado a la normalidad, lo cual me sigue pareciendo extraño porque estuvo super lenta durante varios días. Ya no tuve que desinstalar Opera, simplemente reinicié la PC y ya quedó bien, y lo único que hice, como comenté, fue pasarle el ADWCleaner, el cual no detectó nada.

Crees que necesite realizar algún análisis más de todos modos o crees que con lo que he comentado es suficiente? Muchas gracias.

4

En la imagen que me habias puesto, Opera tenia decenas de procesos abiertos,no se si por algun problema…el caso es que al reinciar el pc se cerraron, pero no se si es podra suceder de nuevo

Vamos a echar un vistazo

  • Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.

  • Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits) :arrow_forward: ¿Cómo saber si mi Windows es de 32 o 64 bits?

  • Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Si.

  • En la nueva ventana que se abre, presiona el botón Analizar y espera a que concluya el análisis.

  • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.

En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST

Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.

5

Buenas, perdón por la tardanza, recién pude coger yo la PC. Dejo los reportes solicitados.

FRST.TXT

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 09-09-2020
Ejecutado por CRISEIDA (administrador) sobre LAPTOP-JDB9OKB5 (LENOVO 81LK) (10-09-2020 18:41:49)
Ejecutado desde C:\Users\CRISEIDA\Desktop
Perfiles cargados: CRISEIDA
Platform: Windows 10 Home Single Language Versión 1909 18363.1082 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Discord Inc. -> Discord Inc.) C:\Users\CRISEIDA\AppData\Local\Discord\app-0.0.308\Discord.exe <6>
(Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrlHelper.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDTouch.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\egui.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Famatech Corp. -> Famatech Corp.) C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_31a8dbbf39dcdc3b\jhi_service.exe
(Intel(R) pGFX -> ) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_12bdb8127c4c0458\OneApp.IGCC.WinService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d2a0453c62b3b51a\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_d2a0453c62b3b51a\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_cf6c24843162da87\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_cf6c24843162da87\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.45.22232.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\commsapps.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12008.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Nitro Software, Inc. -> ) C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe
(Nitro Software, Inc. -> Nitro Software, Inc.) C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_6de98d46a9fc896b\Display.NvContainer\NVDisplay.Container.exe <2>
(OpenVPN Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Opera Software AS -> Opera Software) C:\Users\CRISEIDA\AppData\Local\Programs\Opera\70.0.3728.178\opera.exe <20>
(Opera Software AS -> Opera Software) C:\Users\CRISEIDA\AppData\Local\Programs\Opera\70.0.3728.178\opera_crashreporter.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATINWE.EXE
(ShareX Team) [Archivo no firmado] C:\Program Files\ShareX\ShareX.exe
(The CefSharp Authors) [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\CefSharp.BrowserSubprocess.exe <2>
(Unbroken Software, LLC) [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\LaunchBox.exe <2>

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1076728 2020-03-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [185648 2020-09-03] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-05-31] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [RadminVPN] => C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe [1860992 2020-08-31] (Famatech Corp. -> Famatech Corp.)
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\Run: [Discord] => C:\Users\CRISEIDA\AppData\Local\Discord\app-0.0.307\Discord.exe [91023672 2020-08-04] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [669112 2020-04-16] (OpenVPN Inc. -> )
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATINWE.EXE [298560 2014-03-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\Run: [Opera Browser Assistant] => C:\Users\CRISEIDA\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3126808 2020-09-08] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\MountPoints2: {3769b675-bda3-11ea-9cfd-3c91807f9c7e} - "E:\HiSuiteDownLoader.exe" 
HKLM\...\Print\Monitors\EPSON L475 Series 64MonitorBE: C:\Windows\system32\E_YLMBNWE.DLL [180224 2014-03-05] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\Windows\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Archivo no firmado]
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\system32\nitrolocalmon10.dll [31896 2016-07-22] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.102\Installer\chrmstp.exe [2020-09-09] (Google LLC -> Google LLC)
Startup: C:\Users\CRISEIDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2020-03-18]
ShortcutTarget: ShareX.lnk -> C:\Program Files\ShareX\ShareX.exe (ShareX Team) [Archivo no firmado]
GroupPolicy: Restricción ? <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {095D2E34-7235-48E4-89DF-9711A2DCB8F3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [840744 2019-03-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0A285C66-043D-42F3-BB5B-E0FCBB8B1548} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {125E94D6-6F19-445A-8349-B18CD4B63D8E} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\164d7d42-9c11-494d-9e36-e7d01f2efb23 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.)
Task: {1C72BC14-84F8-4931-8B09-7EE6CCB2B582} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144312 2020-07-27] (Lenovo -> Lenovo Group Ltd.)
Task: {34CDCECC-C598-4C63-89E0-9FDA582E0D81} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [702504 2019-03-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {35CA6A06-86F8-482D-8734-B3601C80A172} - System32\Tasks\EPSON L475 Series Update {CC57CE64-31E7-4605-9B2B-8F3C6237210A} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNWE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {43FC243E-B23E-46B1-B3FA-C557B7F033EB} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-03-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4FFC0F47-F579-4FC1-8D51-345A79AEE687} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {50BF703F-6172-479E-9972-3C7B37806ACD} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0d80b3a1-5621-466b-8a99-8d038736ec00 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.)
Task: {5EFCC44D-4A29-4B88-B832-FDCD32FD8E7F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {616C6EF5-AA3F-4070-8EE0-33518013FE99} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-03-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6C7846AE-696E-4EE6-BC6C-EB7DFD52BE22} - System32\Tasks\Opera scheduled assistant Autoupdate 1582720182 => C:\Users\CRISEIDA\AppData\Local\Programs\Opera\launcher.exe [1529880 2020-09-08] (Opera Software AS -> Opera Software)
Task: {6D51AC92-6259-4454-B612-77333570838E} - System32\Tasks\KMSAuto => C:\WINDOWS\KMSAuto.exe
Task: {6DBF4F45-3D23-41E1-AC14-F0E59A694CB0} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-03-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7D0270A2-02EF-4DAA-82D5-1C68E3D77C55} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [840744 2019-03-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {981268E8-9270-4FFE-856B-8F9A77DA7D59} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\05f33b74-4b90-4232-8d73-5ef467227ee8 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.)
Task: {9B94BC94-8C7C-4B32-993E-E914090676FC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {A11266A2-0D3F-4E71-B1C1-CCBBC1B055F5} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [572456 2019-03-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A196BAAE-8E05-4D14-8E24-9DFFB0D72FE5} - System32\Tasks\EPSON L475 Series Update {DB7E7C66-19D6-49AC-AD14-023533EFC46F} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNWE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {AE7EEF80-24DC-4435-8BA3-5BB0DF96868E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-09-03] (Google Inc -> Google Inc.)
Task: {B368FAF7-9E27-4742-9B66-5BF9960ECFDF} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {B5FD324F-A396-4FAD-B1E2-775667257A7A} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler  /v start /t reg_dword /d 1 /f /reg:32
Task: {B626FA82-14BA-46A8-84AA-B75DA07FC076} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\74688975-d1c9-47d0-840a-8811ea5a4d99 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.)
Task: {B8F4970C-0052-4B10-BAED-9DE17552E24A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {C1A28CA2-2995-4CDF-990D-B7F772436DEE} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-03-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C2888556-BC8E-40C4-8BF3-A09C97817789} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3724328 2019-03-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C7981C72-4A75-44B3-811E-308380199253} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility://
Task: {CD2F8968-BD56-4B81-A467-D0D40621B42C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-09-03] (Google Inc -> Google Inc.)
Task: {DFB34D0C-EB2D-4F42-BDDC-588DA89958C2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14679256 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E0D26819-0200-486D-9515-321544095DA6} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {E4844647-3B8C-4497-88C1-391B6BFCAC3C} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [56136 2020-07-15] (Lenovo -> Lenovo Group Ltd.)
Task: {E69328A3-ABCA-4285-AFA8-D557BA32E727} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-03-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E8071884-64B6-4422-B9BF-BBF6355054F4} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-03-03] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F02FB08E-02B7-42D3-96F3-C456A3F04A79} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-09-03] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FAC78592-37C7-4B3C-9BB1-54B2C627E032} - System32\Tasks\Opera scheduled Autoupdate 1567495403 => C:\Users\CRISEIDA\AppData\Local\Programs\Opera\launcher.exe [1529880 2020-09-08] (Opera Software AS -> Opera Software)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\EPSON L475 Series Update {CC57CE64-31E7-4605-9B2B-8F3C6237210A}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNWE.EXE:/EXE:{CC57CE64-31E7-4605-9B2B-8F3C6237210A} /F:UpdateWORKGROUP\LAPTOP-JDB9OKB5$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\EPSON L475 Series Update {DB7E7C66-19D6-49AC-AD14-023533EFC46F}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNWE.EXE:/EXE:{DB7E7C66-19D6-49AC-AD14-023533EFC46F} /F:UpdateWORKGROUP\LAPTOP-JDB9OKB5$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 190.113.220.18 190.113.220.51 190.113.220.54
Tcpip\..\Interfaces\{cd1adff5-d0bf-4499-b8ab-fa28133b1589}: [DhcpNameServer] 190.113.220.18 190.113.220.51 190.113.220.54
Tcpip\..\Interfaces\{d09efb86-fa3c-47a5-a9b3-5e502e7d1656}: [DhcpNameServer] 190.113.220.18 190.113.220.51 190.113.220.54

Internet Explorer:
==================
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt=es-pe
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad
SearchScopes: HKU\S-1-5-21-2444298320-3582548934-135162116-1001 -> DefaultScope {28C48922-52B4-48FE-837A-15A72C15EB88} URL = 
SearchScopes: HKU\S-1-5-21-2444298320-3582548934-135162116-1001 -> {28C48922-52B4-48FE-837A-15A72C15EB88} URL = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_261\bin\ssv.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} 
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Edge: 
======
DownloadDir: C:\Users\CRISEIDA\Downloads
Edge Profile: C:\Users\CRISEIDA\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-09]
Edge DownloadDir: C:\Users\CRISEIDA\Downloads
Edge Extension: (Cisco Webex Extension) - C:\Users\CRISEIDA\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cmihkeafcknlomclapaddfljaeegfbdl [2020-07-13]
Edge HKLM-x32\...\Edge\Extension: [cmihkeafcknlomclapaddfljaeegfbdl]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-05-31] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 10\npnitromozilla.dll [2016-07-22] (Nitro Software, Inc. -> Nitro PDF)
FF Plugin-x32: @webex.com/npatgpc -> C:\Program Files (x86)\Webex\npatgpc.dll [2020-06-11] (Cisco WebEx LLC -> Cisco WebEx LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-10-23] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-05-31] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-2444298320-3582548934-135162116-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\CRISEIDA\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-12] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\Default [2020-09-10]
CHR Notifications: Default -> hxxps://meet.google.com; hxxps://www.pinterest.com
CHR StartupUrls: Default -> "hxxp://www.facebook.com/"
CHR Extension: (Presentaciones) - C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-03]
CHR Extension: (Documentos) - C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-03]
CHR Extension: (Google Drive) - C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-09-03]
CHR Extension: (YouTube) - C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-09-03]
CHR Extension: (uBlock Origin) - C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-08-22]
CHR Extension: (Hojas de cálculo) - C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-09-03]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-09]
CHR Extension: (Cisco Webex Extension) - C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2020-06-17]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Netflix Party) - C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2020-08-06]
CHR Extension: (Gmail) - C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-09-03]
CHR Extension: (Chrome Media Router) - C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-03]
CHR Profile: C:\Users\CRISEIDA\AppData\Local\Google\Chrome\User Data\System Profile [2020-07-23]
CHR HKLM-x32\...\Chrome\Extension: [jlhmfgmfgeifomenelglieieghnjghma]

