Problema con Firefox

LordNet_Black · 22 Marzo, 2020 21:36

Hola ,creo que tengo un problema con malware y los antivirus no lo detectan ,cuando a lo Firefox se abre una infinidad de IP cuando ni siquiera tengo una página abierta

Miguelgrado · 22 Marzo, 2020 21:40

Realiza los siguientes pasos, , sin cambiar el orden

1) Descarga, instala y ejecuta Malwarebytes’ Anti-Malware.

Presiona clic en “Use Malewarebytes Free” (Usar Malewarebyte gratis).
Pulsa en el botón “Open Malewarebytes Free”.

imagen

Presiona el botón “Scan” (Escaneo).

imagen

Una vez finalizado el escaneo aparecerá la siguiente pantalla:

imagen

Pulsa en “View report” (Ver informe).
Luego presionar el botón “Export” (Exportar). Elijes “Text file” (fichero de texto). Elijes un nombre y guardas ese archivo en el escritorio…

2) Descarga Adwcleaner en el escritorio.

Desactiva tu antivirus Como deshabilitar temporalmente un antivirus y cualquier programa de seguridad.
Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")
Pulsar en el botón Analizar Ahora, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Iniciar Reparacion.
Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
Si no encuentra nada, pulsamos “Omitir Reparación”
El log lo encontramos en la pestaña “Informes”, volviendo a abrir el programa, si es necesario o en"C:\AdwCleaner\Logs\AdwCleaner[C0].txt"

Puedes mirar su manual >> Manual de Adwcleaner

3) Descarga Ccleaner

Instalalo y ejecútalo. En la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine > clic en ejecutar limpiador. Clic en la pestaña Registro > clic en buscar problemas esperas que termine > clic en Reparar Seleccionadas y haces una copia de seguridad.

Pega los reportes de Malwarebytes, AdwCleaner y comentas como va el problema.

LordNet_Black · 20 Abril, 2020 21:57

perdon por la tardanza pero e tenido que formatear el pc ,me estaban obligando a compartir mis carpetas y me estropearon windows ,pero tengo otro problema que me tiene muy loco ,me pc se conecta a un puerto remoto 5985 una y otra vez automaticamente y no se por que

Miguelgrado · 21 Abril, 2020 10:11

Ese puerto es de Micrososft,concretamente de escritorio remoto, que tendras activado

LordNet_Black · 21 Abril, 2020 10:25

no lo tengo activado por que mi version de windows es home y no tiene y tengo el servidio desactivado ya que es la forma en la que antes estaban enteractuando con mi equipo.

Miguelgrado · 21 Abril, 2020 10:26

Donde observas eso?..

LordNet_Black · 21 Abril, 2020 10:27

con una aplicacion de tcp, eyetcp.

Miguelgrado · 21 Abril, 2020 10:33

Puedes ponerme una captura?

Ademas:

Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.
Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits) ¿Cómo saber si mi Windows es de 32 o 64 bits?
Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Si.
En la nueva ventana que se abre, presiona el botón Analizar y espera a que concluya el análisis.
Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.

En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST

Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.