Opera: 
=======
OPR Notifications: hxxps://meet.google.com
OPR Extension: (Watch2Gether) - C:\Users\CRISEIDA\AppData\Roaming\Opera Software\Opera Stable\Extensions\cimpffimgeipdhnhjohpbehjkcdpjolg [2020-07-31]
OPR Extension: (Install Chrome Extensions) - C:\Users\CRISEIDA\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2020-03-17]
OPR Extension: (Tampermonkey) - C:\Users\CRISEIDA\AppData\Roaming\Opera Software\Opera Stable\Extensions\mfdhdgbonjidekjkjmjaneanmdmpmidf [2020-03-26]
OPR Extension: (Netflix Party) - C:\Users\CRISEIDA\AppData\Roaming\Opera Software\Opera Stable\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2020-08-06]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-09-10] (Adobe Inc. -> Adobe Systems)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-05-31] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8686928 2020-09-08] (BattlEye Innovations e.K. -> )
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [1926600 2019-09-02] (Dolby Laboratories, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-09-08] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-09-03] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-09-03] (ESET, spol. s r.o. -> ESET)
R2 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [678328 2018-06-11] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [359808 2019-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81240 2020-07-15] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe [18360 2020-07-09] (Lenovo -> Lenovo Group Ltd.)
R2 NitroDriverReadSpool10; C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe [327320 2016-07-22] (Nitro Software, Inc. -> Nitro Software, Inc.)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe [417944 2016-07-22] (Nitro Software, Inc. -> )
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [24192 2018-03-06] (OpenVPN Technologies, Inc. -> )
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [67000 2020-04-16] (OpenVPN Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [67000 2020-04-16] (OpenVPN Inc. -> The OpenVPN Project)
R2 RvControlSvc; C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe [970624 2020-08-31] (Famatech Corp. -> Famatech Corp.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-18] (Microsoft Corporation -> Microsoft Corporation)
S3 WebexService; C:\Program Files (x86)\Webex\Webex\Applications\WebExService.exe [146240 2020-06-11] (Cisco WebEx LLC -> Cisco WebEx LLC)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-18] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_6de98d46a9fc896b\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_6de98d46a9fc896b\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [158512 2020-09-03] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106640 2020-09-03] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [195976 2020-09-03] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [116488 2020-09-03] (ESET, spol. s r.o. -> ESET)
U5 libusbK; C:\Windows\System32\Drivers\libusbK.sys [47200 2020-03-26] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R3 RvNetMP60; C:\WINDOWS\System32\drivers\RvNetMP60.sys [69048 2019-11-20] (Famatech Corp. -> Famatech Corp.)
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166752 2019-07-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-18] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-09-10 18:41 - 2020-09-10 18:45 - 000034323 _____ C:\Users\CRISEIDA\Desktop\FRST.txt
2020-09-10 18:41 - 2020-09-10 18:44 - 000000000 ____D C:\FRST
2020-09-10 18:39 - 2020-09-10 18:39 - 002297344 _____ (Farbar) C:\Users\CRISEIDA\Desktop\FRST64.exe
2020-09-10 11:22 - 2020-09-10 11:22 - 000111378 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.42.07 AM.jpeg
2020-09-10 11:09 - 2020-09-10 11:09 - 000140286 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.41.54 AM.jpeg
2020-09-10 10:29 - 2020-09-10 10:29 - 000123663 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.41.42 AM.jpeg
2020-09-10 10:19 - 2020-09-10 10:19 - 000143342 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.41.29 AM.jpeg
2020-09-10 10:11 - 2020-09-10 10:11 - 000149106 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.41.19 AM.jpeg
2020-09-10 09:46 - 2020-09-10 09:46 - 000176239 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.37.46 AM.jpeg
2020-09-10 09:36 - 2020-09-10 09:36 - 000148476 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.40.29 AM.jpeg
2020-09-10 09:29 - 2020-09-10 09:29 - 000155637 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.37.37 AM.jpeg
2020-09-10 09:19 - 2020-09-10 09:19 - 000165077 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.37.30 AM.jpeg
2020-09-10 09:11 - 2020-09-10 09:11 - 000163126 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.37.05 AM (4).jpeg
2020-09-10 09:11 - 2020-09-10 09:11 - 000163126 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.37.05 AM (3).jpeg
2020-09-09 20:36 - 2020-09-09 20:36 - 000000000 ___SH C:\Users\Public\Shared Files
2020-09-09 20:28 - 2020-09-09 20:28 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\FortniteGame
2020-09-09 20:28 - 2020-09-09 20:28 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2020-09-09 20:13 - 2020-09-09 20:13 - 003146427 _____ C:\Users\CRISEIDA\Documents\resultados covid 09-09-2020.pdf
2020-09-09 16:58 - 2020-08-31 01:07 - 000000000 ____D C:\Users\CRISEIDA\Downloads\LOS PANAS REMIX
2020-09-09 16:20 - 2020-09-09 16:56 - 108507913 _____ C:\Users\CRISEIDA\Downloads\LOS PANAS REMIX.rar
2020-09-09 16:06 - 2020-09-09 16:06 - 000163126 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.37.05 AM (2).jpeg
2020-09-09 15:48 - 2020-09-09 15:48 - 000163126 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.37.05 AM (1).jpeg
2020-09-09 15:40 - 2020-09-09 15:40 - 000163126 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-09 at 10.37.05 AM.jpeg
2020-09-09 12:34 - 2020-09-09 12:34 - 003416576 _____ C:\Users\CRISEIDA\Downloads\1. REPORTE JUL 2020 GUARDIAS Y ADICIONALES (1).xls
2020-09-09 12:31 - 2020-09-09 12:32 - 002983776 _____ C:\Users\CRISEIDA\Downloads\PLANTILLA SERUMS NACIONAL MOQUEGUA 2020-1 - 2019-2 JULIO  (1).xlsx
2020-09-09 12:31 - 2020-09-09 12:31 - 000124868 _____ C:\Users\CRISEIDA\Downloads\1.Asist. Serums Reg. Y REEMPLAZOS.-JUL 2020- (1).xlsx
2020-09-09 12:29 - 2020-09-09 12:29 - 000620032 _____ C:\Users\CRISEIDA\Downloads\1.Personal CAS ENE-DIC 2020 (4).xls
2020-09-09 12:26 - 2020-09-09 12:27 - 003418624 _____ C:\Users\CRISEIDA\Downloads\1. REPORTE JUL 2020 GUARDIAS Y ADICIONALES.xls
2020-09-09 12:25 - 2020-09-09 12:25 - 000124868 _____ C:\Users\CRISEIDA\Downloads\1.Asist. Serums Reg. Y REEMPLAZOS.-JUL 2020-.xlsx
2020-09-09 12:22 - 2020-09-09 12:22 - 002983776 _____ C:\Users\CRISEIDA\Downloads\PLANTILLA SERUMS NACIONAL MOQUEGUA 2020-1 - 2019-2 JULIO .xlsx
2020-09-09 12:21 - 2020-09-09 12:21 - 000066235 _____ C:\Users\CRISEIDA\Downloads\constancia de salud m.c. coalaque.pdf
2020-09-09 12:18 - 2020-09-09 12:18 - 000227880 _____ C:\Users\CRISEIDA\Downloads\constancia de salud m.c. chilata.pdf
2020-09-09 12:16 - 2020-09-09 12:17 - 000117001 _____ C:\Users\CRISEIDA\Downloads\alta acosta.jpeg
2020-09-09 12:12 - 2020-09-09 12:12 - 000037185 _____ C:\Users\CRISEIDA\Downloads\NOMINA PERS. (OK) SEDE ADM. GERESA Y RED MOQUEGUA (1).xlsx
2020-09-09 12:11 - 2020-09-09 12:11 - 000076475 _____ C:\Users\CRISEIDA\Downloads\LAB. REG. JULIO 2020.xlsx
2020-09-09 12:09 - 2020-09-09 12:09 - 000069143 _____ C:\Users\CRISEIDA\Downloads\LAB. REG. JUNIO 2020 (1).xlsx
2020-09-09 12:02 - 2020-09-09 12:02 - 000240128 _____ C:\Users\CRISEIDA\Downloads\DESC. FOASES JUNIO 2020 - PLLA. JULIO 2020.xls
2020-09-09 11:59 - 2020-09-09 12:00 - 002992128 _____ C:\Users\CRISEIDA\Downloads\1. REPORTE JUN 2020 GUARDIAS Y ADICIONALES (1) (2).xls
2020-09-09 11:58 - 2020-09-09 11:58 - 000162304 _____ C:\Users\CRISEIDA\Downloads\FOASES JUNIO 2020 - PLLA. JULIO 2020.xls
2020-09-09 11:29 - 2020-09-09 11:29 - 003091939 _____ C:\Users\CRISEIDA\Downloads\SUAREZ CALISAYA MARLENI.pdf
2020-09-09 11:27 - 2020-09-09 11:27 - 003097205 _____ C:\Users\CRISEIDA\Downloads\FLORES QUISPE JULIA DESTACADA.pdf
2020-09-09 02:21 - 2020-09-09 02:21 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\CRISEIDA\Downloads\rkill.exe
2020-09-09 02:15 - 2020-09-09 02:15 - 000313366 _____ C:\Users\CRISEIDA\Downloads\WindowsUpdateDiagnostic.diagcab
2020-09-09 02:13 - 2020-09-09 02:13 - 005503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-09-09 02:13 - 2020-09-09 02:13 - 004309504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-09-09 02:13 - 2020-09-09 02:13 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-09-09 02:13 - 2020-09-09 02:13 - 000928768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2020-09-09 02:13 - 2020-09-09 02:13 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-09-09 02:13 - 2020-09-09 02:13 - 000709632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2020-09-09 02:13 - 2020-09-09 02:13 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFSR.dll
2020-09-09 02:13 - 2020-09-09 02:13 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-09-09 02:13 - 2020-09-09 02:13 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSE.dll
2020-09-09 02:13 - 2020-09-09 02:13 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-09-09 02:13 - 2020-09-09 02:13 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-09-09 02:13 - 2020-09-09 02:13 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOVER.exe
2020-09-09 02:13 - 2020-09-09 02:13 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSUTILITY.dll
2020-09-09 02:13 - 2020-09-09 02:13 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2020-09-09 02:13 - 2020-09-09 02:13 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSERES.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 032928920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 031598936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 025444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 019852288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 018032128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 006304256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 005907456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 003525608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 003501568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 002494752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 002422384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-09-09 02:12 - 2020-09-09 02:12 - 002315472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 002230240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 002138264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-09-09 02:12 - 2020-09-09 02:12 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 001491160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 001272160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 001247744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2020-09-09 02:12 - 2020-09-09 02:12 - 001151808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 001108384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 001099600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 001039872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2020-09-09 02:12 - 2020-09-09 02:12 - 001012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 000748384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 000744240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2020-09-09 02:12 - 2020-09-09 02:12 - 000738072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-09-09 02:12 - 2020-09-09 02:12 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 000682752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2020-09-09 02:12 - 2020-09-09 02:12 - 000666288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-09-09 02:12 - 2020-09-09 02:12 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 000588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-09-09 02:12 - 2020-09-09 02:12 - 000537608 _____ (Microsoft Corporation)
6

Continúa FRST.txt

C:\WINDOWS\SysWOW64\mf.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
    2020-09-09 02:12 - 2020-09-09 02:12 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000420168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000299072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
    2020-09-09 02:12 - 2020-09-09 02:12 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
    2020-09-09 02:12 - 2020-09-09 02:12 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnscmmc.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhuxgraphics.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiscap.sys
    2020-09-09 02:12 - 2020-09-09 02:12 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NAPCRYPT.DLL
    2020-09-09 02:12 - 2020-09-09 02:12 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NAPCRYPT.DLL
    2020-09-09 02:12 - 2020-09-09 02:12 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tar.exe
    2020-09-09 02:12 - 2020-09-09 02:12 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wslapi.dll
    2020-09-09 02:12 - 2020-09-09 02:12 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
    2020-09-09 02:12 - 2020-09-09 02:12 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 022642176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 007761408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 007284736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 005767744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 004859904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 004605952 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 004538368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 002585032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 002259680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 001459200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 001421392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 001397560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
    2020-09-09 02:11 - 2020-09-09 02:11 - 001326592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 001218424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
    2020-09-09 02:11 - 2020-09-09 02:11 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
    2020-09-09 02:11 - 2020-09-09 02:11 - 000894032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000864768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000783496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
    2020-09-09 02:11 - 2020-09-09 02:11 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
    2020-09-09 02:11 - 2020-09-09 02:11 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000675032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
    2020-09-09 02:11 - 2020-09-09 02:11 - 000671560 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000593480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000466352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000224064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnscmmc.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
    2020-09-09 02:11 - 2020-09-09 02:11 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
    2020-09-09 02:11 - 2020-09-09 02:11 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tar.exe
    2020-09-09 02:11 - 2020-09-09 02:11 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
    2020-09-09 02:11 - 2020-09-09 02:11 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfctrs.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
    2020-09-09 02:11 - 2020-09-09 02:11 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfdisk.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfos.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000021304 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
    2020-09-09 02:11 - 2020-09-09 02:11 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKOR.DLL
    2020-09-09 02:11 - 2020-09-09 02:11 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106n.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd101.DLL
    2020-09-09 02:11 - 2020-09-09 02:11 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3r.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
    2020-09-09 02:11 - 2020-09-09 02:11 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
    2020-09-09 02:11 - 2020-09-09 02:11 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
    2020-09-09 02:11 - 2020-09-09 02:11 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
    2020-09-09 02:11 - 2020-09-09 02:11 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
    2020-09-09 02:11 - 2020-09-09 02:11 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
    2020-09-09 02:11 - 2020-09-09 02:11 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
    2020-09-09 02:11 - 2020-09-09 02:11 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
    2020-09-09 02:11 - 2020-09-09 02:11 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
    2020-09-09 02:11 - 2020-09-09 02:11 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
    2020-09-09 02:11 - 2020-09-09 02:11 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
    2020-09-09 02:11 - 2020-09-09 02:11 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
    2020-09-09 02:11 - 2020-09-09 02:11 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
    2020-09-09 02:10 - 2020-09-09 02:11 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 006069360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 005848848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 005003832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 003740456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
    2020-09-09 02:10 - 2020-09-09 02:10 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 002565120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 002306048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 001957552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 001750016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 001704960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 001688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 001672544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 001664696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 001369088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 001307464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 001246208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 001124864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 001054160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 001009200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000892728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
    2020-09-09 02:10 - 2020-09-09 02:10 - 000867328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000844088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000768504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
    2020-09-09 02:10 - 2020-09-09 02:10 - 000667312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000628400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000572208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000564480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000553664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
    2020-09-09 02:10 - 2020-09-09 02:10 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
    2020-09-09 02:10 - 2020-09-09 02:10 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000294728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
    2020-09-09 02:10 - 2020-09-09 02:10 - 000285056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
    2020-09-09 02:10 - 2020-09-09 02:10 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
    2020-09-09 02:10 - 2020-09-09 02:10 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000165184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000146640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapistub.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mapi32.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
    2020-09-09 02:10 - 2020-09-09 02:10 - 000090944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000089344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
    2020-09-09 02:10 - 2020-09-09 02:10 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
    2020-09-09 02:10 - 2020-09-09 02:10 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
    2020-09-09 02:10 - 2020-09-09 02:10 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fixmapi.exe
    2020-09-09 02:10 - 2020-09-09 02:10 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDJPN.DLL
    2020-09-09 02:10 - 2020-09-09 02:10 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106n.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd101.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
    2020-09-09 02:10 - 2020-09-09 02:10 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 005041152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
    2020-09-09 02:09 - 2020-09-09 02:09 - 002774088 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 002772616 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 002090280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 001698816 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 001653792 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 001480520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
    2020-09-09 02:09 - 2020-09-09 02:09 - 001170960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 001141048 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000932256 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
    2020-09-09 02:09 - 2020-09-09 02:09 - 000823752 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
    2020-09-09 02:09 - 2020-09-09 02:09 - 000777216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000661832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
    2020-09-09 02:09 - 2020-09-09 02:09 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
    2020-09-09 02:09 - 2020-09-09 02:09 - 000544336 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
    2020-09-09 02:09 - 2020-09-09 02:09 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
    2020-09-09 02:09 - 2020-09-09 02:09 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
    2020-09-09 02:09 - 2020-09-09 02:09 - 000372536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
    2020-09-09 02:09 - 2020-09-09 02:09 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000356160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
    2020-09-09 02:09 - 2020-09-09 02:09 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000260408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
    2020-09-09 02:09 - 2020-09-09 02:09 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000213824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000146248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
    2020-09-09 02:09 - 2020-09-09 02:09 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
    2020-09-09 02:09 - 2020-09-09 02:09 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000108856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000063296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
    2020-09-09 02:09 - 2020-09-09 02:09 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
    2020-09-09 02:09 - 2020-09-09 02:09 - 000057888 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
    2020-09-09 02:09 - 2020-09-09 02:09 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
    2020-09-09 02:09 - 2020-09-09 02:09 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
    2020-09-09 02:08 - 2020-09-09 02:09 - 009926456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 007910152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 007845080 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 007582768 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 007271232 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 006170624 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 005284328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 004048384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 004005888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 003805696 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 003714048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 003547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 003371176 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 003265024 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 003136000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 002711552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 002697536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 002483712 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 002454904 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 002291712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 002260824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 002073600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001999968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001942016 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001930752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001784832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001767424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001746232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001670144 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001499136 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 001485824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001399216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001260752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 001008952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000981320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000978232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000944680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000893104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000858928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000716304 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000555320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000460192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000375096 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000363128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000273208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000254776 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000250680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000224072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000209216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000208712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000205640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000200008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapistub.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapi32.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000142152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000079576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000066872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000059392 _____ C:\WINDOWS\system32\runexehelper.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000047008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdiagnostics.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fixmapi.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
    2020-09-09 02:08 - 2020-09-09 02:08 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
    2020-09-09 02:08 - 2020-09-09 02:08 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
    2020-09-09 02:08 - 2020-09-09 02:08 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
    2020-09-09 01:37 - 2020-09-09 01:37 - 008414384 _____ (Malwarebytes) C:\Users\CRISEIDA\Downloads\adwcleaner_8.0.7.exe
    2020-09-09 01:05 - 2020-09-09 01:06 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
    2020-09-09 01:05 - 2020-09-09 01:06 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
    2020-09-08 22:17 - 2020-09-08 22:17 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\UnrealEngineLauncher
    2020-09-08 22:17 - 2020-09-08 22:17 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\EpicGamesLauncher
    2020-09-08 22:16 - 2020-09-08 22:22 - 000000000 ____D C:\ProgramData\Epic
    2020-09-08 22:16 - 2020-09-08 22:16 - 000000959 _____
7