LordNet_Black · 21 Abril, 2020 10:45

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 19-04-2020
Ejecutado por LordNet (administrador) sobre DSPANACEA (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop X509DA_D509DA) (21-04-2020 13:06:25)
Ejecutado desde C:\Users\LordNet\Downloads
Perfiles cargados: LordNet (Perfiles disponibles: LordNet)
Platform: Windows 10 Home Versión 1909 18363.778 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: FF
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: //geekstogo'co'm/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0353575.inf_amd64_8e19095ae833d985\B353558\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0353575.inf_amd64_8e19095ae833d985\B353558\atiesrxx.exe
(ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSOptimization\AsusOptimization.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSOptimization\AsusOptimizationStartupTask.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSOptimization\AsusOSD.exe
(ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSSoftwareManager\AsusSoftwareManager.exe
(ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSSystemAnalysis\AsusSystemAnalysis.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\WindowsApps\b9eced6f.asuspcassistant_2.2.18.0_x64__qmba6cd70vzyy\TrayIcons\SysTray.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12004.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(TCPEye - hxxp://tcpmonitor.altervista.org/) [Archivo no firmado] C:\Program Files (x86)\TCPEye\TCPEye.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2921227636-495831580-2645663862-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [48214752 2020-04-06] (Google LLC -> )
HKU\S-1-5-21-2921227636-495831580-2645663862-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [31740816 2020-04-18] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2921227636-495831580-2645663862-1001\...\Run: [Discord] => C:\Users\LordNet\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {030C4B24-4F1A-4544-8E2C-B37C4468B645} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ee3494f5319a7782\ASUSOptimization\AsusHotkeyExec.exe
Task: {0F726A65-2551-4C1B-B48B-42EDEB88B1A1} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {1A50C62A-AD2E-4000-8FAD-0989F2FB2FE1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2020-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {48A11371-BCAB-4D2D-A5B9-73305350C8B1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2020-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {4E312B89-43CC-4578-8894-67E83901A2C2} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [126152 2020-04-03] (Mozilla Corporation -> Mozilla Foundation)
Task: {6560795A-8827-4BB5-994B-A93EAD70FC2C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24702832 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {7E09D2E3-7E01-4EB8-B6FB-11CC104232F6} - System32\Tasks\ASUS Update Checker 2.0 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_ee3494f5319a7782\ASUSSoftwareManager\AsusUpdateChecker.exe
Task: {836AD8CA-B492-4110-ACC2-BDFDBC68CD4B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-17] (Google LLC -> Google LLC)
Task: {B9F246E3-1149-4E67-A9CD-513D0C8C73B2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-17] (Google LLC -> Google LLC)
Task: {BF174373-0525-4EF9-B149-9202B0292792} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [65440 2020-04-17] (Microsoft Corporation -> Microsoft)
Task: {C32CD8A9-0778-4D23-9778-9B9C38F402A3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24702832 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {C72B4018-C758-4542-8428-AE03C12AC463} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\RtkAudUService64.exe [1000736 2019-10-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {E878F65F-BF7F-497E-9D03-76DBFAF55DA8} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-04-01] (Advanced Micro Devices, Inc.) [Archivo no firmado]
Task: {EBEB22DA-6EF4-419A-9F69-0F2A029F7E94} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {EF08E085-F05E-4A08-92EA-07B38446BE29} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-04-01] (Advanced Micro Devices, Inc.) [Archivo no firmado]
Task: {EFE706B4-A155-4321-8087-BFFBF0086CBB} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSSystemAnalysis\AsusSystemAnalysis.exe [1823872 2020-03-09] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{2101b012-b4ad-4879-a79c-f638c865fdc6}: [DhcpNameServer] 80.58.61.250 80.58.61.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-2921227636-495831580-2645663862-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
HKU\S-1-5-21-2921227636-495831580-2645663862-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_251\bin\ssv.dll [2020-04-19] (Oracle America, Inc. -> Oracle Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-19] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-04-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-18] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: z2l30bey.default
FF ProfilePath: C:\Users\LordNet\AppData\Roaming\Mozilla\Firefox\Profiles\z2l30bey.default [2020-04-17]
FF ProfilePath: C:\Users\LordNet\AppData\Roaming\Mozilla\Firefox\Profiles\l5u34cj6.default-release [2020-04-21]
FF Notifications: Mozilla\Firefox\Profiles\l5u34cj6.default-release -> hxxps://forospyware.com
FF Extension: (HTTPS Everywhere) - C:\Users\LordNet\AppData\Roaming\Mozilla\Firefox\Profiles\l5u34cj6.default-release\Extensions\[email protected] [2020-04-21]
FF Extension: (uBlock Origin) - C:\Users\LordNet\AppData\Roaming\Mozilla\Firefox\Profiles\l5u34cj6.default-release\Extensions\[email protected] [2020-04-17]
FF Plugin: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-04-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-04-18] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\u0353575.inf_amd64_8e19095ae833d985\B353558\atiesrxx.exe [524512 2020-04-02] (Advanced Micro Devices, Inc. -> AMD)
S4 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSLinkNear\AsusLinkNear.exe [993408 2020-03-09] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
S4 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSLinkRemote\AsusLinkRemote.exe [350840 2020-03-09] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSOptimization\AsusOptimization.exe [271488 2020-03-09] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSSoftwareManager\AsusSoftwareManager.exe [463520 2020-03-09] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSSystemAnalysis\AsusSystemAnalysis.exe [1823872 2020-03-09] (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [570472 2020-03-09] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10626648 2020-04-10] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-04-20] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [916712 2020-04-21] (McAfee, LLC -> McAfee, LLC)
R2 RtkAudioUniversalService; C:\WINDOWS\System32\RtkAudUService64.exe [1000736 2019-10-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [710600 2019-06-26] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-04-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-04-17] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 amdacpbus; C:\WINDOWS\System32\drivers\amdacpbus.sys [1368720 2019-12-06] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdacpksl; C:\WINDOWS\system32\drivers\amdacpksl.sys [352864 2019-10-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [45832 2019-10-01] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc)
R3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [61728 2019-04-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\u0353575.inf_amd64_8e19095ae833d985\B353558\atikmdag.sys [65752288 2020-04-02] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\u0353575.inf_amd64_8e19095ae833d985\B353558\atikmpag.sys [592096 2020-04-02] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S0 AmdMicroPEP; C:\WINDOWS\System32\drivers\AmdMicroPEP.sys [113056 2019-05-08] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [138064 2019-06-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
R1 amdsfhkmdf; C:\WINDOWS\System32\drivers\amdsfhkmdfi2c.sys [41224 2019-04-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S3 amdsfhspbi2c; C:\WINDOWS\System32\drivers\amdsfhspbi2c.sys [49928 2019-04-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S3 AmdSMBus; C:\WINDOWS\System32\drivers\AmdSMBus.sys [41496 2015-05-11] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, INC.)
S3 amduart; C:\WINDOWS\System32\drivers\amduart.sys [96504 2019-04-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [112336 2019-10-02] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.)
R1 ASUSSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSSystemAnalysis\ASUSSAIO.sys [33400 2020-03-09] (ASUSTek Computer Inc. -> )
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [108152 2019-07-24] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSOptimization\atkwmiacpi64.sys [46024 2020-03-09] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-04-20] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-04-20] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [195432 2020-04-20] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-04-21] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-04-20] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [124560 2020-04-20] (Malwarebytes Inc -> Malwarebytes)
S3 PORTMON; C:\Users\LordNet\Downloads\SysinternalsSuite\PORTMSYS.SYS [28656 2020-04-18] (Systems Internals) [Archivo no firmado]
U5 PROCMON24; C:\Windows\System32\Drivers\PROCMON24.sys [90168 2020-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Sysinternals - sysinternals'com)
R3 RtkBtFilter; C:\WINDOWS\System32\drivers\RtkBtfilter.sys [775624 2019-06-26] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [451792 2019-05-13] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [11708712 2019-06-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-04-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [391392 2020-04-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59104 2020-04-17] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-04-21 12:58 - 2020-04-21 12:58 - 000041534 _____ C:\Users\LordNet\Downloads\Shortcut.txt
2020-04-21 12:57 - 2020-04-21 12:58 - 000060178 _____ C:\Users\LordNet\Downloads\Addition.txt
2020-04-21 12:53 - 2020-04-21 13:07 - 000023619 _____ C:\Users\LordNet\Downloads\FRST.txt
2020-04-21 12:52 - 2020-04-21 13:06 - 000000000 ____D C:\FRST
2020-04-21 12:42 - 2020-04-21 12:42 - 002281984 _____ (Farbar) C:\Users\LordNet\Downloads\FRST64.exe
2020-04-20 23:56 - 2020-04-21 00:16 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-04-20 23:56 - 2020-04-20 23:56 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-04-20 23:56 - 2020-04-20 23:56 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-04-20 23:56 - 2020-04-20 23:56 - 000195432 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-04-20 23:56 - 2020-04-20 23:56 - 000124560 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-04-20 23:56 - 2020-04-20 23:56 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-04-20 23:56 - 2020-04-20 23:56 - 000000000 ____D C:\Users\LordNet\AppData\Local\mbamtray
2020-04-20 23:56 - 2020-04-20 23:56 - 000000000 ____D C:\Users\LordNet\AppData\Local\mbam