Final FRST.txt

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
            2020-09-08 22:15 - 2020-09-08 22:15 - 044257280 _____ C:\Users\CRISEIDA\Downloads\EpicInstaller-10.17.0.msi
            2020-09-08 02:44 - 2020-09-08 02:44 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Tempzxpsignefb3a6fd8732b46b
            2020-09-08 02:44 - 2020-09-08 02:44 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Tempzxpsign0e83f1957a4ab092
            2020-09-07 03:15 - 2020-09-07 03:15 - 034121202 _____ C:\Users\CRISEIDA\Downloads\SoVQoHJw0e.mp4
            2020-09-05 23:18 - 2020-09-05 23:18 - 000521309 _____ C:\Users\CRISEIDA\Downloads\SPOILER_ESGs-SvXsAA10LY.jfif
            2020-09-05 00:24 - 2020-09-05 00:24 - 000000000 ____D C:\Users\Public\Documents\OnlineFix
            2020-09-05 00:24 - 2020-09-05 00:24 - 000000000 ____D C:\Users\CRISEIDA\AppData\LocalLow\Innersloth
            2020-09-05 00:24 - 2020-09-05 00:24 - 000000000 ____D C:\ProgramData\Documents\OnlineFix
            2020-09-05 00:23 - 2020-09-05 00:23 - 054749532 _____ C:\Users\CRISEIDA\Downloads\4m0ng-Us_v202O.8.31s.rar
            2020-09-05 00:18 - 2020-09-05 00:18 - 004876894 _____ C:\Users\CRISEIDA\Downloads\Am0ungUSFixOnly.rar
            2020-09-05 00:13 - 2020-09-05 00:14 - 000000000 ____D C:\Users\CRISEIDA\AppData\Roaming\Psiphon3
            2020-09-05 00:13 - 2020-09-05 00:13 - 007426160 _____ C:\Users\CRISEIDA\Downloads\psiphon3.exe
            2020-09-04 16:16 - 2020-09-04 16:16 - 007096515 _____ C:\Users\CRISEIDA\Documents\FUT CON ANEXOS ROSALIA MODESTA SAIRA JUAREZ.pdf
            2020-09-04 16:14 - 2020-09-04 16:15 - 007034209 _____ C:\Users\CRISEIDA\Documents\FUT CON ANEXOS DOMINGO MESIAS CHALCALTANA ORMEÑO.pdf
            2020-09-04 16:05 - 2020-09-04 16:05 - 000689972 _____ C:\Users\CRISEIDA\Downloads\6485-Texto del artículo-25060-1-10-20130715.pdf
            2020-09-04 15:58 - 2020-09-04 15:58 - 001089850 _____ C:\Users\CRISEIDA\Documents\partida magali.pdf
            2020-09-04 15:45 - 2020-09-04 15:45 - 000137793 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-04 at 3.07.46 PM.jpeg
            2020-09-04 15:45 - 2020-09-04 15:45 - 000128945 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-09-04 at 3.02.57 PM.jpeg
            2020-09-04 15:44 - 2020-09-04 15:44 - 002475861 _____ C:\Users\CRISEIDA\Documents\fut magali.pdf
            2020-09-04 15:44 - 2020-09-04 15:44 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Tempzxpsign5003b6db580831f1
            2020-09-04 15:44 - 2020-09-04 15:44 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Tempzxpsign3de14dcb45de853a
            2020-09-04 15:41 - 2020-09-04 15:41 - 001414906 _____ C:\Users\CRISEIDA\Documents\boletas magali.pdf
            2020-09-04 15:26 - 2020-09-04 15:26 - 007306340 _____ C:\Users\CRISEIDA\Documents\FUT Y ANEXOS ROSALIA MODESTA SAIRA JUAREZ.pdf
            2020-09-04 15:20 - 2020-09-04 15:20 - 001225244 _____ C:\Users\CRISEIDA\Documents\SCN054.pdf
            2020-09-04 15:13 - 2020-09-04 15:13 - 001514640 _____ C:\Users\CRISEIDA\Documents\recibos rosalia.pdf
            2020-09-04 15:10 - 2020-09-04 15:10 - 001093625 _____ C:\Users\CRISEIDA\Documents\defuncion rosalia.pdf
            2020-09-04 15:06 - 2020-09-04 15:06 - 001227916 _____ C:\Users\CRISEIDA\Documents\fut rosalia.pdf
            2020-09-04 15:02 - 2020-09-04 15:02 - 001406290 _____ C:\Users\CRISEIDA\Documents\BOLETAS CRISEIDA.pdf
            2020-09-04 14:59 - 2020-09-04 14:59 - 001067606 _____ C:\Users\CRISEIDA\Documents\DNI CRISEIDA.pdf
            2020-09-04 14:58 - 2020-09-04 14:58 - 000995836 _____ C:\Users\CRISEIDA\Documents\partida criseida.pdf
            2020-09-04 00:43 - 2020-09-04 00:43 - 037942337 _____ C:\Users\CRISEIDA\Downloads\server.jar
            2020-09-03 19:25 - 2020-09-03 19:25 - 000118784 _____ C:\Users\CRISEIDA\Downloads\FICHA_CURRICULAR.xls
            2020-09-03 13:39 - 2020-09-03 13:39 - 000035228 _____ C:\Users\CRISEIDA\Downloads\Boletas herramts derecho enero (1).pdf
            2020-09-03 13:37 - 2020-09-03 13:37 - 000035228 _____ C:\Users\CRISEIDA\Downloads\Boletas herramts derecho enero.pdf
            2020-09-02 19:56 - 2020-09-02 19:56 - 017021113 _____ C:\Users\CRISEIDA\Downloads\tupa_aprobado_peruano_compressed.pdf
            2020-09-02 15:51 - 2020-09-04 15:21 - 009153697 _____ C:\Users\CRISEIDA\Documents\FUT Y ANEXOS DOMINGO MESIAS CHALCALTANA ORMEÑO.pdf
            2020-09-02 15:06 - 2020-09-02 15:06 - 000996140 _____ C:\Users\CRISEIDA\Downloads\VIVA - MANUAL DEL ASEGURADO.pdf
            2020-09-02 15:06 - 2020-09-02 15:06 - 000853439 _____ C:\Users\CRISEIDA\Downloads\VIVA - MANUAL DEL EMPLEADOR.pdf
            2020-09-02 12:17 - 2020-09-02 12:17 - 000094206 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-07-27 at 5.42.25 PM (1).jpeg
            2020-09-01 15:54 - 2020-09-01 15:54 - 001112970 _____ C:\Users\CRISEIDA\Downloads\Acta-Defunción-SAIRA JUAREZ (3).pdf
            2020-09-01 11:08 - 2020-09-01 11:08 - 001112970 _____ C:\Users\CRISEIDA\Downloads\Acta-Defunción-SAIRA JUAREZ (2).pdf
            2020-09-01 10:44 - 2020-09-01 10:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Radmin VPN
            2020-09-01 10:44 - 2020-09-01 10:44 - 000000000 ____D C:\Program Files (x86)\Radmin VPN
            2020-09-01 10:37 - 2020-09-01 10:37 - 001112970 _____ C:\Users\CRISEIDA\Downloads\Acta-Defunción-SAIRA JUAREZ.pdf
            2020-09-01 10:37 - 2020-09-01 10:37 - 001112970 _____ C:\Users\CRISEIDA\Downloads\Acta-Defunción-SAIRA JUAREZ (1).pdf
            2020-08-31 17:27 - 2020-08-31 17:27 - 000001060 _____ C:\Users\Public\Desktop\OBS Studio.lnk
            2020-08-31 17:27 - 2020-08-31 17:27 - 000001060 _____ C:\ProgramData\Desktop\OBS Studio.lnk
            2020-08-31 17:27 - 2020-08-31 17:27 - 000000000 ____D C:\ProgramData\obs-studio-hook
            2020-08-31 17:27 - 2020-08-31 17:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
            2020-08-31 17:11 - 2020-08-31 17:23 - 073485328 _____ (obsproject.com) C:\Users\CRISEIDA\Downloads\OBS-Studio-25.0.8-Full-Installer-x64.exe
            2020-08-30 21:24 - 2020-08-30 21:24 - 000028975 _____ C:\Users\CRISEIDA\Downloads\5911c155ae653a5f912fef5b.jfif
            2020-08-29 18:26 - 2020-07-15 03:37 - 001780944 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
            2020-08-29 18:26 - 2020-07-15 03:37 - 001780944 _____ C:\WINDOWS\system32\vulkaninfo.exe
            2020-08-29 18:26 - 2020-07-15 03:37 - 001371344 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
            2020-08-29 18:26 - 2020-07-15 03:37 - 001371344 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
            2020-08-29 18:26 - 2020-07-15 03:37 - 001086672 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
            2020-08-29 18:26 - 2020-07-15 03:37 - 001086672 _____ C:\WINDOWS\system32\vulkan-1.dll
            2020-08-29 18:26 - 2020-07-15 03:37 - 000946392 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
            2020-08-29 18:26 - 2020-07-15 03:37 - 000946392 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
            2020-08-29 18:26 - 2020-07-15 03:36 - 000456592 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
            2020-08-29 18:26 - 2020-07-15 03:36 - 000349928 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
            2020-08-29 18:26 - 2020-07-15 03:33 - 001486744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
            2020-08-29 18:26 - 2020-07-15 03:33 - 001017744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
            2020-08-29 18:26 - 2020-07-15 03:33 - 000816360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
            2020-08-29 18:26 - 2020-07-15 03:33 - 000674024 _____ C:\WINDOWS\system32\nvofapi64.dll
            2020-08-29 18:26 - 2020-07-15 03:33 - 000670608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
            2020-08-29 18:26 - 2020-07-15 03:33 - 000555920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
            2020-08-29 18:26 - 2020-07-15 03:33 - 000541928 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
            2020-08-29 18:26 - 2020-07-15 03:32 - 002076560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
            2020-08-29 18:26 - 2020-07-15 03:32 - 001569680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
            2020-08-29 18:26 - 2020-07-15 03:32 - 001146256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
            2020-08-29 18:26 - 2020-07-15 03:32 - 000812432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
            2020-08-29 18:26 - 2020-07-15 03:32 - 000655592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
            2020-08-29 18:26 - 2020-07-15 03:32 - 000581880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
            2020-08-29 18:26 - 2020-07-15 03:31 - 006652816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
            2020-08-29 18:26 - 2020-07-15 03:31 - 005883280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
            2020-08-29 18:26 - 2020-07-15 03:31 - 003901672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
            2020-08-29 18:26 - 2020-07-15 03:31 - 002367736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
            2020-08-29 18:26 - 2020-07-15 03:31 - 000444824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
            2020-08-29 18:26 - 2020-07-15 03:30 - 000849656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
            2020-08-29 18:26 - 2020-07-15 03:29 - 004716160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
            2020-08-29 18:26 - 2020-07-15 01:11 - 000078796 _____ C:\WINDOWS\system32\nvinfo.pb
            2020-08-29 11:42 - 2020-08-29 11:42 - 000157661 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-08-29 at 11.43.01 AM (1).jpeg
            2020-08-29 11:42 - 2020-08-29 11:42 - 000128710 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-08-29 at 11.43.01 AM.jpeg
            2020-08-29 01:26 - 2020-08-29 01:26 - 000073315 _____ C:\Users\CRISEIDA\Downloads\hg1tN2XZjoJ_YxNhGFd0rx5DRQX3YMEkeqoE_lOybaU_390x400_1x-0.jpeg
            2020-08-27 22:23 - 2020-08-27 22:23 - 000000504 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
            2020-08-27 21:02 - 2020-08-27 21:02 - 000000000 ____D C:\Users\CRISEIDA\AppData\LocalLow\Unity
            2020-08-27 15:22 - 2020-08-27 15:22 - 000000000 ____D C:\Users\CRISEIDA\AppData\LocalLow\Mediatonic
            2020-08-27 10:04 - 2020-08-27 10:04 - 000131232 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-08-27 at 9.59.40 AM.jpeg
            2020-08-27 08:46 - 2020-08-27 08:46 - 000123700 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-08-27 at 8.31.52 AM (2).jpeg
            2020-08-27 08:45 - 2020-08-27 08:45 - 000106584 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-08-27 at 8.31.56 AM.jpeg
            2020-08-27 08:44 - 2020-08-27 08:44 - 000119015 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-08-27 at 8.31.55 AM.jpeg
            2020-08-27 08:43 - 2020-08-27 08:43 - 000121903 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-08-27 at 8.31.53 AM (2).jpeg
            2020-08-27 08:39 - 2020-08-27 08:39 - 000130730 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-08-27 at 8.31.53 AM (1).jpeg
            2020-08-27 08:38 - 2020-08-27 08:38 - 000130730 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-08-27 at 8.31.53 AM.jpeg
            2020-08-27 08:32 - 2020-08-27 08:32 - 000123700 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-08-27 at 8.31.52 AM (1).jpeg
            2020-08-27 08:31 - 2020-08-27 08:31 - 000123700 _____ C:\Users\CRISEIDA\Downloads\WhatsApp Image 2020-08-27 at 8.31.52 AM.jpeg
            2020-08-27 01:07 - 2020-08-27 01:07 - 000044620 _____ C:\Users\CRISEIDA\Downloads\5b6166e4ae653a4591100933.jfif
            2020-08-27 00:44 - 2020-08-28 23:27 - 000000000 ____D C:\Users\CRISEIDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LaunchBox
            2020-08-27 00:44 - 2020-08-27 00:44 - 000000000 ____D C:\Program Files\dotnet
            2020-08-24 06:12 - 2020-08-24 20:31 - 000014544 _____ C:\ProgramData\DisplaySessionContainer25.log_backup1
            2020-08-24 02:09 - 2020-08-24 06:12 - 000013963 _____ C:\ProgramData\DisplaySessionContainer24.log_backup1
            2020-08-23 23:10 - 2020-08-23 23:10 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Tempzxpsignd1f133ec6ae80f76
            2020-08-23 23:10 - 2020-08-23 23:10 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Tempzxpsign195a0baa612b526a
            2020-08-22 00:56 - 2020-08-22 00:56 - 001484948 _____ C:\Users\CRISEIDA\Downloads\peruano-dame-da-ne-meme.mp4
            2020-08-21 00:47 - 2020-08-21 00:47 - 000046944 _____ C:\Users\CRISEIDA\Downloads\resize.jfif
            2020-08-21 00:14 - 2020-08-21 00:14 - 000178484 _____ C:\Users\CRISEIDA\Downloads\descarga.jfif
            2020-08-21 00:11 - 2020-08-21 00:11 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Tempzxpsigncbf4e6125498c287
            2020-08-21 00:11 - 2020-08-21 00:11 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Tempzxpsign8460ba2bbc266296
            2020-08-20 01:02 - 2020-08-20 01:02 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Tempzxpsignf53800b0f78ffc75
            2020-08-20 01:02 - 2020-08-20 01:02 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Tempzxpsignd56f8e59c82c337f
            2020-08-18 18:53 - 2020-08-18 20:27 - 245937848 _____ (Unbroken Software ) C:\Users\CRISEIDA\Downloads\LaunchBox-11.2-Setup.exe
            2020-08-18 18:48 - 2020-08-18 18:48 - 000027583 _____ C:\Users\CRISEIDA\Downloads\Super-Mario-Galaxy-2-[MULTI3][WII-Scrubber]-(Torrent).torrent
            2020-08-18 18:48 - 2020-08-18 18:48 - 000022736 _____ C:\Users\CRISEIDA\Downloads\Wii-Super.Mario.Galaxy.PAL.MULTI5.torrent
            2020-08-16 11:59 - 2020-08-16 11:59 - 001796159 _____ C:\Users\CRISEIDA\Downloads\NOVIMEBRE20.pdf
            2020-08-16 11:58 - 2020-08-16 11:58 - 001863295 _____ C:\Users\CRISEIDA\Downloads\DICIEMBRE20.pdf
            2020-08-16 11:58 - 2020-08-16 11:58 - 001791870 _____ C:\Users\CRISEIDA\Downloads\SEPTIEMBRE20.pdf
            2020-08-16 11:58 - 2020-08-16 11:58 - 001529236 _____ C:\Users\CRISEIDA\Downloads\OCTUBRE20.pdf
            2020-08-16 11:58 - 2020-08-16 11:58 - 001501632 _____ C:\Users\CRISEIDA\Downloads\AGOSTO20.pdf
            2020-08-14 21:41 - 2020-09-10 02:27 - 000000000 ____D C:\Users\CRISEIDA\AppData\Roaming\.tlauncher
            2020-08-13 06:18 - 2020-08-13 06:18 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
            2020-08-13 06:18 - 2020-08-13 06:18 - 002259192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
            2020-08-13 06:18 - 2020-08-13 06:18 - 001870200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
            2020-08-13 06:18 - 2020-08-13 06:18 - 001418832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
            2020-08-13 06:18 - 2020-08-13 06:18 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
            2020-08-13 06:18 - 2020-08-13 06:18 - 000343408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
            2020-08-13 06:18 - 2020-08-13 06:18 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 025903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 002950808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
            2020-08-13 06:17 - 2020-08-13 06:17 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
            2020-08-13 06:17 - 2020-08-13 06:17 - 002588688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
            2020-08-13 06:17 - 2020-08-13 06:17 - 001836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 001564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 001282872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
            2020-08-13 06:17 - 2020-08-13 06:17 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
            2020-08-13 06:17 - 2020-08-13 06:17 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
            2020-08-13 06:17 - 2020-08-13 06:17 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
            2020-08-13 06:17 - 2020-08-13 06:17 - 000875520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000690536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000672256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000568128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000379704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000359496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
            2020-08-13 06:17 - 2020-08-13 06:17 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
            2020-08-13 06:17 - 2020-08-13 06:17 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe
            2020-08-13 06:17 - 2020-08-13 06:17 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe
            2020-08-13 06:17 - 2020-08-13 06:17 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
            2020-08-13 06:17 - 2020-08-13 06:17 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
            2020-08-13 06:17 - 2020-08-13 06:17 - 000000357 _____ C:\WINDOWS\system32\DrtmAuthKeyDelegate_From_20190529_To_20200303.bin
            2020-08-13 06:17 - 2020-08-13 06:17 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth1KeyDelegate.bin
            2020-08-13 06:16 - 2020-08-13 06:16 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 006436864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
            2020-08-13 06:16 - 2020-08-13 06:16 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 002022400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 001756592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
            2020-08-13 06:16 - 2020-08-13 06:16 - 001669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 001512848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
            2020-08-13 06:16 - 2020-08-13 06:16 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
            2020-08-13 06:16 - 2020-08-13 06:16 - 001182248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
            2020-08-13 06:16 - 2020-08-13 06:16 - 001101312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000897648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000718336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000675024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000673088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000463168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000220984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
            2020-08-13 06:16 - 2020-08-13 06:16 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000124512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
            2020-08-13 06:16 - 2020-08-13 06:16 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
            2020-08-13 06:16 - 2020-08-13 06:16 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
            2020-08-13 06:16 - 2020-08-13 06:16 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
            2020-08-13 06:16 - 2020-08-13 06:16 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acwow64.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
            2020-08-13 06:16 - 2020-08-13 06:16 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
            2020-08-13 06:16 - 2020-08-13 06:16 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
            2020-08-13 06:16 - 2020-08-13 06:16 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
            2020-08-13 06:16 - 2020-08-13 06:16 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
            2020-08-13 06:16 - 2020-08-13 06:16 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
            2020-08-13 06:16 - 2020-08-13 06:16 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
            2020-08-13 06:15 - 2020-08-13 06:15 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 004625184 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
            2020-08-13 06:15 - 2020-08-13 06:15 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
            2020-08-13 06:15 - 2020-08-13 06:15 - 003141632 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 002523136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 002136064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 001660536 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 001123344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000917800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000875424 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000522688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
            2020-08-13 06:15 - 2020-08-13 06:15 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000369304 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayServer.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
            2020-08-13 06:15 - 2020-08-13 06:15 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys
            2020-08-13 06:15 - 2020-08-13 06:15 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
            2020-08-13 06:15 - 2020-08-13 06:15 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
            2020-08-13 06:15 - 2020-08-13 06:15 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
            2020-08-13 06:15 - 2020-08-13 06:15 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
            2020-08-13 06:15 - 2020-08-13 06:15 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
            2020-08-13 00:23 - 2020-08-13 00:44 - 158965349 _____ C:\Users\CRISEIDA\Downloads\VMagicMirror_v1.2.0.zip

            ==================== Un mes (modificado) ==================

            (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

            2020-09-10 18:46 - 2020-03-17 23:31 - 000000000 ____D C:\Users\CRISEIDA\AppData\Roaming\discord
            2020-09-10 18:33 - 2019-03-18 23:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
            2020-09-10 17:16 - 2020-03-17 23:31 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Discord
            2020-09-10 16:37 - 2020-06-06 18:51 - 000002430 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
            2020-09-10 16:11 - 2020-08-07 22:22 - 000004224 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{21D8E38D-04BA-4A0C-8625-EFAB23A05103}
            2020-09-10 16:08 - 2020-08-07 21:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
            2020-09-10 13:51 - 2019-09-03 23:15 - 000000000 ____D C:\Users\CRISEIDA\AppData\Roaming\Nitro
            2020-09-10 13:38 - 2019-06-08 06:21 - 000000000 ____D C:\ProgramData\NVIDIA
            2020-09-10 13:36 - 2019-09-03 00:38 - 000000000 __SHD C:\Users\CRISEIDA\IntelGraphicsProfiles
            2020-09-10 12:37 - 2020-03-18 21:20 - 000000000 ____D C:\Users\CRISEIDA\Documents\ShareX
            2020-09-10 11:15 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\AppReadiness
            2020-09-10 09:05 - 2019-10-03 17:06 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
            2020-09-10 09:05 - 2019-10-03 17:06 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
            2020-09-10 06:37 - 2020-03-24 06:25 - 000000000 ____D C:\Users\CRISEIDA\Desktop\PRIMER-GRADO-2020
            2020-09-10 06:08 - 2020-08-07 22:22 - 000004238 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1567495403
            2020-09-10 06:08 - 2019-09-03 02:23 - 000001421 _____ C:\Users\CRISEIDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera.lnk
            2020-09-10 02:38 - 2020-04-01 21:03 - 000000000 ____D C:\Users\CRISEIDA\AppData\Roaming\.minecraft
            2020-09-10 00:18 - 2019-03-18 23:52 - 000000000 ___HD C:\Program Files\WindowsApps
            2020-09-10 00:01 - 2019-03-18 23:50 - 000000000 ____D C:\WINDOWS\INF
            2020-09-09 20:36 - 2019-03-18 23:52 - 000000000 __SHD C:\Users\Public\Libraries
            2020-09-09 20:30 - 2019-09-03 00:39 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\NVIDIA Corporation
            2020-09-09 20:28 - 2019-10-21 13:32 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\UnrealEngine
            2020-09-09 16:01 - 2019-09-03 02:24 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
            2020-09-09 16:01 - 2019-09-03 02:24 - 000002265 _____ C:\Users\Public\Desktop\Google Chrome.lnk
            2020-09-09 16:01 - 2019-09-03 02:24 - 000002265 _____ C:\ProgramData\Desktop\Google Chrome.lnk
            2020-09-09 13:03 - 2020-08-07 22:08 - 001773430 _____ C:\WINDOWS\system32\PerfStringBackup.INI
            2020-09-09 13:03 - 2019-03-19 06:59 - 000791286 _____ C:\WINDOWS\system32\perfh00A.dat
            2020-09-09 13:03 - 2019-03-19 06:59 - 000156524 _____ C:\WINDOWS\system32\perfc00A.dat
            2020-09-09 12:58 - 2020-08-07 22:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
            2020-09-09 12:58 - 2019-06-08 06:22 - 000000134 _____ C:\WINDOWS\system32\regtest.txt
            2020-09-09 12:34 - 2019-09-03 00:38 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Packages
            2020-09-09 10:44 - 2019-03-18 23:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
            2020-09-09 06:09 - 2019-09-03 00:38 - 000000000 ___RD C:\Users\CRISEIDA\3D Objects
            2020-09-09 06:09 - 2018-09-19 13:11 - 000000000 __RHD C:\Users\Public\AccountPictures
            2020-09-09 06:06 - 2020-08-07 21:48 - 000433160 _____ C:\WINDOWS\system32\FNTCACHE.DAT
            2020-09-09 02:40 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SystemResources
            2020-09-09 02:40 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\oobe
            2020-09-09 02:40 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
            2020-09-09 02:39 - 2019-03-18 23:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
            2020-09-09 02:39 - 2019-03-18 23:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
            2020-09-09 02:39 - 2019-03-18 23:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
            2020-09-09 02:39 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
            2020-09-09 02:39 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\Provisioning
            2020-09-09 02:39 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\bcastdvr
            2020-09-09 02:33 - 2019-09-03 21:59 - 000000000 ____D C:\WINDOWS\system32\MRT
            2020-09-09 02:26 - 2019-09-03 21:59 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
            2020-09-09 02:26 - 2019-03-18 23:37 - 000000000 ____D C:\WINDOWS\CbsTemp
            2020-09-09 02:16 - 2020-03-26 20:45 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\ElevatedDiagnostics
            2020-09-09 02:08 - 2020-08-07 21:53 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
            2020-09-08 22:25 - 2020-03-20 23:24 - 000000000 ____D C:\Users\CRISEIDA\Desktop\bray
            2020-09-08 22:22 - 2019-09-03 23:11 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\D3DSCache
            2020-09-08 22:21 - 2019-06-08 05:41 - 000000000 ____D C:\ProgramData\Package Cache
            2020-09-08 15:03 - 2020-08-07 22:22 - 000004490 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582720182
            2020-09-03 15:55 - 2020-07-02 06:39 - 000106640 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
            2020-09-03 15:55 - 2019-11-29 08:30 - 000195976 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
            2020-09-03 15:55 - 2019-11-29 08:30 - 000158512 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
            2020-09-03 15:55 - 2019-11-29 08:30 - 000116488 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
            2020-09-01 10:44 - 2020-03-23 20:32 - 000000000 ____D C:\ProgramData\Famatech
            2020-08-31 02:20 - 2020-04-18 19:03 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Battle.net
            2020-08-30 19:56 - 2019-09-03 02:05 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Microsoft Help
            2020-08-29 09:08 - 2020-07-25 08:51 - 000011751 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
            2020-08-29 02:32 - 2020-07-24 17:44 - 000017468 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
            2020-08-29 00:30 - 2019-11-01 19:47 - 000000000 ____D C:\Users\CRISEIDA\AppData\Local\Steam
            2020-08-28 12:40 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
            2020-08-28 01:49 - 2020-08-07 21:55 - 000000000 ____D C:\Users\CRISEIDA
            2020-08-28 01:49 - 2020-07-24 18:36 - 000011493 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
            2020-08-28 01:49 - 2020-07-18 23:25 - 000013399 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
            2020-08-27 21:06 - 2020-07-18 23:25 - 000036230 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
            2020-08-27 21:06 - 2020-07-18 23:25 - 000001205 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
            2020-08-27 21:00 - 2020-07-26 06:04 - 000023897 _____ C:\ProgramData\DisplaySessionContainer6.log_backup1
            2020-08-27 10:06 - 2020-07-26 03:31 - 000006784 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1
            2020-08-27 08:48 - 2020-07-25 17:13 - 000014217 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
            2020-08-24 22:04 - 2019-09-05 21:23 - 000000000 ____D C:\Users\CRISEIDA\Desktop\Mauricio
            2020-08-24 20:30 - 2020-08-07 22:22 - 000003580 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
            2020-08-24 20:30 - 2020-08-07 22:22 - 000003456 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
            2020-08-23 02:20 - 2020-07-24 03:19 - 000014575 _____ C:\ProgramData\DisplaySessionContainer20.log_backup1
            2020-08-22 05:03 - 2020-07-23 14:24 - 000017385 _____ C:\ProgramData\DisplaySessionContainer18.log_backup1
            2020-08-21 17:39 - 2020-08-03 21:47 - 000000000 ___DC C:\WINDOWS\Panther
            2020-08-21 01:24 - 2020-07-22 18:39 - 000013883 _____ C:\ProgramData\DisplaySessionContainer16.log_backup1
            2020-08-20 02:39 - 2020-07-21 18:37 - 000014191 _____ C:\ProgramData\DisplaySessionContainer14.log_backup1
            2020-08-20 01:26 - 2020-08-07 22:22 - 000003384 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2444298320-3582548934-135162116-1001
            2020-08-20 01:26 - 2020-08-07 21:55 - 000002413 _____ C:\Users\CRISEIDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
            2020-08-20 01:26 - 2019-09-03 01:11 - 000000000 ___RD C:\Users\CRISEIDA\OneDrive
            2020-08-19 01:56 - 2020-03-22 00:36 - 000000000 ____D C:\Users\CRISEIDA\AppData\Roaming\qBittorrent
            2020-08-19 01:55 - 2020-07-20 16:46 - 000017284 _____ C:\ProgramData\DisplaySessionContainer12.log_backup1
            2020-08-18 03:06 - 2020-07-19 21:11 - 000013877 _____ C:\ProgramData\DisplaySessionContainer10.log_backup1
            2020-08-17 06:22 - 2020-07-19 03:14 - 000014238 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1
            2020-08-13 17:59 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
            2020-08-13 17:59 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
            2020-08-13 17:59 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
            2020-08-13 17:59 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\setup
            2020-08-13 17:59 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
            2020-08-13 17:59 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\Dism
            2020-08-13 17:59 - 2019-03-18 23:37 - 000000000 ____D C:\WINDOWS\servicing
            2020-08-13 06:26 - 2020-07-21 03:09 - 000014215 _____ C:\ProgramData\DisplaySessionContainer13.log_backup1
            2020-08-12 17:44 - 2020-07-20 02:11 - 000016950 _____ C:\ProgramData\DisplaySessionContainer11.log_backup1
            2020-08-12 05:56 - 2020-07-19 17:42 - 000016746 _____ C:\ProgramData\DisplaySessionContainer9.log_backup1
            2020-08-12 05:12 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\appcompat
            2020-08-11 05:48 - 2020-07-18 23:25 - 000013608 _____ C:\ProgramData\DisplaySessionContainer7.log_backup1