2020-04-20 23:56 - 2020-04-20 23:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-04-20 23:56 - 2020-04-20 23:55 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-04-20 23:55 - 2020-04-20 23:55 - 001928352 _____ (Malwarebytes) C:\Users\LordNet\Downloads\MBSetup-0009996.0009996-consumer.exe
2020-04-20 23:55 - 2020-04-20 23:55 - 000000000 ____D C:\Program Files\Malwarebytes
2020-04-20 23:54 - 2020-04-20 23:54 - 008196784 _____ (Malwarebytes) C:\Users\LordNet\Downloads\adwcleaner_8.0.4.exe
2020-04-20 23:54 - 2020-04-20 23:54 - 000000000 ____D C:\AdwCleaner
2020-04-20 22:28 - 2020-04-20 22:28 - 002352966 _____ (angryip.org) C:\Users\LordNet\Downloads\ipscan-win64-3.7.0.exe
2020-04-20 22:28 - 2020-04-20 22:28 - 000000000 ____D C:\Users\LordNet\.swt
2020-04-20 22:22 - 2020-04-20 22:22 - 000000000 ____H C:\Users\LordNet\Documents\Default.rdp
2020-04-20 22:16 - 2020-04-20 22:37 - 000000000 ____D C:\Users\LordNet\Desktop\Advanced IP Scanner
2020-04-20 22:16 - 2020-04-20 22:16 - 000000920 _____ C:\Users\LordNet\Desktop\Advanced IP Scanner Portable.lnk
2020-04-20 22:10 - 2020-04-20 22:10 - 020385120 _____ (Famatech Corp. ) C:\Users\LordNet\Downloads\Advanced_IP_Scanner_2.5.3850.exe
2020-04-19 21:58 - 2020-04-19 21:58 - 000000000 ____D C:\Users\LordNet\AppData\Roaming\WinRAR
2020-04-19 21:57 - 2020-04-19 21:57 - 000001086 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2020-04-19 21:57 - 2020-04-19 21:57 - 000001030 _____ C:\Users\Public\Desktop\WinRAR.lnk
2020-04-19 21:57 - 2020-04-19 21:57 - 000000000 ____D C:\Users\LordNet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-04-19 21:57 - 2020-04-19 21:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-04-19 21:57 - 2020-04-19 21:57 - 000000000 ____D C:\Program Files\WinRAR
2020-04-19 21:56 - 2020-04-19 21:56 - 003323944 _____ (Alexander Roshal) C:\Users\LordNet\Downloads\winrar-x64-590es.exe
2020-04-19 21:46 - 2020-04-19 21:46 - 007870052 _____ C:\Users\LordNet\Downloads\mods.rar
2020-04-19 21:46 - 2020-04-19 21:46 - 006377151 _____ C:\Users\LordNet\Downloads\forge-1.15.2-31.1.25-installer.jar
2020-04-19 21:31 - 2020-04-21 01:18 - 000000000 ____D C:\Users\LordNet\AppData\Roaming\discord
2020-04-19 21:31 - 2020-04-19 21:32 - 000000000 ____D C:\Users\LordNet\AppData\Local\SquirrelTemp
2020-04-19 21:31 - 2020-04-19 21:31 - 062620472 _____ (Discord Inc.) C:\Users\LordNet\Downloads\DiscordSetup.exe
2020-04-19 21:31 - 2020-04-19 21:31 - 000002245 _____ C:\Users\LordNet\Desktop\Discord.lnk
2020-04-19 21:31 - 2020-04-19 21:31 - 000000000 ____D C:\Users\LordNet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-04-19 21:31 - 2020-04-19 21:31 - 000000000 ____D C:\Users\LordNet\AppData\LocalLow\AMD
2020-04-19 21:31 - 2020-04-19 21:31 - 000000000 ____D C:\Users\LordNet\AppData\Local\Discord
2020-04-19 21:25 - 2020-04-19 21:25 - 000000000 ____D C:\Users\LordNet\datamc
2020-04-19 21:25 - 2020-04-19 21:25 - 000000000 ____D C:\Users\LordNet\AppData\Roaming\java
2020-04-19 20:48 - 2020-04-19 20:48 - 000001383 _____ C:\Users\LordNet\Desktop\ferfe.exe - Acceso directo.lnk
2020-04-19 20:38 - 2020-04-19 20:47 - 000000000 ____D C:\Program Files\DSsap
2020-04-19 20:38 - 2020-04-19 20:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Network Monitor 3.4
2020-04-19 20:35 - 2020-04-19 20:46 - 000001087 _____ C:\Users\Public\Desktop\Microsoft Network Monitor 3.4.lnk
2020-04-19 20:29 - 2020-04-19 20:29 - 020468499 _____ C:\Users\LordNet\Downloads\ccsetup565.zip
2020-04-19 20:10 - 2020-04-19 20:10 - 006837560 _____ (Microsoft Corporation) C:\Users\LordNet\Downloads\NM34_x64(2).exe
2020-04-19 19:03 - 2020-04-20 18:09 - 000000000 ____D C:\Users\LordNet\Documents\mask
2020-04-19 16:18 - 2020-04-21 01:29 - 000000000 ____D C:\Users\LordNet\AppData\Roaming\.minecraft
2020-04-19 16:18 - 2020-04-19 16:18 - 000129192 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2020-04-19 16:18 - 2020-04-19 16:18 - 000000000 ____D C:\Users\LordNet\AppData\Roaming\Sun
2020-04-19 16:18 - 2020-04-19 16:18 - 000000000 ____D C:\Users\LordNet\AppData\LocalLow\Sun
2020-04-19 16:18 - 2020-04-19 16:18 - 000000000 ____D C:\ProgramData\Oracle
2020-04-19 16:18 - 2020-04-19 16:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-04-19 16:18 - 2020-04-19 16:18 - 000000000 ____D C:\Program Files\Java
2020-04-19 16:13 - 2020-04-19 16:13 - 000057631 _____ C:\Users\LordNet\Downloads\LauncherFenix-Minecraft.jar
2020-04-19 15:27 - 2020-04-19 15:27 - 077308552 _____ (Oracle Corporation) C:\Users\LordNet\Downloads\jre-8u251-windows-x64.exe
2020-04-19 14:27 - 2020-04-20 22:39 - 000000128 _____ C:\Users\LordNet\AppData\Local\PUTTY.RND
2020-04-19 13:18 - 2020-04-19 13:18 - 003168256 _____ C:\Users\LordNet\Downloads\putty-64bit-0.73-installer.msi
2020-04-19 12:54 - 2020-04-19 12:54 - 003187562 _____ C:\Users\LordNet\Downloads\PSTools.zip
2020-04-19 12:53 - 2020-04-19 12:53 - 000397157 _____ C:\Users\LordNet\Downloads\WhoIs.zip
2020-04-19 12:47 - 2020-04-19 12:47 - 000000000 ____D C:\Users\LordNet\Downloads\TCPView
2020-04-18 21:13 - 2020-04-20 23:55 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-04-18 21:13 - 2020-04-18 21:40 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2020-04-18 21:13 - 2020-04-18 21:13 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\72676715.sys
2020-04-18 21:12 - 2020-04-18 21:40 - 000000000 ____D C:\Users\LordNet\Desktop\mbar
2020-04-18 21:12 - 2020-04-18 21:12 - 014178840 _____ (Malwarebytes Corp.) C:\Users\LordNet\Downloads\mbar-1.10.3.1001.exe
2020-04-18 19:34 - 2020-04-18 19:34 - 000000000 ____D C:\Users\LordNet\source
2020-04-18 19:33 - 2020-04-18 19:34 - 000000000 ____D C:\Users\LordNet\Documents\Visual Studio 2019
2020-04-18 17:39 - 2020-04-19 14:25 - 000360448 _____ C:\Users\LordNet\Documents\acceso3.wfw
2020-04-18 17:21 - 2020-04-18 17:21 - 000001477 _____ C:\Users\LordNet\Desktop\TCPEye.exe - Acceso directo.lnk
2020-04-18 16:28 - 2020-04-18 16:28 - 000003228 _____ C:\WINDOWS\system32\Tasks\RtkAudUService64_BG
2020-04-18 16:20 - 2020-04-18 16:20 - 000090168 ____H (Sysinternals - sysinternals'com) C:\WINDOWS\system32\Drivers\PROCMON24.SYS
2020-04-18 16:09 - 2020-04-18 16:32 - 000000000 ____D C:\Users\LordNet\Downloads\SysinternalsSuite
2020-04-18 16:08 - 2020-04-18 16:08 - 030403934 _____ C:\Users\LordNet\Downloads\SysinternalsSuite.zip
2020-04-18 16:08 - 2020-04-18 16:08 - 000028656 _____ (Systems Internals) C:\Users\LordNet\Downloads\PORTMSYS.SYS
2020-04-18 16:07 - 2020-04-18 16:07 - 000451392 _____ (SysInternals) C:\Users\LordNet\Downloads\portmon.exe
2020-04-18 16:07 - 2020-04-18 16:07 - 000158896 _____ (Sysinternals - sysinternals'com) C:\Users\LordNet\Downloads\ntfsinfo64.exe
2020-04-18 16:06 - 2020-04-18 16:06 - 000291606 _____ C:\Users\LordNet\Downloads\TCPView.zip
2020-04-18 15:45 - 2020-04-18 15:45 - 000000000 ____D C:\Users\LordNet\AppData\Local\ElevatedDiagnostics
2020-04-18 15:19 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2020-04-18 15:19 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2020-04-18 15:19 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2020-04-18 15:19 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2020-04-18 15:19 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2020-04-18 15:19 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2020-04-18 15:19 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2020-04-18 15:19 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2020-04-18 15:19 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2020-04-18 15:19 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2020-04-18 15:19 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2020-04-18 15:19 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2020-04-18 15:19 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2020-04-18 15:17 - 2020-04-18 15:17 - 000000000 ____D C:\Users\LordNet\AppData\Local\cache
2020-04-18 15:03 - 2020-04-18 15:19 - 000000000 ____D C:\ProgramData\Epic
2020-04-18 15:03 - 2020-04-18 15:17 - 000001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2020-04-18 15:03 - 2020-04-18 15:17 - 000001280 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2020-04-18 15:03 - 2020-04-18 15:03 - 044081152 _____ C:\Users\LordNet\Downloads\EpicInstaller-10.15.2.msi
2020-04-18 15:03 - 2020-04-18 15:03 - 000000000 ____D C:\Users\LordNet\AppData\Local\UnrealEngineLauncher
2020-04-18 15:03 - 2020-04-18 15:03 - 000000000 ____D C:\Users\LordNet\AppData\Local\UnrealEngine
2020-04-18 15:03 - 2020-04-18 15:03 - 000000000 ____D C:\Users\LordNet\AppData\Local\EpicGamesLauncher
2020-04-18 15:03 - 2020-04-18 15:03 - 000000000 ____D C:\Program Files (x86)\Epic Games
2020-04-18 15:03 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2020-04-18 15:03 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2020-04-18 15:03 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2020-04-18 15:03 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2020-04-18 15:03 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2020-04-18 13:13 - 2020-04-18 13:15 - 000000440 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2020-04-18 13:08 - 2020-04-18 13:08 - 000344064 _____ C:\Users\LordNet\Documents\acceso2.wfw
2020-04-18 13:07 - 2020-04-18 13:07 - 000066496 _____ C:\Users\LordNet\Documents\todo mas.txt
2020-04-18 12:35 - 2020-04-18 12:35 - 000344064 _____ C:\Users\LordNet\Documents\acceso mio.wfw
2020-04-18 11:58 - 2020-04-18 12:21 - 217733472 _____ C:\Users\LordNet\Downloads\xl98f76g.exe
2020-04-18 07:36 - 2020-04-18 07:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-2921227636-495831580-2645663862-1001
2020-04-17 22:48 - 2020-04-21 00:16 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2020-04-17 22:48 - 2020-04-17 22:48 - 000003194 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2020-04-17 22:47 - 2020-04-17 22:47 - 000003160 _____ C:\WINDOWS\system32\Tasks\StartCN
2020-04-17 22:47 - 2020-04-17 22:47 - 000003080 _____ C:\WINDOWS\system32\Tasks\StartDVR
2020-04-17 22:47 - 2020-04-17 22:47 - 000000000 ____D C:\Program Files (x86)\AMD
2020-04-17 22:46 - 2020-04-17 22:47 - 000000000 ____D C:\Program Files\AMD
2020-04-17 22:46 - 2020-04-17 22:46 - 000000000 ____D C:\Users\LordNet\AppData\Local\RadeonInstaller
2020-04-17 22:46 - 2020-04-17 22:46 - 000000000 ____D C:\ProgramData\AMD
2020-04-17 22:42 - 2020-04-17 22:42 - 000000000 ____D C:\AMD
2020-04-17 22:41 - 2020-04-17 22:42 - 502114992 _____ (AMD Inc.) C:\Users\LordNet\Downloads\win10-radeon-software-adrenalin-2020-edition-20.4.1-apr2.exe
2020-04-17 21:49 - 2020-04-18 20:36 - 000000000 ____D C:\Users\LordNet\AppData\Local\.IdentityService
2020-04-17 21:48 - 2020-04-17 21:48 - 000000000 ____D C:\Program Files\Android
2020-04-17 21:47 - 2020-04-17 21:47 - 000001798 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2019.lnk
2020-04-17 21:46 - 2020-04-17 21:46 - 000000000 ____D C:\Users\LordNet\AppData\Local\Package Cache
2020-04-17 21:46 - 2020-04-17 21:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 3.7
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\2052
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\1055
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\1049
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\1046
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\1045