            ==================== Archivos en la raíz de algunos directorios ========

            2019-09-06 21:05 - 2019-09-06 21:05 - 000000000 _____ () C:\Users\CRISEIDA\AppData\Local\oobelibMkey.log

            ==================== SigCheck ============================

            (No existe una corrección automática para los archivos que no pasan la verificación.)

            ==================== Final de FRST.txt ========================
8

reporte Additions.txt

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 09-09-2020
Ejecutado por CRISEIDA (10-09-2020 18:46:31)
Ejecutado desde C:\Users\CRISEIDA\Desktop
Windows 10 Home Single Language Versión 1909 18363.1082 (X64) (2020-08-08 03:24:41)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-2444298320-3582548934-135162116-500 - Administrator - Disabled)
CRISEIDA (S-1-5-21-2444298320-3582548934-135162116-1001 - Administrator - Enabled) => C:\Users\CRISEIDA
DefaultAccount (S-1-5-21-2444298320-3582548934-135162116-503 - Limited - Disabled)
Invitado (S-1-5-21-2444298320-3582548934-135162116-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2444298320-3582548934-135162116-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Disabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AS: ESET Security (Disabled - Up to date) {333C65BB-8923-0EAA-C47E-C486E687BEFD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

7-Zip 16.04 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1604-000001000000}) (Version: 16.04.00.0 - Igor Pavlov)
Actualización de NVIDIA 35.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 35.0.0.0 - NVIDIA Corporation) Hidden
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.021.20049 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.0.270 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015.5 (HKLM-x32\...\PHSP_17_0_1) (Version: 17.0.1 - Adobe Systems Incorporated)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform)
Cisco Webex Meetings (HKLM-x32\...\{C138C448-9453-F523-D6F2-95B8F573AC85}) (Version: 40.6.3.8 - Cisco Webex LLC)
Discord (HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\Discord) (Version: 0.0.308 - Discord Inc.)
Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{90D54587-044D-4B17-AA6D-BB7976F3211C}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epson Customer Research Participation (HKLM\...\{B26449A6-6007-4460-B4FE-C4776115BCEA}) (Version: 1.83.0000 - Seiko Epson Corporation)
Epson Easy Photo Print 2 (HKLM-x32\...\{816185C8-7C13-4650-9AB4-FC2EC9651A77}) (Version: 2.8.0.0 - Seiko Epson Corporation)
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
EPSON L475 Series Printer Uninstall (HKLM\...\EPSON L475 Series) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{FD036A57-F81D-4865-AAF0-811558EA76AE}) (Version: 4.5.1 - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
ESET Security (HKLM\...\{D8E84711-EDFC-4D4E-B579-95AEB40DAA4D}) (Version: 13.2.18.0 - ESET, spol. s r.o.)
Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
FileZilla Client 3.49.1 (HKLM-x32\...\FileZilla Client) (Version: 3.49.1 - Tim Kosse)
Firestorm Launcher versión 1.3 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.3 - Firestorm)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.102 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Java 8 Update 261 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Keysticks (HKLM-x32\...\{9D35B3D2-5F59-422D-9790-01FE76552B88}) (Version: 2.10 - Keysticks.net)
K-Lite Mega Codec Pack 12.3.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.3.5 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LG United Mobile Drivers (HKLM-x32\...\{2D5218EB-6992-46E3-8ECE-76C79AB955CE}) (Version: 3.13.2.0 - LG Electronics)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.51 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation)
Microsoft Project Standard 2016 (HKLM\...\Office16.PRJSTD) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{127D3B81-C5CB-4340-AC96-8F7EF322C910}) (Version: 2.60.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{5c75eda4-d029-43bf-a70b-a73d380f52ee}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.6 (x64) (HKLM-x32\...\{7bc97a3a-1c5c-4743-bba3-f20f8eb448b8}) (Version: 3.1.6.29016 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{449EFED6-5F86-4428-8EB2-3DA1F6E67CE4}) (Version: 1.20.146.0 - Microsoft)
Nitro Pro 10 (HKLM\...\{7242D889-1E07-40C9-8FC6-670707B34EE1}) (Version: 10.5.9.9 - Nitro)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
NVIDIA Controlador de gráficos 451.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.67 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project)
OpenVPN 2.4.9-I601-Win10  (HKLM\...\OpenVPN) (Version: 2.4.9-I601-Win10 - OpenVPN Technologies, Inc.)
Opera Stable 70.0.3728.178 (HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\Opera 70.0.3728.178) (Version: 70.0.3728.178 - Opera Software)
Panel de control de NVIDIA 417.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 417.98 - NVIDIA Corporation) Hidden
qBittorrent 4.2.1 (HKLM-x32\...\qBittorrent) (Version: 4.2.1 - The qBittorrent project)
Radmin Viewer 3.5.2 (HKLM-x32\...\{9F9073EA-5DCE-4B23-8A0C-C7D2C89AEADC}) (Version: 3.52.1.0000 - Famatech)
Radmin VPN 1.1.6 (HKLM-x32\...\{2DD1F072-9CD3-40B9-8119-DC648CBDBF49}) (Version: 1.1.4164 - Famatech)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Roblox Player for CRISEIDA (HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\roblox-player) (Version:  - Roblox Corporation)
Servicio Lenovo Vantage (HKLM-x32\...\VantageSRV_is1) (Version: 3.3.115.0 - Lenovo Group Ltd.)
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 13.1.0 - ShareX Team)
SlimDX Runtime .NET 4.0 x86 (January 2012) (HKLM-x32\...\{7EBD0E43-6AC0-4CA8-9990-00E50069AD29}) (Version: 2.0.13.43 - SlimDX Group)
Software para dispositivos de chipset Intel® (HKLM-x32\...\{fcfc894b-0d54-4d39-826f-dcb39ce5dde7}) (Version: 10.1.17861.8101 - Intel(R) Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.24.2 (HKLM\...\TAP-Windows) (Version: 9.24.2 - OpenVPN Technologies, Inc.)
VirtualDJ 8 (HKLM-x32\...\{6CA212A6-6CE6-4235-9EA8-4DA53D13C58D}) (Version: 8.2.3286.0 - Atomix Productions)
Warcraft III (HKLM-x32\...\Warcraft III) (Version:  - Blizzard Entertainment)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)

Packages:
=========
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.42.2.0_x86__kgqvnymyfvs32 [2020-09-07] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1850.1.0_x86__kgqvnymyfvs32 [2020-09-10] (king.com)
Centro de comando de gráficos Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2765.0_x64__8j3eq9eme6ctt [2020-08-26] (INTEL CORP) [Startup Task]
Complemento de motor multimedia para Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-09] (Microsoft Corporation)
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20500.501.0_x64__rz1tebttyb220 [2020-06-16] (Dolby Laboratories)
Extensión de video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-17] (INTEL CORP)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2006.41.0_x64__k1h2ywk1493x8 [2020-08-06] (LENOVO INC.)
LenovoUtility -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_3.1.16.0_x64__5grkq8ppsgwt4 [2020-07-28] (LENOVO INC) [Startup Task]
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-09-03] (LinkedIn)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-09-03] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-09-03] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-20] (Microsoft Studios) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-14] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-06-22] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.10.216.0_x64__dt26b99r8h8gj [2020-06-16] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0 [2020-09-05] (Spotify AB) [Startup Task]

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-2444298320-3582548934-135162116-1001_Classes\CLSID\{C52B9871-E5E9-41FD-B84D-C5ACADBEC7AE}\InprocServer32 -> D:\ARCHIVOS BRAYAND\Programas\AppLocale\LEContextMenuHandler.DLL (Paddy Xu) [Archivo no firmado]
CustomCLSID: HKU\S-1-5-21-2444298320-3582548934-135162116-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Ningún archivo
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-09-03] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro 10\NPShellExtension.dll [2016-07-22] (Nitro Software, Inc. -> Nitro PDF)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-09-03] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_6de98d46a9fc896b\nvshext.dll [2020-07-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Ningún archivo
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-09-03] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Ningún archivo
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\system32\x264vfw64.dll [3642880 2016-05-08] (x264vfw project) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\system32\xvidvfw.dll [309248 2015-12-18] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3613696 2016-05-08] (x264vfw project) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [282112 2015-12-18] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [Archivo no firmado]

==================== Accesos directos & WMI ========================

(Las entradas pueden ser listadas para ser restauradas o eliminadas.)

Shortcut: C:\Users\CRISEIDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\CRISEIDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

==================== Módulos cargados (Lista blanca) =============

2020-08-28 23:27 - 2020-07-28 10:20 - 001257984 _____ () [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\CefSharp.BrowserSubprocess.Core.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 001928192 _____ () [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\CefSharp.Core.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 122973696 _____ () [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\libcef.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 000377856 _____ () [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\libegl.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 007861760 _____ () [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\libglesv2.dll
2020-08-28 23:27 - 2017-09-17 22:08 - 000061952 _____ (Blue Spire Consulting, Inc.) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Caliburn.Micro.dll
2020-08-28 23:27 - 2017-09-17 22:08 - 000014848 _____ (Blue Spire Consulting, Inc.) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Caliburn.Micro.Platform.Core.dll
2020-08-28 23:27 - 2017-09-17 22:08 - 000083968 _____ (Blue Spire Consulting, Inc.) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Caliburn.Micro.Platform.dll
2020-08-28 23:27 - 2020-08-28 07:09 - 000222208 _____ (Meta.Vlc) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Meta.Vlc.dll
2020-08-07 20:26 - 2020-05-30 20:04 - 001638912 _____ (Robert Simpson, et al.) [Archivo no firmado] C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\x64\SQLite.Interop.dll
2020-08-05 08:21 - 2020-05-30 19:58 - 001280000 _____ (Robert Simpson, et al.) [Archivo no firmado] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\SQLite.Interop.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Archivo no firmado] C:\WINDOWS\System32\enppmon.dll
2020-06-19 16:08 - 2020-04-09 09:17 - 000944840 _____ (SQLite Development Team) [Archivo no firmado] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 000226304 _____ (The CefSharp Authors) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\CefSharp.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 000084992 _____ (The CefSharp Authors) [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\CefSharp.Wpf.dll
2020-08-28 23:27 - 2020-07-28 10:20 - 000958976 _____ (The Chromium Authors) [Archivo no firmado] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\ThirdParty\Chromium\x64\chrome_elf.dll
2020-08-28 23:27 - 2020-08-28 07:09 - 000160768 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\es\LaunchBox.resources.dll
2020-08-28 23:27 - 2020-08-28 07:09 - 000291840 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\es\Unbroken.LaunchBox.resources.dll
2020-08-28 23:27 - 2020-08-28 07:10 - 007758336 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\LaunchBox.dll
2020-08-28 23:27 - 2020-08-28 07:10 - 000071680 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Unbroken.dll
2020-08-28 23:27 - 2020-08-28 07:10 - 000970240 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Unbroken.LaunchBox.dll
2020-08-28 23:27 - 2020-08-28 07:08 - 000040960 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Unbroken.LaunchBox.Plugins.dll
2020-08-28 23:27 - 2020-08-28 07:10 - 048204800 _____ (Unbroken Software, LLC) [Archivo no firmado] [El archivo está en uso] D:\ARCHIVOS BRAYAND\Programas\LaunchBox\Core\Unbroken.LaunchBox.Windows.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [488]

==================== Modo Seguro (Lista blanca) ==================

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2018-09-15 02:31 - 2019-09-03 02:04 - 000000272 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1                   na2m-pr.licenses.adobe.com
127.0.0.1                   na4r.services.adobe.com
127.0.0.1                   ims-na1-prprod.adobelogin.com
127.0.0.1                   na1r.services.adobe.com
127.0.0.1                   hlrcv.stage.adobe.com

2020-08-27 22:23 - 2020-08-27 22:23 - 000000504 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 LAPTOP-JDB9OKB5.mshome.net # 2025 8 3 27 3 23 46 222
192.168.137.14 LGwebOSTV.mshome.net # 2020 9 5 4 3 23 46 222

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\CRISEIDA\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img13.jpg
DNS Servers: 190.113.220.18 - 190.113.220.51
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\StartupFolder: => "ScpToolkit Tray Notifications.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "RtkAudUService"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "EEventManager"
HKLM\...\StartupApproved\Run32: => "RadminVPN"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-2444298320-3582548934-135162116-1001\...\StartupApproved\Run: => "OPENVPN-GUI"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [UDP Query User{4713E96D-7EEA-4121-8D26-74A828292D99}C:\users\criseida\appdata\local\programs\opera\69.0.3686.77\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\69.0.3686.77\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{099AFC0F-4F4E-4F39-8D3F-3889BFDA16B2}C:\users\criseida\appdata\local\programs\opera\69.0.3686.77\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\69.0.3686.77\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{A4E97801-7088-4E68-95EE-9CBF8BD6EC0B}D:\archivos brayand\programas\nsui 3ds\new super ultimate injector for 3ds.exe] => (Allow) D:\archivos brayand\programas\nsui 3ds\new super ultimate injector for 3ds.exe (Asdolo) [Archivo no firmado]
FirewallRules: [TCP Query User{3EBDA7C7-F04C-421D-8A35-1F777E2CDC33}D:\archivos brayand\programas\nsui 3ds\new super ultimate injector for 3ds.exe] => (Allow) D:\archivos brayand\programas\nsui 3ds\new super ultimate injector for 3ds.exe (Asdolo) [Archivo no firmado]
FirewallRules: [UDP Query User{5D6AB5D3-5A68-4BE0-9F6E-7FD8C281550D}D:\archivos brayand\juegos\warcraft iii\_retail_\x86_64\warcraft iii.exe] => (Allow) D:\archivos brayand\juegos\warcraft iii\_retail_\x86_64\warcraft iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc)
FirewallRules: [TCP Query User{652F67A3-1CE1-4A4F-A19E-047DF39F20B3}D:\archivos brayand\juegos\warcraft iii\_retail_\x86_64\warcraft iii.exe] => (Allow) D:\archivos brayand\juegos\warcraft iii\_retail_\x86_64\warcraft iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc)
FirewallRules: [UDP Query User{170E2662-14E3-4475-9B38-7FFB7BFE72D6}C:\users\criseida\appdata\local\programs\opera\68.0.3618.173\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\68.0.3618.173\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{127F0E99-202C-4825-99CF-B2D60D30802D}C:\users\criseida\appdata\local\programs\opera\68.0.3618.173\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\68.0.3618.173\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{C4CB8C9C-D609-4F4A-B6E8-A333AAD886A2}C:\users\criseida\appdata\local\programs\opera\68.0.3618.125\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\68.0.3618.125\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{C6977C29-C6B4-419E-86AF-F403EFBA37C5}C:\users\criseida\appdata\local\programs\opera\68.0.3618.125\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\68.0.3618.125\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{FDC90119-A9A5-433B-90B3-9A9FC729C936}C:\users\criseida\appdata\local\programs\opera\68.0.3618.104\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\68.0.3618.104\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{C8EB909E-8C83-4AB4-A1A6-7EFFFDA23E73}C:\users\criseida\appdata\local\programs\opera\68.0.3618.104\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\68.0.3618.104\opera.exe => Ningún archivo
FirewallRules: [{3435E5ED-ED32-46D3-9E15-1BCF39AFA21A}] => (Block) C:\users\criseida\appdata\local\programs\opera\68.0.3618.63\opera.exe => Ningún archivo
FirewallRules: [{076D1E5F-212F-4D14-94BD-CB5B99E7FA3B}] => (Block) C:\users\criseida\appdata\local\programs\opera\68.0.3618.63\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{99A7A758-AF18-4CA3-9564-F45BDFD63022}C:\users\criseida\appdata\local\programs\opera\68.0.3618.63\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\68.0.3618.63\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{E489C773-07A6-4A25-96C2-F588EDE08483}C:\users\criseida\appdata\local\programs\opera\68.0.3618.63\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\68.0.3618.63\opera.exe => Ningún archivo
FirewallRules: [{12D69849-0080-44ED-98EB-DD112374B2EB}] => (Block) D:\archivos brayand\emuladores\citra\citra-qt.exe () [Archivo no firmado]
FirewallRules: [{51090A13-6289-4054-BA34-901BD7B4A19E}] => (Block) D:\archivos brayand\emuladores\citra\citra-qt.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{EC18FD65-AD08-4C6F-8D2F-5579AFDF8EA2}D:\archivos brayand\emuladores\citra\citra-qt.exe] => (Allow) D:\archivos brayand\emuladores\citra\citra-qt.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{666A652A-5ECA-498B-85C9-755B55C4E4C2}D:\archivos brayand\emuladores\citra\citra-qt.exe] => (Allow) D:\archivos brayand\emuladores\citra\citra-qt.exe () [Archivo no firmado]
FirewallRules: [{3C4DA197-5F64-4834-97E5-436398B4FC35}] => (Block) D:\archivos brayand\juegos\warcraft iii\x86_64\warcraft iii.exe => Ningún archivo
FirewallRules: [{5935C64B-2EB2-4728-A8F0-A72BFFCA1A3F}] => (Block) D:\archivos brayand\juegos\warcraft iii\x86_64\warcraft iii.exe => Ningún archivo
FirewallRules: [UDP Query User{F28CBE82-AE05-4992-8C8F-C4BB0802E578}D:\archivos brayand\juegos\warcraft iii\x86_64\warcraft iii.exe] => (Allow) D:\archivos brayand\juegos\warcraft iii\x86_64\warcraft iii.exe => Ningún archivo
FirewallRules: [TCP Query User{5F574AC8-8B79-4882-AAEB-0F6C4375BDE4}D:\archivos brayand\juegos\warcraft iii\x86_64\warcraft iii.exe] => (Allow) D:\archivos brayand\juegos\warcraft iii\x86_64\warcraft iii.exe => Ningún archivo
FirewallRules: [{681FEAE8-597B-4DED-95E8-4949C672DFB6}] => (Block) C:\users\criseida\appdata\local\programs\opera\67.0.3575.137\opera.exe => Ningún archivo
FirewallRules: [{0A01E2E0-5E67-4C84-B38B-1382DCD27809}] => (Block) C:\users\criseida\appdata\local\programs\opera\67.0.3575.137\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{4480A28B-2769-42D1-A712-4FD5765CE3C4}C:\users\criseida\appdata\local\programs\opera\67.0.3575.137\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\67.0.3575.137\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{06487584-D563-4AB4-A4B4-DFCC799AB0AA}C:\users\criseida\appdata\local\programs\opera\67.0.3575.137\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\67.0.3575.137\opera.exe => Ningún archivo
FirewallRules: [{720EED06-1714-4D31-ADF7-83961FA8929F}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [Archivo no firmado]
FirewallRules: [{18CF09AB-0CD3-4B7C-AD5D-F39E56D657E6}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{A71D2F65-10DF-43B8-8F28-0EC88119AD2E}C:\users\criseida\appdata\local\programs\opera\67.0.3575.115\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\67.0.3575.115\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{55D0428D-750D-4955-A622-653B0C766162}C:\users\criseida\appdata\local\programs\opera\67.0.3575.115\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\67.0.3575.115\opera.exe => Ningún archivo
FirewallRules: [{31E4BD62-0B76-470B-AFE2-08769FBBBF04}] => (Allow) C:\Users\CRISEIDA\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{B2F010CD-3A5B-4E32-803A-A90E386F6D98}] => (Allow) LPort=25565
FirewallRules: [UDP Query User{20A60A9F-6058-46AE-98D1-88B0737805D3}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => Ningún archivo
FirewallRules: [TCP Query User{B02B1142-B039-43E0-B453-49D1B31D8DA7}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => Ningún archivo
FirewallRules: [{6EE4A225-D104-4621-84F2-714F2B3B79C9}] => (Block) C:\users\criseida\appdata\local\programs\opera\67.0.3575.97\opera.exe => Ningún archivo
FirewallRules: [{554C2315-196F-4120-AA80-C14831DFAE74}] => (Block) C:\users\criseida\appdata\local\programs\opera\67.0.3575.97\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{F7575781-FD8E-4B4A-A61A-E1545D370FF3}C:\users\criseida\appdata\local\programs\opera\67.0.3575.97\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\67.0.3575.97\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{F49463A9-008D-4B62-816C-3EC740843B94}C:\users\criseida\appdata\local\programs\opera\67.0.3575.97\opera.exe] => (Allow) C:\users\criseida\appdata\local\programs\opera\67.0.3575.97\opera.exe => Ningún archivo
FirewallRules: [{CFB38B64-F60B-4EE1-8586-D75CD31C9F5A}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\GarrysMod\hl2.exe () [Archivo no firmado]
FirewallRules: [{4BE5C5C9-DA14-4E5C-A91E-0C1FC9243EE4}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\GarrysMod\hl2.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{7FAA2F07-CBCD-400F-88E5-2836E84523CD}C:\program files\qbittorrent\qbittorrent.exe] => (Block) C:\program files\qbittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{5B8F4429-E998-4343-8052-6F7085BD2794}C:\program files\qbittorrent\qbittorrent.exe] => (Block) C:\program files\qbittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{C080C3D4-9EB8-48A2-9930-2F2A5AB55B0C}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{783599D1-3EF0-4A4D-A7D1-EE34D37101A2}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{49EA4C8F-AED5-49E2-B030-37E98C899AF0}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\lethalleague\LethalLeague.exe () [Archivo no firmado]
FirewallRules: [{D4042478-1E05-4101-BF02-BD1264958B01}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\lethalleague\LethalLeague.exe () [Archivo no firmado]
FirewallRules: [{DE9A7696-5196-4308-BDDA-02FC560E9175}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe (WB Games, Inc.) [Archivo no firmado]
FirewallRules: [{DAF8B1C3-385B-40F1-AE92-9FBB7FA5492C}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe (WB Games, Inc.) [Archivo no firmado]
FirewallRules: [{A72D677B-4512-4875-BD41-16E25318DC3B}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{0DBE98C8-1ABD-443B-AD10-10D662689E2A}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A580AFEA-9461-449B-BABF-C148CCE9A40C}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EB90658C-DFB1-41EB-A276-6297D5915F4F}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{4A2F9DF6-DEC1-4C90-A13D-C3D386A5AF5D}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{88DE9CD8-0D32-4DDE-80EF-70DE91D78396}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{AA12815D-3958-4F15-B2E6-92D114A0FDB3}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{EC1D0A2E-9191-44B6-B330-47007488716D}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{06FF0DA7-BB57-467D-B03A-CD603E230809}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{61D629A2-6B1A-4278-99AC-E54ED7E90E34}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{9AC5B421-CA33-4069-A2D8-006E50F02AB6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{54312D48-81C6-499E-B945-CBF5B445BBAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{37694C04-CAEA-4E22-B23A-0190106FDEE0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E6A4CF00-D6FD-4EBB-831B-E62889A60D17}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BA129BEC-4E8E-4353-AA98-A54F68BD7CC4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F02F28BB-471A-4099-8437-29BA4E50A3AD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{98F4A330-AF1B-4A3C-A6F1-F1E168977727}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16040.10730.20103.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{4E4EA2EA-4599-4BD9-80AF-8D56F1E48E89}C:\users\criseida\appdata\local\programs\opera\69.0.3686.95\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\69.0.3686.95\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{EC5AB86A-438E-4854-9FAB-E1B43D07B572}C:\users\criseida\appdata\local\programs\opera\69.0.3686.95\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\69.0.3686.95\opera.exe => Ningún archivo
FirewallRules: [TCP Query User{66439DFE-B9E6-4A54-80F4-A996CFBC0925}C:\program files\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_261\bin\javaw.exe
FirewallRules: [UDP Query User{5233CDC5-F008-41AE-A8CA-EEED7E65444A}C:\program files\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_261\bin\javaw.exe
FirewallRules: [TCP Query User{A20CAA43-7D4B-4715-B745-2B1F5E697B59}C:\users\criseida\appdata\local\programs\opera\70.0.3728.106\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\70.0.3728.106\opera.exe => Ningún archivo
FirewallRules: [UDP Query User{3D62034C-1561-4502-A3D2-022A49F5CA11}C:\users\criseida\appdata\local\programs\opera\70.0.3728.106\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\70.0.3728.106\opera.exe => Ningún archivo
FirewallRules: [{7CE3841F-07DC-45EA-B309-2F04E54F8D78}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\Fall Guys\FallGuys_client.exe () [Archivo no firmado]
FirewallRules: [{0841D53E-4B10-4FF3-A7A7-5B82535FCD3C}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\Fall Guys\FallGuys_client.exe () [Archivo no firmado]
FirewallRules: [{15A4A0A3-8894-4B27-8518-92CCAE7B5E44}] => (Allow) C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe (Famatech Corp. -> Famatech Corp.)
FirewallRules: [{BFB4E8FE-D5E0-438C-805E-D21F3A068907}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\Among Us\Among Us.exe () [Archivo no firmado]
FirewallRules: [{F82E6C9A-197F-4233-AC6C-3CAA8E23C48C}] => (Allow) D:\ARCHIVOS BRAYAND\Steam\steamapps\common\Among Us\Among Us.exe () [Archivo no firmado]
FirewallRules: [{CAAC0944-E137-4179-AD9C-1185D2FED6CC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B63FADE4-83FE-4FAB-AFEA-4A2ECA7EAA6B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F0E5B062-3EA1-489E-8942-1DEACF0440F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7EE8AECC-C138-425F-A297-7AD186B5A814}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{88002EF8-75EB-47FA-975A-0F5FB1B6E6D6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{43189E7E-5393-4B9E-9972-16B59A226CF8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9208E25C-DC4E-4E56-B699-B3432F6D07F7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7F796B95-5585-427B-BFA3-502D72BB139C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{3BDB838A-31B0-448C-BF66-580F4BF4071D}C:\users\criseida\appdata\local\programs\opera\70.0.3728.154\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\70.0.3728.154\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [UDP Query User{FB6FE55E-2D84-4F11-B50B-5D3FE8977161}C:\users\criseida\appdata\local\programs\opera\70.0.3728.154\opera.exe] => (Block) C:\users\criseida\appdata\local\programs\opera\70.0.3728.154\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{0F2A3413-C686-4AC0-A67B-047614FEB88B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Puntos de Restauración =========================