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\1042
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\1041
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\1040
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\1036
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\1031
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\1029
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\1028
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\2052
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\1055
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\1049
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\1046
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\1045
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\1042
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\1041
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\1040
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\1036
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\1031
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\1029
2020-04-17 21:43 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\1028
2020-04-17 21:40 - 2020-04-17 21:40 - 000000000 ____D C:\Program Files (x86)\NuGet
2020-04-17 21:39 - 2020-04-17 21:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Azure
2020-04-17 21:39 - 2020-04-17 21:39 - 000000000 ____D C:\ProgramData\dftmp
2020-04-17 21:39 - 2020-04-17 21:39 - 000000000 ____D C:\Program Files\VS2012Schemas
2020-04-17 21:39 - 2020-04-17 21:39 - 000000000 ____D C:\Program Files\VS2010Schemas
2020-04-17 21:39 - 2020-04-17 21:39 - 000000000 ____D C:\Program Files\IIS
2020-04-17 21:39 - 2020-04-17 21:39 - 000000000 ____D C:\Program Files (x86)\IIS
2020-04-17 21:38 - 2020-04-17 21:38 - 000000000 ____D C:\Program Files\Microsoft SDKs
2020-04-17 21:37 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\3082
2020-04-17 21:37 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2020-04-17 21:37 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\3082
2020-04-17 21:37 - 2020-04-17 21:47 - 000000000 ____D C:\WINDOWS\system32\1033
2020-04-17 21:37 - 2020-04-17 21:37 - 000000000 ____D C:\Users\LordNet\Documents\My Web Sites
2020-04-17 21:37 - 2020-04-17 21:37 - 000000000 ____D C:\Users\LordNet\Documents\IISExpress
2020-04-17 21:36 - 2020-04-17 21:37 - 000000000 ____D C:\Program Files\IIS Express
2020-04-17 21:36 - 2020-04-17 21:37 - 000000000 ____D C:\Program Files (x86)\IIS Express
2020-04-17 21:36 - 2020-04-17 21:36 - 000000000 ____D C:\Program Files (x86)\Microsoft Web Tools
2020-04-17 21:34 - 2020-04-17 21:37 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2020-04-17 21:34 - 2020-04-17 21:37 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2020-04-17 21:33 - 2020-04-18 15:19 - 000000000 ____D C:\ProgramData\Package Cache
2020-04-17 21:33 - 2020-04-17 21:43 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2020-04-17 21:33 - 2020-04-17 21:39 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2020-04-17 21:33 - 2020-04-17 21:33 - 000000000 ____D C:\Users\LordNet\.dotnet
2020-04-17 21:32 - 2020-04-17 21:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019
2020-04-17 21:32 - 2020-04-17 21:33 - 000000000 ____D C:\Program Files\dotnet
2020-04-17 21:32 - 2020-04-17 21:32 - 000001797 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019.lnk
2020-04-17 21:32 - 2020-04-17 21:32 - 000000000 ____D C:\Program Files (x86)\dotnet
2020-04-17 21:19 - 2020-04-17 21:19 - 000000000 ___HD C:\OneDriveTemp
2020-04-17 21:15 - 2020-04-17 22:47 - 000000000 ____D C:\Users\LordNet\AppData\Roaming\Visual Studio Setup
2020-04-17 21:15 - 2020-04-17 21:32 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2020-04-17 21:15 - 2020-04-17 21:15 - 001394488 _____ (Microsoft Corporation) C:\Users\LordNet\Downloads\vs_Community.exe
2020-04-17 21:15 - 2020-04-17 21:15 - 000001357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2020-04-17 21:15 - 2020-04-17 21:15 - 000000000 ____D C:\Users\LordNet\AppData\Roaming\vstelemetry
2020-04-17 21:15 - 2020-04-17 21:15 - 000000000 ____D C:\Users\LordNet\AppData\Roaming\vs_installershell
2020-04-17 21:15 - 2020-04-17 21:15 - 000000000 ____D C:\Users\LordNet\AppData\Local\ServiceHub
2020-04-17 21:15 - 2020-04-17 21:15 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio
2020-04-17 21:14 - 2020-04-19 18:55 - 000000000 ____D C:\Users\LordNet\AppData\Roaming\Notepad++
2020-04-17 21:14 - 2020-04-17 21:14 - 000000879 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2020-04-17 21:14 - 2020-04-17 21:14 - 000000867 _____ C:\Users\Public\Desktop\Notepad++.lnk
2020-04-17 21:14 - 2020-04-17 21:14 - 000000000 ____D C:\Program Files\Notepad++
2020-04-17 21:13 - 2020-04-17 21:13 - 004031752 _____ (Don HO [email protected]) C:\Users\LordNet\Downloads\npp.7.8.5.Installer.x64.exe
2020-04-17 21:12 - 2020-04-17 21:12 - 000000000 ____D C:\Program Files (x86)\GtkSharp
2020-04-17 20:59 - 2020-04-17 20:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mono
2020-04-17 20:58 - 2020-04-17 20:58 - 000000000 ____D C:\Program Files\Mono
2020-04-17 20:57 - 2020-04-17 20:57 - 154562560 _____ C:\Users\LordNet\Downloads\mono-6.8.0.105-x64-0.msi
2020-04-17 20:57 - 2020-04-17 20:57 - 025964544 _____ C:\Users\LordNet\Downloads\gtk-sharp-2.12.45.msi
2020-04-17 20:43 - 2020-04-19 00:29 - 000000000 ____D C:\Users\LordNet\Documents\Network Monitor 3
2020-04-17 20:40 - 2020-04-17 20:40 - 006837560 _____ (Microsoft Corporation) C:\Users\LordNet\Downloads\NM34_x64(1).exe
2020-04-17 20:34 - 2020-04-17 20:34 - 006837560 _____ (Microsoft Corporation) C:\Users\LordNet\Downloads\NM34_x64.exe
2020-04-17 18:26 - 2020-04-17 18:26 - 000084873 _____ C:\WINDOWS\dxdiag.txt
2020-04-17 18:26 - 2020-04-17 18:26 - 000000000 ____D C:\Users\Default\AppData\Local\D3DSCache
2020-04-17 18:26 - 2020-04-17 18:26 - 000000000 ____D C:\Users\Default\AppData\Local\AMD
2020-04-17 18:26 - 2020-04-17 18:26 - 000000000 ____D C:\Users\Default User\AppData\Local\D3DSCache
2020-04-17 18:26 - 2020-04-17 18:26 - 000000000 ____D C:\Users\Default User\AppData\Local\AMD
2020-04-17 18:21 - 2020-04-17 18:25 - 000000000 ____D C:\Users\LordNet\Documents\FeedbackHub
2020-04-17 14:10 - 2020-04-17 14:10 - 000000000 ____D C:\Users\LordNet\AppData\Local\OneDrive
2020-04-17 13:18 - 2020-04-17 13:20 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-04-17 13:18 - 2020-04-17 13:18 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-04-17 13:17 - 2020-04-17 13:17 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 022636544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 018027520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 006523048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 005910016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 004611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 004129624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 003512320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 002951832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2020-04-17 13:17 - 2020-04-17 13:17 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-04-17 13:17 - 2020-04-17 13:17 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001870408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001665216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001646048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001413840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-04-17 13:17 - 2020-04-17 13:17 - 001310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001077064 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-04-17 13:17 - 2020-04-17 13:17 - 001013000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000983040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-04-17 13:17 - 2020-04-17 13:17 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-04-17 13:17 - 2020-04-17 13:17 - 000775696 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-04-17 13:17 - 2020-04-17 13:17 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-04-17 13:17 - 2020-04-17 13:17 - 000768528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000673464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-04-17 13:17 - 2020-04-17 13:17 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000628616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-04-17 13:17 - 2020-04-17 13:17 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000420152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-04-17 13:17 - 2020-04-17 13:17 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumapi.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumapi.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsunattend.exe
2020-04-17 13:17 - 2020-04-17 13:17 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-04-17 13:17 - 2020-04-17 13:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-04-17 13:17 - 2020-04-17 13:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-04-17 13:17 - 2020-04-17 13:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-04-17 13:17 - 2020-04-17 13:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-04-17 13:17 - 2020-04-17 13:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-04-17 13:17 - 2020-04-17 13:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-04-17 13:17 - 2020-04-17 13:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-04-17 13:17 - 2020-04-17 13:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-04-17 13:17 - 2020-04-17 13:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-04-17 13:17 - 2020-04-17 13:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-04-17 13:17 - 2020-04-17 13:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-04-17 13:17 - 2020-04-17 13:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-04-17 13:16 - 2020-04-17 13:16 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-04-17 13:16 - 2020-04-17 13:16 - 004563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-04-17 13:16 - 2020-04-17 13:16 - 003802624 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-04-17 13:16 - 2020-04-17 13:16 - 003587384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-04-17 13:16 - 2020-04-17 13:16 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 002767928 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-04-17 13:16 - 2020-04-17 13:16 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 002131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 002086656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 001603584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 001318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000982840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-04-17 13:16 - 2020-04-17 13:16 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-04-17 13:16 - 2020-04-17 13:16 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-04-17 13:16 - 2020-04-17 13:16 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2020-04-17 13:16 - 2020-04-17 13:16 - 000339304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-04-17 13:16 - 2020-04-17 13:16 - 000127280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-04-17 13:16 - 2020-04-17 13:16 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-04-17 13:16 - 2020-04-17 13:16 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe`Texto preformateado`

LordNet_Black · 21 Abril, 2020 11:27

2020-04-17 13:16 - 2020-04-17 13:16 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2020-04-17 13:16 - 2020-04-17 13:16 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2020-04-17 13:16 - 2020-04-17 13:16 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll 2020-04-17 13:16 - 2020-04-17 13:16 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll 2020-04-17 13:16 - 2020-04-17 13:16 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll 2020-04-17 13:16 - 2020-04-17 13:16 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe 2020-04-17 13:09 - 2020-03-17 05:57 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-04-17 13:09 - 2020-03-17 05:56 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-04-17 07:41 - 2020-04-17 07:40 - 000744808 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2020-04-17 07:36 - 2020-04-17 22:31 - 000000000 ___RD C:\Users\LordNet\Google Drive 2020-04-17 07:36 - 2020-04-17 07:36 - 000001782 _____ C:\Users\LordNet\Desktop\Google Drive.lnk 2020-04-17 07:33 - 2020-04-17 07:33 - 001455800 _____ (Free Software Relase ) C:\Users\LordNet\Downloads\tcpeye.exe 2020-04-17 07:33 - 2020-04-17 07:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TCPEye 2020-04-17 07:33 - 2020-04-17 07:33 - 000000000 ____D C:\Program Files (x86)\TCPEye 2020-04-17 07:24 - 2020-04-17 07:24 - 005951264 _____ (Check Point Software Technologies Ltd.) C:\Users\LordNet\Downloads\zafwSetupWeb_158_043_18324.exe 2020-04-17 07:22 - 2020-04-17 07:22 - 000000000 ____D C:\Users\LordNet\AppData\Local\CEF 2020-04-17 07:05 - 2020-04-17 07:05 - 001295576 _____ (Google LLC) C:\Users\LordNet\Downloads\installbackupandsync.exe 2020-04-17 07:05 - 2020-04-17 07:05 - 000003622 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2020-04-17 07:05 - 2020-04-17 07:05 - 000003498 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2020-04-17 07:05 - 2020-04-17 07:05 - 000002075 _____ C:\Users\Public\Desktop\Google Slides.lnk 2020-04-17 07:05 - 2020-04-17 07:05 - 000002073 _____ C:\Users\Public\Desktop\Google Sheets.lnk 2020-04-17 07:05 - 2020-04-17 07:05 - 000002063 _____ C:\Users\Public\Desktop\Google Docs.lnk 2020-04-17 07:05 - 2020-04-17 07:05 - 000000000 ____D C:\Users\LordNet\AppData\Local\Google 2020-04-17 07:05 - 2020-04-17 07:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google 2020-04-17 07:05 - 2020-04-17 07:05 - 000000000 ____D C:\Program Files\Google 2020-04-17 07:05 - 2020-04-17 07:05 - 000000000 ____D C:\Program Files (x86)\Google 2020-04-17 06:41 - 2020-04-21 00:18 - 000000000 ____D C:\Users\LordNet\AppData\LocalLow\Mozilla 2020-04-17 06:41 - 2020-04-17 18:22 - 000000000 ____D C:\Users\LordNet\AppData\Local\PlaceholderTileLogoFolder 2020-04-17 06:41 - 2020-04-17 06:41 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-04-17 06:41 - 2020-04-17 06:41 - 000000995 _____ C:\Users\Public\Desktop\Firefox.lnk 2020-04-17 06:41 - 2020-04-17 06:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2020-04-17 06:41 - 2020-04-17 06:41 - 000000000 ____D C:\Users\LordNet\AppData\Roaming\Mozilla 2020-04-17 06:41 - 2020-04-17 06:41 - 000000000 ____D C:\Users\LordNet\AppData\Local\Mozilla 2020-04-17 06:41 - 2020-04-17 06:41 - 000000000 ____D C:\ProgramData\Mozilla 2020-04-17 06:41 - 2020-04-17 06:41 - 000000000 ____D C:\Program Files\Mozilla Firefox 2020-04-17 06:41 - 2020-04-17 06:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-04-17 06:38 - 2020-04-17 06:03 - 000000000 ____D C:\WINDOWS\Panther 2020-04-17 06:38 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\ASUS 2020-04-17 06:36 - 2020-04-17 06:36 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2020-04-17 06:36 - 2020-04-17 06:36 - 000000000 ____D C:\WINDOWS\Setup 2020-04-17 06:35 - 2020-04-21 00:21 - 000830214 _____ C:\WINDOWS\system32\perfh00A.dat 2020-04-17 06:35 - 2020-04-21 00:21 - 000175422 _____ C:\WINDOWS\system32\perfc00A.dat 2020-04-17 06:35 - 2020-04-17 21:32 - 000000000 ____D C:\Program Files (x86)\MSBuild 2020-04-17 06:35 - 2020-04-17 06:35 - 000346834 _____ C:\WINDOWS\system32\perfi00A.dat 2020-04-17 06:35 - 2020-04-17 06:35 - 000043954 _____ C:\WINDOWS\system32\perfd00A.dat 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\SysWOW64\es 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\SysWOW64\0409 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\system32\es 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\system32\0409 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\OCR 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\DigitalLocker 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\ProgramData\ssh 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\Program Files\Reference Assemblies 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\Program Files\MSBuild 2020-04-17 06:35 - 2020-04-17 06:35 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2020-04-17 06:35 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm 2020-04-17 06:35 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2020-04-17 06:35 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2020-04-17 06:35 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2020-04-17 06:35 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\system32\winrm 2020-04-17 06:35 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\system32\WCN 2020-04-17 06:35 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\system32\slmgr 2020-04-17 06:35 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2020-04-17 06:34 - 2020-02-03 22:56 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2020-04-17 06:34 - 2020-02-03 22:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2020-04-17 06:33 - 2020-04-21 13:00 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-04-17 06:33 - 2020-04-20 22:32 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-04-17 06:33 - 2020-04-19 14:39 - 000000000 ___HD C:\Program Files\WindowsApps 2020-04-17 06:33 - 2020-04-18 15:03 - 000000000 ___RD C:\Program Files (x86) 2020-04-17 06:33 - 2020-04-18 10:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2020-04-17 06:33 - 2020-04-18 06:59 - 000000000 ____D C:\WINDOWS\appcompat 2020-04-17 06:33 - 2020-04-17 14:04 - 000000000 ____D C:\WINDOWS\SystemResources 2020-04-17 06:33 - 2020-04-17 14:04 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-04-17 06:33 - 2020-04-17 14:04 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-04-17 06:33 - 2020-04-17 14:04 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-04-17 06:33 - 2020-04-17 08:46 - 000000000 ____D C:\Program Files\Windows Defender 2020-04-17 06:33 - 2020-04-17 06:38 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2020-04-17 06:33 - 2020-04-17 06:37 - 000000000 ____D C:\WINDOWS\system32\spool 2020-04-17 06:33 - 2020-04-17 06:37 - 000000000 ____D C:\WINDOWS\system32\setup 2020-04-17 06:33 - 2020-04-17 06:37 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2020-04-17 06:33 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2020-04-17 06:33 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2020-04-17 06:33 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2020-04-17 06:33 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2020-04-17 06:33 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\system32\MUI 2020-04-17 06:33 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\system32\Com 2020-04-17 06:33 - 2020-04-17 06:35 - 000000000 ____D C:\WINDOWS\Help 2020-04-17 06:33 - 2020-04-17 06:35 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 __SHD C:\Program Files\Windows Sidebar 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 __RSD C:\WINDOWS\Media 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 __RHD C:\Users\Public\Libraries 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ___SD C:\WINDOWS\system32\UNP 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ___SD C:\WINDOWS\system32\Nui 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ___SD C:\WINDOWS\system32\Configuration 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ___RD C:\WINDOWS\Offline Web Pages 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\Web 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\WaaS 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\Vss 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\tracing 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\TextInput 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\TAPI 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\ras 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\IME 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SystemApps 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\winevt 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\ti-et 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\ta-lk 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\ta-in 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\si-lk 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\ras 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\ProximityToast 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\PointOfService 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\osa-Osge-001 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\NDF 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\my-mm 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\Macromed 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\Keywords 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\Ipmi 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\InputMethod 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\inetsrv 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\IME 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\icsxml 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\ias 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\Hydrogen 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\ff-Adlm-SN 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\DriverState 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\downlevel 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\DDFs 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\config\TxR 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\config\RegBack 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\config\Journal 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\Bthprops 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\appraiser 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\AppLocker 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\am-et 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\System 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SKB 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\ShellComponents 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\security 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\schemas 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\SchCache 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\Resources 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\rescache 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\Provisioning 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\PLA 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\Performance 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\ModemLogs 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\L2Schemas 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\InputMethod 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\IdentityCRL 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\Globalization 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\DiagTrack 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\Cursors 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\Containers 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\Branding 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\addins 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\ProgramData\USOShared 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\Program Files\Windows Security 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\Program Files\Windows Portable Devices 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\Program Files\Windows Multimedia Platform 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\Program Files\ModifiableWindowsApps 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\Program Files\Common Files\Services 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\Program Files (x86)\Windows NT 2020-04-17 06:33 - 2020-04-17 06:33 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform 2020-04-17 06:33 - 2020-04-17 06:31 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2020-04-17 06:33 - 2020-04-17 06:31 - 000215943 _____ C:\WINDOWS\SysWOW64\dssec.dat 2020-04-17 06:33 - 2020-04-17 06:31 - 000215943 _____ C:\WINDOWS\system32\dssec.dat 2020-04-17 06:33 - 2020-04-17 06:31 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2020-04-17 06:33 - 2020-04-17 06:31 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2020-04-17 06:33 - 2020-04-17 06:31 - 000018903 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2020-04-17 06:33 - 2020-04-17 06:31 - 000003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam 2020-04-17 06:33 - 2020-04-17 06:31 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config 2020-04-17 06:33 - 2020-04-17 06:31 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config 2020-04-17 06:33 - 2020-04-17 06:31 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json 2020-04-17 06:33 - 2020-04-17 06:31 - 000000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT 2020-04-17 06:33 - 2020-04-17 06:31 - 000000741 _____ C:\WINDOWS\system32\NOISE.DAT 2020-04-17 06:33 - 2020-04-17 06:27 - 000000000 ____D C:\WINDOWS\ServiceState 2020-04-17 06:33 - 2020-04-17 06:04 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2020-04-17 06:33 - 2020-04-17 06:03 - 000000000 ____D C:\WINDOWS\Registration 2020-04-17 06:33 - 2020-04-17 06:03 - 000000000 ____D C:\Program Files\Windows NT 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ___SD C:\WINDOWS\system32\F12 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ___SD C:\WINDOWS\system32\dsc 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ____D C:\WINDOWS\IME 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2020-04-17 06:33 - 2020-04-17 06:01 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2020-04-17 06:33 - 2020-04-17 06:00 - 000000000 ____D C:\Program Files\Common Files\System 2020-04-17 06:33 - 2020-04-17 05:59 - 000000000 ____D C:\ProgramData\USOPrivate 2020-04-17 06:33 - 2020-04-17 05:58 - 000000000 ___RD C:\WINDOWS\PrintDialog 2020-04-17 06:33 - 2020-04-17 05:58 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2020-04-17 06:32 - 2020-04-21 00:21 - 000000000 ____D C:\WINDOWS\INF 2020-04-17 06:29 - 2020-04-17 21:39 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-04-17 06:28 - 2020-04-20 22:14 - 118226944 _____ C:\WINDOWS\system32\config\SOFTWARE 2020-04-17 06:28 - 2020-04-20 22:14 - 015466496 _____ C:\WINDOWS\system32\config\SYSTEM 2020-04-17 06:28 - 2020-04-20 22:14 - 002359296 _____ C:\WINDOWS\system32\config\DEFAULT 2020-04-17 06:28 - 2020-04-20 22:14 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2020-04-17 06:28 - 2020-04-20 22:14 - 000131072 _____ C:\WINDOWS\system32\config\SAM 2020-04-17 06:28 - 2020-04-20 22:14 - 000065536 _____ C:\WINDOWS\system32\config\SECURITY 2020-04-17 06:28 - 2020-04-17 13:18 - 000000000 ____D C:\WINDOWS\servicing 2020-04-17 06:28 - 2020-04-17 07:41 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2020-04-17 06:28 - 2020-04-17 06:33 - 000000000 ____D C:\WINDOWS\system32\SMI 2020-04-17 06:27 - 2020-04-17 06:56 - 000000000 ___HD C:$SysReset 2020-04-17 06:27 - 2020-04-17 06:27 - 000000000 ____D C:\Users\LordNet\AppData\Local\Comms 2020-04-17 06:12 - 2020-04-18 23:21 