09-09-2020 01:03:39 Windows Update

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (09/10/2020 06:46:04 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10052,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (09/10/2020 06:39:39 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\EPSON Software\Easy Photo Print\EPQuicker.exe".
No se encontró el ensamblado dependiente Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Use sxstrace.exe para obtener un diagnóstico detallado.

Error: (09/10/2020 06:23:02 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2532,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (09/10/2020 05:26:18 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3712,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (09/10/2020 04:20:39 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (16336,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (09/10/2020 01:56:23 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10568,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (09/10/2020 01:48:24 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (15880,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (09/10/2020 01:36:10 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Error al generar el contexto de activación para "C:\Program Files (x86)\EPSON Software\Easy Photo Print\EPQuicker.exe".
No se encontró el ensamblado dependiente Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Use sxstrace.exe para obtener un diagnóstico detallado.


Errores del sistema:
=============
Error: (09/09/2020 01:00:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio System Interface Foundation Service no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (09/09/2020 01:00:37 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio System Interface Foundation Service.

Error: (09/09/2020 01:00:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (09/09/2020 01:00:30 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Presentation Foundation Font Cache 3.0.0.0.

Error: (09/09/2020 12:58:40 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 12:35:33 del ‎09/‎09/‎2020 resultó inesperado.

Error: (09/09/2020 12:57:08 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684Error irrecuperable al procesar los datos de restauración.

Error: (09/09/2020 10:08:34 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (09/09/2020 10:08:34 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Windows Presentation Foundation Font Cache 3.0.0.0.


Windows Defender:
===================================
Date: 2020-08-08 06:32:24.007
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:BAT/Starter.G!MSR&threatid=2147757246&enterprise=0
Nombre: Trojan:BAT/Starter.G!MSR
Id.: 2147757246
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: file:_C:\Users\CRISEIDA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KARDEX DE PERSONAL 2017 .xlsx.lnk
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files\ESET\ESET Security\ekrn.exe
Versión de inteligencia de seguridad: AV: 1.321.883.0, AS: 1.321.883.0, NIS: 1.321.883.0
Versión de motor: AM: 1.1.17300.4, NIS: 1.1.17300.4

CodeIntegrity:
===================================

Date: 2020-09-10 18:40:55.925
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-10 09:03:04.878
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-10 09:03:04.873
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-10 09:03:04.803
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-10 09:03:04.798
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-10 09:03:02.327
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-09 13:02:52.364
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-09 13:02:49.834
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Información de la memoria =========================== 

BIOS: LENOVO BGCN31WW 06/23/2020
Placa base: LENOVO LNVNB161216
Procesador: Intel(R) Core(TM) i5-9300H CPU @ 2.40GHz
Porcentaje de memoria en uso: 70%
RAM física total: 8072.24 MB
RAM física disponible: 2384.33 MB
Virtual total: 18242.95 MB
Virtual disponible: 9610.62 MB

==================== Unidades ================================

Drive c: (Windows) (Fixed) (Total:144.52 GB) (Free:46.82 GB) NTFS
Drive d: (Nuevo vol) (Fixed) (Total:785.75 GB) (Free:499.13 GB) NTFS

\\?\Volume{4c505242-9ec2-467c-9a3f-30441024f514}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.41 GB) NTFS
\\?\Volume{08d7d7bd-2214-46c6-8033-c9b182ce38fa}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 012BE8C4)

Partition: GPT.

==================== Final de Addition.txt =======================
9

No se ve nada extraño…lo que si es que debes vigilar la capacidad de C, porque ya esta muy bajo y eso afectara al funcionamineto de pc.

Usa el liberardor de windows y libera donde pone liebrar archivos del sistema -actualziaciones de windows…asi recuperaras unos cuantos gigas

1 me gusta
10

Excelente, eso haré muchisimas gracias, estuvo rarisimo todo esto pero la PC ya está bien, pensé que me estaban minando bitcoins o algo así hahaha! Saludos :smiley:

11

Para eliminar las herramientas usadas en la desinfección, realizas:

  • Descargas y Ejecutas >> Delfix, en tu escritorio.

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7 /8 /10,presiona clic derecho y selecciona >>;Ejecutar como Administrador.)

  • Marca solamente la casilla Remove Desinfection Tools

  • Pulsar en Run.

Se abrirá el informe (Delfix.txt), guárdalo por si fuera necesario y cierra la herramienta.

Si queda alguna herramienta, la desinstalas desde panel de Windows y aquellas que no estén listadas, se eliminan directamente.

Me alegro de haberte podido ayudar! :+1:


TEMA SOLUCIONADO

1 me gusta
12

Este tema se cerró automáticamente 2 días después de la última publicación. No se permiten nuevas respuestas.