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2921227636-495831580-2645663862-1001 2020-04-17 06:12 - 2020-04-18 23:21 - 000000000 ___RD C:\Users\LordNet\OneDrive 2020-04-17 06:12 - 2020-04-17 06:12 - 000000000 ___HD C:\Users\LordNet\MicrosoftEdgeBackups 2020-04-17 06:11 - 2020-04-17 06:40 - 000000000 ____D C:\Users\LordNet\AppData\Local\MicrosoftEdge 2020-04-17 06:11 - 2020-04-17 06:11 - 000001450 _____ C:\Users\LordNet\Desktop\Microsoft Edge.lnk 2020-04-17 06:11 - 2020-04-17 06:11 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2020-04-17 06:10 - 2020-04-18 19:18 - 000000000 ____D C:\Users\LordNet\AppData\Local\D3DSCache 2020-04-17 06:10 - 2020-04-18 16:01 - 000000000 ____D C:\Users\LordNet\AppData\Local\ConnectedDevicesPlatform 2020-04-17 06:10 - 2020-04-18 15:17 - 000000000 ____D C:\Users\LordNet\AppData\Local\AMD 2020-04-17 06:10 - 2020-04-17 15:40 - 000000000 ____D C:\Users\LordNet\AppData\Local\Packages 2020-04-17 06:10 - 2020-04-17 07:00 - 000000000 ____D C:\Users\LordNet\AppData\Local\Publishers 2020-04-17 06:10 - 2020-04-17 06:27 - 000000000 ____D C:\ProgramData\Packages 2020-04-17 06:10 - 2020-04-17 06:10 - 000000000 ___RD C:\Users\LordNet\3D Objects 2020-04-17 06:10 - 2020-04-17 06:10 - 000000000 ____D C:\Users\LordNet\AppData\Roaming\Adobe 2020-04-17 06:10 - 2020-04-17 06:10 - 000000000 ____D C:\Users\LordNet\AppData\Local\VirtualStore 2020-04-17 06:10 - 2020-04-17 06:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office 2020-04-17 06:09 - 2020-04-20 22:28 - 000000000 ____D C:\Users\LordNet 2020-04-17 06:09 - 2020-04-18 23:21 - 000002405 _____ C:\Users\LordNet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-04-17 06:09 - 2020-04-17 06:09 - 000000020 ___SH C:\Users\LordNet\ntuser.ini 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\Reciente 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\Plantillas 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\Mis documentos 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\Menú Inicio 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\Impresoras 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\Entorno de red 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\Documents\Mis vídeos 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\Documents\Mis imágenes 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\Documents\Mi música 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\Datos de programa 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\Configuración local 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\AppData\Local\Historial 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\AppData\Local\Datos de programa 2020-04-17 06:09 - 2020-04-17 06:09 - 000000000 _SHDL C:\Users\LordNet\AppData\Local\Archivos temporales de Internet 2020-04-17 06:06 - 2020-04-21 00:21 - 001884854 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-04-17 06:04 - 2020-04-21 11:38 - 000003748 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 2020-04-17 06:03 - 2020-04-21 00:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-04-17 06:03 - 2020-04-17 07:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee 2020-04-17 06:03 - 2020-04-17 06:03 - 000003116 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0 2020-04-17 06:03 - 2020-04-17 06:03 - 000003042 _____ C:\WINDOWS\system32\Tasks\ASUS Optimization 36D18D69AFC3 2020-04-17 06:03 - 2020-04-17 06:03 - 000002848 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2436507731-86878477-3042375241-500 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Public\Documents\Mis vídeos 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Public\Documents\Mis imágenes 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Public\Documents\Mi música 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\Reciente 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\Plantillas 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\Mis documentos 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\Menú Inicio 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\Impresoras 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\Entorno de red 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\Documents\Mis vídeos 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\Documents\Mis imágenes 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\Documents\Mi música 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\Datos de programa 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\Configuración local 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historial 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\AppData\Local\Datos de programa 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default\AppData\Local\Archivos temporales de Internet 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\Reciente 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\Plantillas 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\Mis documentos 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\Menú Inicio 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\Impresoras 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\Entorno de red 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\Documents\Mis vídeos 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\Documents\Mis imágenes 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\Documents\Mi música 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\Datos de programa 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\Configuración local 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Historial 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Datos de programa 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Archivos temporales de Internet 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\Default User 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Users\All Users 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\ProgramData\Plantillas 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\ProgramData\Menú Inicio 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\ProgramData\Escritorio 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\ProgramData\Documentos 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\ProgramData\Datos de programa 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Program Files\Archivos comunes 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Documents and Settings 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 _SHDL C:\Archivos de programa 2020-04-17 06:03 - 2020-04-17 06:03 - 000000000 ____D C:\WINDOWS\minidump 2020-04-17 06:03 - 2019-07-12 06:19 - 000003392 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3395689063-3815589235-1221065748-500 2020-04-17 06:00 - 2020-04-17 06:00 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2020-04-17 06:00 - 2019-07-12 06:57 - 002874368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2020-04-17 05:59 - 2020-04-17 05:59 - 000000000 ____D C:\eSupport 2020-04-17 05:58 - 2020-04-17 05:58 - 000000000 ____D C:\WINDOWS\system32\AMD 2020-04-17 05:57 - 2020-04-21 12:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-04-17 05:57 - 2020-04-17 14:05 - 000465288 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-04-17 05:57 - 2020-04-17 06:01 - 000000000 ____D C:\ProgramData\ASUS 2020-04-17 05:57 - 2020-04-17 05:57 - 000000080 ___SH C:\bootTel.dat 2020-04-17 05:57 - 2020-04-17 05:57 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2020-04-17 05:57 - 2020-04-17 05:57 - 000000000 ____D C:\ProgramData\Realtek 2020-04-02 11:45 - 2020-04-02 11:45 - 001784744 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2020-04-02 11:45 - 2020-04-02 11:45 - 001784744 _____ C:\WINDOWS\system32\vulkaninfo.exe 2020-04-02 11:44 - 2020-04-02 11:44 - 001375144 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2020-04-02 11:44 - 2020-04-02 11:44 - 001375144 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2020-04-02 11:44 - 2020-04-02 11:44 - 001086184 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 001086184 _____ C:\WINDOWS\system32\vulkan-1.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000945032 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000945032 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000761056 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe 2020-04-02 11:44 - 2020-04-02 11:44 - 000574888 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000493992 _____ C:\WINDOWS\system32\dgtrayicon.exe 2020-04-02 11:44 - 2020-04-02 11:44 - 000491944 _____ C:\WINDOWS\system32\GameManager64.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000485800 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000451808 _____ C:\WINDOWS\system32\atieah64.exe 2020-04-02 11:44 - 2020-04-02 11:44 - 000428968 _____ C:\WINDOWS\system32\EEURestart.exe 2020-04-02 11:44 - 2020-04-02 11:44 - 000374696 _____ C:\WINDOWS\SysWOW64\GameManager32.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000345824 _____ C:\WINDOWS\SysWOW64\atieah32.exe 2020-04-02 11:44 - 2020-04-02 11:44 - 000344800 _____ C:\WINDOWS\system32\clinfo.exe 2020-04-02 11:44 - 2020-04-02 11:44 - 000241888 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000209120 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000184744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000163240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000159456 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000153512 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000138664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000136416 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000136416 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000124840 _____ C:\WINDOWS\system32\atidxx64.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000107432 _____ C:\WINDOWS\SysWOW64\atidxx32.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000091560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mcl64.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000076200 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mcl32.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000047528 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000044456 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000020408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll 2020-04-02 11:44 - 2020-04-02 11:44 - 000020408 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 078651840 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 062867880 _____ C:\WINDOWS\system32\amd_comgr.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 052403624 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 004585896 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 004095400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 001243560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 001243560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000941992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000769448 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000554408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000484776 _____ C:\WINDOWS\system32\amdgfxinfo64.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000469416 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000467368 _____ C:\WINDOWS\system32\amdlogum.exe 2020-04-02 11:43 - 2020-04-02 11:43 - 000384424 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000374184 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000198120 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000179080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000167720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000158432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000135592 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000121792 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000121256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000106408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll 2020-04-02 11:43 - 2020-04-02 11:43 - 000071080 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll 2020-04-02 11:42 - 2020-04-02 11:42 - 001686840 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll 2020-04-02 11:42 - 2020-04-02 11:42 - 001366192 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll 2020-04-02 11:42 - 2020-04-02 11:42 - 000546544 _____ C:\WINDOWS\system32\amdmiracast.dll 2020-04-02 11:42 - 2020-04-02 11:42 - 000135160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll 2020-04-02 11:42 - 2020-04-02 11:42 - 000128952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll 2020-04-02 11:42 - 2020-04-02 11:42 - 000128952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll 2020-04-02 11:42 - 2020-04-02 11:42 - 000120072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll 2020-04-02 11:42 - 2020-04-02 11:42 - 000108056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll 2020-04-02 11:42 - 2020-04-02 11:42 - 000108048 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll 2020-04-01 21:20 - 2020-04-01 21:20 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap 2020-04-01 21:20 - 2020-04-01 21:20 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap 2020-04-01 21:15 - 2020-04-01 21:15 - 000543168 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb 2020-04-01 21:15 - 2020-04-01 21:15 - 000543168 _____ C:\WINDOWS\system32\atiapfxx.blb 2020-04-01 18:24 - 2020-04-01 18:24 - 014818816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 007017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 003753472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 003547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2020-04-01 18:24 - 2020-04-01 18:24 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 001757096 ____N (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-04-01 18:24 - 2020-04-01 18:24 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 001545216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 001512832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2020-04-01 18:24 - 2020-04-01 18:24 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 001261808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 001243648 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 001055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000759272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000673704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000618296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2020-04-01 18:24 - 2020-04-01 18:24 - 000538160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 000515600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000513576 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000487784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2020-04-01 18:24 - 2020-04-01 18:24 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2020-04-01 18:24 - 2020-04-01 18:24 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2020-04-01 18:24 - 2020-04-01 18:24 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 000277864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000251704 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrad.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrad.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys 2020-04-01 18:24 - 2020-04-01 18:24 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000147696 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 000142544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000123952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe 2020-04-01 18:24 - 2020-04-01 18:24 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasacct.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys 2020-04-01 18:24 - 2020-04-01 18:24 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2020-04-01 18:24 - 2020-04-01 18:24 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll

LordNet_Black · 21 Abril, 2020 11:28

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 19-04-2020
Ejecutado por LordNet (21-04-2020 13:08:15)
Ejecutado desde C:\Users\LordNet\Downloads
Windows 10 Home Versión 1909 18363.778 (X64) (2020-04-17 04:03:34)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-2921227636-495831580-2645663862-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2921227636-495831580-2645663862-503 - Limited - Disabled)
Invitado (S-1-5-21-2921227636-495831580-2645663862-501 - Limited - Disabled)
LordNet (S-1-5-21-2921227636-495831580-2645663862-1001 - Administrator - Enabled) => C:\Users\LordNet
WDAGUtilityAccount (S-1-5-21-2921227636-495831580-2645663862-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Active Directory Authentication Library for SQL Server (HKLM\...\{31D1C054-08DC-4509-B621-2024938AABB1}) (Version: 15.0.1300.359 - Microsoft Corporation) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.4.1 - Advanced Micro Devices, Inc.)
Backup and Sync from Google (HKLM\...\{FE296942-D2D3-4149-8895-60655FE4CFDE}) (Version: 3.49.9800.0000 - Google, Inc.)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32\...\{0243F145-076D-423A-8F77-218DC8840261}) (Version: 4.8.04119 - Microsoft Corporation) Hidden
DiagnosticsHub_CollectionService (HKLM\...\{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 - Microsoft Corporation) Hidden
Discord (HKU\S-1-5-21-2921227636-495831580-2645663862-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Entity Framework 6.2.0 Tools  for Visual Studio 2019 (HKLM-x32\...\{7C2070BF-8E07-4B5F-A182-FADB0B95AB39}) (Version: 6.2.0.0 - Microsoft Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{3A595C95-121D-4EB0-8D57-C7A309BA6C09}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Gtk# for .Net 2.12.45 (HKLM-x32\...\{0D038544-52B1-4F30-BAE1-46509B4A91A7}) (Version: 2.12.45 - Xamarin, Inc.)
icecap_collection_neutral (HKLM-x32\...\{929EAD9A-42D2-4FC7-B7E6-529AAD5F6D0D}) (Version: 16.5.29814 - Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM\...\{84EC5964-D540-4494-9043-BF7BEE37D1E1}) (Version: 16.5.29814 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{A52C6536-88C4-4237-97E9-69823DF57502}) (Version: 16.5.29521 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{19AD7B49-3103-4408-B40F-6DB7370F2402}) (Version: 16.4.29411 - Microsoft Corporation) Hidden
IIS 10.0 Express (HKLM\...\{2B8326B6-4202-4239-B9A9-F3EC8812E82D}) (Version: 10.0.03917 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version:  - ) Hidden
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version:  - ) Hidden
IntelliTraceProfilerProxy (HKLM-x32\...\{7D94CF67-6666-4111-B027-D7AB7F189F70}) (Version: 15.0.18198.01 - Microsoft Corporation) Hidden
Java 8 Update 251 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.92 - McAfee, LLC.)
Microsoft .NET Core SDK 3.1.201 (x64) from Visual Studio (HKLM\...\{AE0BA5F1-D63A-4784-944F-114B82FB8202}) (Version: 3.1.201.015034 - Microsoft Corporation)
Microsoft Azure Authoring Tools - v2.9.6 (HKLM\...\{EDADFA19-7F96-4075-A4AB-2209910626C5}) (Version: 2.9.8899.26 - Microsoft Corporation)
Microsoft Azure Compute Emulator - v2.9.6 (HKLM\...\Microsoft Azure Compute Emulator - v2.9.6) (Version: 2.9.8899.26 - Microsoft Corporation)
Microsoft Azure Libraries for .NET – v2.9 (HKLM\...\{C5C91AA6-3E83-430E-8B7A-6B790083F28D}) (Version: 3.0.0127.060 - Microsoft Corporation)
Microsoft Azure PowerShell - April 2018 (HKLM\...\{3BA7CAA9-97BA-4528-B7E1-B640910BB149}) (Version: 5.7.0.18831 - Microsoft Corporation)
Microsoft Azure Storage Emulator - v5.10 (HKLM-x32\...\Microsoft Azure Storage Emulator - v5.10) (Version: 5.10.19227.2113 - Microsoft Corporation)
Microsoft Network Monitor 3.4 (HKLM\...\{8C5B5A11-CBF8-451B-B201-77FAB0D0B77D}) (Version: 3.4.2350.0 - Microsoft Corporation)
Microsoft Network Monitor: NetworkMonitor Parsers 3.4 (HKLM\...\{963E5FEB-1367-46B9-851D-A957F1A3747F}) (Version: 3.4.2350.0 - Microsoft Corporation)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{2106BECC-3376-41AF-964F-C1A7E7BD2719}) (Version: 17.2.0.1 - Microsoft Corporation)
Microsoft Office 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.12624.20466 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2921227636-495831580-2645663862-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft SQL Server 2016 LocalDB (HKLM\...\{0CA7D28F-F81A-42A2-B14B-CABE07F04282}) (Version: 13.1.4001.0 - Microsoft Corporation)
Microsoft System CLR Types para SQL Server 2019 CTP2.2 (HKLM\...\{7FAD4DD7-7874-48A9-8E1C-1EAE6267A5A5}) (Version: 15.0.1200.24 - Microsoft Corporation)
Microsoft System CLR Types para SQL Server 2019 CTP2.2 (HKLM-x32\...\{C42B6F9F-4C9E-45E0-BAD3-4C1F933410A3}) (Version: 15.0.1200.24 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.5.2061.411 - Microsoft Corporation)
Microsoft Web Deploy 4.0 (HKLM\...\{BBCDB523-F5B7-4E53-A911-C85191E3BDF0}) (Version: 10.0.2606 - Microsoft Corporation)
Mono for Windows (x64) (HKLM\...\{D556912C-4F3C-4B62-97AC-B727F8E09265}) (Version: 6.8.0.105 - Xamarin, Inc.)
Mozilla Firefox 75.0 (x64 es-ES) (HKLM\...\Mozilla Firefox 75.0 (x64 es-ES)) (Version: 75.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 75.0 - Mozilla)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.8.5 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12624.20442 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12624.20466 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.12624.20442 - Microsoft Corporation) Hidden
Paquete acumulativo de Intellisense de Microsoft .NET Framework para Visual Studio (español) (HKLM-x32\...\{F1648370-5D04-42C6-9DBA-98F0408FC7EB}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Paquete de compatibilidad de Microsoft .NET Framework 4.7.2 (español) (HKLM-x32\...\{DE9EAC0A-7859-4294-B05F-4A056D83024C}) (Version: 4.7.03062 - Microsoft Corporation) Hidden
Paquete de compatibilidad redirigido de documentación de Microsoft .NET Framework 4.7.1 (español) (HKLM-x32\...\{927FF4FD-8E47-4022-8545-22FD78FBC2AB}) (Version: 4.7.02558 - Microsoft Corporation) Hidden
Python 3.7.5 (64-bit) (HKU\S-1-5-21-2921227636-495831580-2645663862-1001\...\{5e6d7bfa-46e9-4496-9ccd-e15816be8f0a}) (Version: 3.7.5150.0 - Python Software Foundation)
Python 3.7.5 Core Interpreter (64-bit symbols) (HKLM\...\{8186EDC2-D02C-4561-BD11-55F3B9C363FF}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Core Interpreter (64-bit) (HKLM\...\{6DC6BC71-F1FB-412D-A16A-2FE8C463E89F}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Development Libraries (64-bit) (HKLM\...\{5A54B213-36D8-40CB-9E55-D20864AEF3C8}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Documentation (64-bit) (HKLM\...\{B33E7CE3-8BFE-4F55-8505-2F74D97392C4}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Executables (64-bit symbols) (HKLM\...\{3AA7C0A6-97EC-41C9-B2F8-37BCA749D9C9}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Executables (64-bit) (HKLM\...\{8864B390-4DFB-43AB-934B-F02C48577666}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 pip Bootstrap (64-bit) (HKLM\...\{2E590D5A-4E40-4C9C-AFF8-7CB80F085752}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Standard Library (64-bit symbols) (HKLM\...\{8159776E-5D9A-457B-BAA5-AD306A89D3C9}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Standard Library (64-bit) (HKLM\...\{45CB356A-C0DF-430E-B75F-7764DBA06DF9}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Tcl/Tk Support (64-bit symbols) (HKLM\...\{10FB2B6E-BDA1-479F-9844-FF3A9C8ED166}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Tcl/Tk Support (64-bit) (HKLM\...\{42DC5149-4088-4217-8F86-487FA8B953FC}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Test Suite (64-bit symbols) (HKLM\...\{A5AC50DE-D446-4AF2-8D83-8BC548B57C31}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Test Suite (64-bit) (HKLM\...\{1822F1DC-2972-499D-9FE2-C27395C06766}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python 3.7.5 Utility Scripts (64-bit) (HKLM\...\{EFF40415-0D5B-4CBA-9080-3EE2DADB527C}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{4E5F47AD-2588-4BE3-9DC2-0F9CD283A3DF}) (Version: 3.7.6860.0 - Python Software Foundation)
TCPEye 1.0 (HKLM-x32\...\{998C9435-DAF8-4BDF-B9A5-F844B01D524C}_is1) (Version:  - Free Software Relase)
TypeScript SDK (HKLM-x32\...\{BAE4530E-AEA1-4F1F-AE7F-E83A87D20CE7}) (Version: 3.8.2.0 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
vcpp_crt.redist.clickonce (HKLM-x32\...\{AF145B07-CEFC-4973-8C15-101FCBF089E8}) (Version: 14.25.28508 - Microsoft Corporation) Hidden
Visual Studio Community 2019 (HKLM-x32\...\8e223c20) (Version: 16.5.30011.22 - Microsoft Corporation)
VS Immersive Activate Helper (HKLM-x32\...\{78500789-0EBE-4490-BE43-F9EF8250BF42}) (Version: 16.0.98.0 - Microsoft Corporation) Hidden
VS JIT Debugger (HKLM\...\{4137D3AB-5B44-4AC9-83A4-5273F2E2547E}) (Version: 16.0.98.0 - Microsoft Corporation) Hidden
VS Script Debugging Common (HKLM\...\{D8B26CBD-15D2-440B-BCBD-5616D74EFC7D}) (Version: 16.0.98.0 - Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32\...\{B5E3A3E1-1529-4D5A-9E95-34971FA07825}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM-x32\...\{BAF91847-0A64-405E-98EC-A0BA6FB4BC4E}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32\...\{271F1F42-B547-4498-825F-590DBB1774F7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32\...\{30D97A69-3C0F-4552-9A72-60E591B210C7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{FDC38876-AD68-4616-942D-AC3194DAB0A3}) (Version: 16.5.29814 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{79DDA8FF-26D4-498A-B8D7-5DFA86EAD686}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{7DB17E2A-450D-4DBD-9C17-545A95804B0C}) (Version: 16.5.29814 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{C309FC3D-20C2-4F48-AF46-E59674774602}) (Version: 16.5.29814 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{692A0FB3-E6A2-4D41-AC03-4136B4312DC0}) (Version: 16.3.29209 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx64 (HKLM\...\{ABBD10CA-0CFA-4D76-B033-F76C55A54336}) (Version: 16.4.29411 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx86 (HKLM-x32\...\{E47B4703-2337-4ED0-BA24-3EC08D643684}) (Version: 16.4.29411 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{4D33D909-B071-41D2-B305-96B8586F911E}) (Version: 16.5.29814 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{A0FCE4F1-71FB-4910-872E-FCBF5E323491}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32\...\{0A54CADD-CBA1-4BC9-A134-6C9F91F41B9A}) (Version: 16.5.29521 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
Xamarin Offline Packages (HKLM-x32\...\{6E163594-A47C-490F-B656-F81461FDCBAE}) (Version: 16.5.49 - Xamarin) Hidden

Packages:
=========
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\advancedmicrodevicesinc-2.59462344778c5_10.19.10004.0_x64__0a9344xs7nr4m [2020-04-17] (Advanced Micro Devices Inc.)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.35.2.0_x86__kgqvnymyfvs32 [2020-04-19] (king.com)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2020-04-17] (LinkedIn)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-04-17] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-04-17] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.4030.0_x64__8wekyb3d8bbwe [2020-04-19] (Microsoft Studios) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-04-17] (Microsoft Corporation) [MS Ad]
MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_2.2.18.0_x64__qmba6cd70vzyy [2020-04-17] (ASUSTeK COMPUTER INC.) [Startup Task]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.7.199.0_x64__dt26b99r8h8gj [2020-04-17] (Realtek Semiconductor Corp)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2020-03-04] (Notepad++ -> )
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-20] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-04-06] (Google LLC -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2020-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-20] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

2020-04-18 15:04 - 2020-04-18 15:04 - 098275328 _____ () [Archivo no firmado] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2020-04-18 15:04 - 2020-04-18 15:04 - 000092672 _____ () [Archivo no firmado] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2020-04-18 15:04 - 2020-04-18 15:04 - 003922432 _____ () [Archivo no firmado] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000017920 _____ () [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 003567616 _____ () [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2020-04-18 15:04 - 2020-04-18 15:04 - 000547840 _____ (The Chromium Authors) [Archivo no firmado] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000031744 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000039424 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000031744 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000413696 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000025088 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000025088 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000023552 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000519168 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 001431040 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 001180672 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000135680 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2020-04-01 15:10 - 2020-04-01 15:10 - 006010880 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 006345216 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 001078272 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000313856 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 004000256 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 003802624 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000171008 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 001083904 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000205312 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000329728 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000113152 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000376320 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 092323328 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 005560832 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000463360 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000188416 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 002888704 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000053760 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000059392 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000017408 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000287232 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000329216 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000136192 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000089088 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000312320 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2019-12-04 04:00 - 2019-12-04 04:00 - 000017920 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2020-04-01 15:10 - 2020-04-01 15:10 - 000085504 _____ (The Qt Company Ltd.) [Archivo no firmado] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2020-04-18 13:13 - 2020-04-18 13:15 - 000000440 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\GtkSharp\2.12\bin;C:\Program Files\dotnet\;C:\Program Files\Microsoft SQL Server\130\Tools\Binn\;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\170\Tools\Binn\;C:\Program Files\Microsoft Network Monitor 3\
HKU\S-1-5-21-2921227636-495831580-2645663862-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\LordNet\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img13.jpg
DNS Servers: 80.58.61.250 - 80.58.61.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.

Network Binding:
=============
Wi-Fi: Microsoft Network Monitor 3 Driver -> ms_netmon (enabled) 

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKU\S-1-5-21-2921227636-495831580-2645663862-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-2921227636-495831580-2645663862-1001\...\StartupApproved\Run: => "OneDrive"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [SNMPTRAP-In-UDP] => (Block) %SystemRoot%\system32\snmptrap.exe Ningún archivo
FirewallRules: [SNMPTRAP-In-UDP-NoScope] => (Block) %SystemRoot%\system32\snmptrap.exe Ningún archivo
FirewallRules: [PNRPMNRS-PNRP-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [PNRPMNRS-SSDPSrv-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [CoreNet-DHCPV6-In] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [CoreNet-DHCPV6-Out] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RVM-VDS-In-TCP-NoScope] => (Block) %SystemRoot%\system32\vds.exe Ningún archivo
FirewallRules: [RVM-VDSLDR-In-TCP-NoScope] => (Block) %SystemRoot%\system32\vdsldr.exe Ningún archivo
FirewallRules: [RVM-RPCSS-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RVM-VDS-In-TCP] => (Block) %SystemRoot%\system32\vds.exe Ningún archivo
FirewallRules: [RVM-VDSLDR-In-TCP] => (Block) %SystemRoot%\system32\vdsldr.exe Ningún archivo
FirewallRules: [RVM-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteSvcAdmin-In-TCP-NoScope] => (Block) %SystemRoot%\system32\services.exe Ningún archivo
FirewallRules: [RemoteSvcAdmin-RPCSS-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteSvcAdmin-In-TCP] => (Block) %SystemRoot%\system32\services.exe Ningún archivo
FirewallRules: [RemoteSvcAdmin-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MsiScsi-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MsiScsi-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [vm-monitoring-rpc] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [vm-monitoring-dcom] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteTask-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteTask-RPCSS-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteTask-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteTask-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [ProximityUxHost-Sharing-In-TCP-NoScope] => (Block) %SystemRoot%\system32\proximityuxhost.exe Ningún archivo
FirewallRules: [ProximityUxHost-Sharing-Out-TCP-NoScope] => (Block) %SystemRoot%\system32\proximityuxhost.exe Ningún archivo
FirewallRules: [NETDIS-SSDPSrv-In-UDP-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [NETDIS-FDPHOST-In-UDP-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [NETDIS-DAS-In-UDP-Active] => (Block) %SystemRoot%\system32\dashost.exe Ningún archivo
FirewallRules: [NETDIS-LLMNR-In-UDP-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [NETDIS-FDRESPUB-WSD-In-UDP-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [NETDIS-SSDPSrv-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [NETDIS-SSDPSrv-In-UDP-Teredo] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [NETDIS-FDPHOST-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [NETDIS-DAS-In-UDP] => (Block) %SystemRoot%\system32\dashost.exe Ningún archivo
FirewallRules: [NETDIS-LLMNR-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [NETDIS-FDRESPUB-WSD-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [EventForwarder-In-TCP] => (Block) %SystemRoot%\system32\NetEvtFwdr.exe Ningún archivo
FirewallRules: [EventForwarder-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteFwAdmin-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteFwAdmin-RPCSS-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteFwAdmin-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteFwAdmin-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WFDPRINT-DAFWSD-Out-Active] => (Block) %SystemRoot%\system32\dashost.exe Ningún archivo
FirewallRules: [WFDPRINT-SPOOL-Out-Active] => (Block) %SystemRoot%\system32\spoolsv.exe Ningún archivo
FirewallRules: [WFDPRINT-SCAN-Out-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Netlogon-TCP-RPC-In] => (Block) %SystemRoot%\System32\lsass.exe Ningún archivo
FirewallRules: [TPMVSCMGR-RPCSS-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [TPMVSCMGR-Server-In-TCP-NoScope] => (Block) %SystemRoot%\system32\RmtTpmVscMgrSvr.exe Ningún archivo
FirewallRules: [TPMVSCMGR-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [TPMVSCMGR-Server-In-TCP] => (Block) %SystemRoot%\system32\RmtTpmVscMgrSvr.exe Ningún archivo
FirewallRules: [RemoteEventLogSvc-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteEventLogSvc-RPCSS-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteEventLogSvc-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteEventLogSvc-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Collab-PNRP-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Collab-PNRP-SSDPSrv-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WirelessDisplay-Out-TCP] => (Block) %systemroot%\system32\WUDFHost.exe Ningún archivo
FirewallRules: [WirelessDisplay-Out-UDP] => (Block) %systemroot%\system32\WUDFHost.exe Ningún archivo
FirewallRules: [WMI-RPCSS-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMI-WINMGMT-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMI-ASYNC-In-TCP-NoScope] => (Block) %systemroot%\system32\wbem\unsecapp.exe Ningún archivo
FirewallRules: [WMI-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMI-WINMGMT-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMI-ASYNC-In-TCP] => (Block) %systemroot%\system32\wbem\unsecapp.exe Ningún archivo
FirewallRules: [MSDTC-In-TCP-NoScope] => (Block) %SystemRoot%\system32\msdtc.exe Ningún archivo
FirewallRules: [MSDTC-KTMRM-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MSDTC-RPCSS-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MSDTC-In-TCP] => (Block) %SystemRoot%\system32\msdtc.exe Ningún archivo
FirewallRules: [MSDTC-KTMRM-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MSDTC-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteAssistance-In-TCP-EdgeScope] => (Block) %SystemRoot%\system32\msra.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [RemoteAssistance-PnrpSvc-UDP-In-EdgeScope] => (Block) %systemroot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteAssistance-RAServer-In-TCP-NoScope-Active] => (Block) %SystemRoot%\system32\raserver.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [RemoteAssistance-DCOM-In-TCP-NoScope-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteAssistance-In-TCP-EdgeScope-Active] => (Block) %SystemRoot%\system32\msra.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [RemoteAssistance-SSDPSrv-In-UDP-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active] => (Block) %systemroot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Wininit-Shutdown-In-Rule-TCP-RPC] => (Block) %systemroot%\system32\wininit.exe Ningún archivo
FirewallRules: [Wininit-Shutdown-In-Rule-TCP-RPC-EPMapper] => (Block) %systemroot%\system32\wininit.exe Ningún archivo
FirewallRules: [MCX-SSDPSrv-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MCX-QWave-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MCX-QWave-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MCX-TERMSRV-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In] => (Block) %systemroot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In] => (Block) %systemroot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [FPS-SpoolSvc-In-TCP-NoScope] => (Block) %SystemRoot%\system32\spoolsv.exe Ningún archivo
FirewallRules: [FPS-RPCSS-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [FPS-SpoolSvc-In-TCP] => (Block) %SystemRoot%\system32\spoolsv.exe Ningún archivo
FirewallRules: [FPS-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [FPS-LLMNR-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WPDMTP-SSDPSrv-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMP-In-UDP-x86] => (Block) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMP-In-UDP] => (Block) %ProgramFiles%\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-QWave-In-UDP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMPNSS-QWave-In-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMPNSS-WMP-In-UDP-NoScope] => (Block) %PROGRAMFILES%\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-In-UDP-NoScope] => (Block) %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe Ningún archivo
FirewallRules: [WMPNSS-In-TCP-NoScope] => (Block) %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe Ningún archivo
FirewallRules: [WMPNSS-QWave-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMPNSS-QWave-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMPNSS-SSDPSrv-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMPNSS-WMP-In-UDP] => (Block) %PROGRAMFILES%\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-In-UDP] => (Block) %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe Ningún archivo
FirewallRules: [WMPNSS-In-TCP] => (Block) %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe Ningún archivo
FirewallRules: [{A2F1CE13-6C6C-455F-9FDA-5E95BAD4C407}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{43619814-62B2-4BD5-AF9D-4BD428A069E4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4B898D89-DDEF-4584-9119-A7FBCA9415D0}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{597A88DF-95D0-4709-A770-B98C652DE679}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{68A39C83-A789-45EC-A8F5-9308D05E1662}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{E838EE4C-DA12-4BE0-AE04-27AF3EE0CD70}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{9EC19A76-7D15-4BE8-B887-51E8C1DEB0FE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3677B0E0-9963-4D0A-9C31-ED9786B88E31}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{49686D46-81D2-4BFF-B0AC-2C04F50E914E}] => (Allow) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_4ff231d14fc1339d\ASUSLinkRemote\AsusLinkRemoteAgent.exe (ASUSTek Computer Inc. -> ASUSTeK COMPUTER INC.)
FirewallRules: [{FB136C17-704A-4F89-9F30-B1F5FAC48CBD}] => (Block) LPort=28
FirewallRules: [TCP Query User{A5BA30C0-901C-4800-8273-70C73CDC939A}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe
FirewallRules: [UDP Query User{0CCFCE59-8182-4AD3-BBB9-8C3672016EF9}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe
FirewallRules: [{B302CE9F-D8C1-4530-8C71-D426E6005029}] => (Block) LPort=1
FirewallRules: [{72637A50-0A56-4D01-8668-B9D7C8A1EF23}] => (Block) LPort=1
FirewallRules: [TCP Query User{75747846-4B4A-461B-A53D-D46DBA272B00}C:\program files (x86)\common files\oracle\java\javapath_target_9408453\javaw.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_9408453\javaw.exe
FirewallRules: [UDP Query User{6FD382C5-0E10-4E63-B9E5-F46D911930C3}C:\program files (x86)\common files\oracle\java\javapath_target_9408453\javaw.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_9408453\javaw.exe

==================== Puntos de Restauración =========================

19-04-2020 20:22:39 Installed Microsoft Network Monitor 3.4
21-04-2020 00:47:27 Removed PuTTY release 0.73 (64-bit)

==================== Dispositivos defectuosos en el Administrador de dispositivos ============

Name: Microsoft Wi-Fi Direct Virtual Adapter #3
Description: Adaptador virtual de Wi-Fi Direct de Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (04/21/2020 12:47:27 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina IVssAsrWriterBackup::GetDiskComponents. HR = 0x8007085a, El servicio Estación de trabajo no ha sido iniciado.
.


Operación:
   Evento OnIdentify
   Recopilando datos del escritor

Contexto:
   Contexto de ejecución: ASR Writer
   Id. de clase del escritor: {be000cbe-11fe-4426-9c58-531aa6355fc4}
   Nombre del escritor: ASR Writer
   Id. de instancia del escritor: {af5c37da-ebc0-4626-a32a-13e281f80feb}

Error: (04/21/2020 12:18:21 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center no pudo validar al autor de la llamada con el error %1.

Error: (04/21/2020 12:15:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: mmc.exe, versión: 10.0.18362.1, marca de tiempo: 0x288c7033
Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.18362.778, marca de tiempo: 0xafa78a6a
Código de excepción: 0x00000000
Desplazamiento de errores: 0x000000000003a799
Identificador del proceso con errores: 0x878
Hora de inicio de la aplicación con errores: 0x01d617610021b13c
Ruta de acceso de la aplicación con errores: C:\WINDOWS\system32\mmc.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNELBASE.dll
Identificador del informe: 47f39eec-76e8-4932-9455-a641b411669d
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (04/21/2020 12:12:56 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa mmc.exe (versión 10.0.18362.1) dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible sobre el problema, comprueba el historial de problemas en el panel de control de seguridad y mantenimiento.

Id. de proceso: 200c

Hora de Inicio: 01d6175c0155a8e8

Hora de finalización: 15

Ruta de la aplicación: C:\Windows\System32\mmc.exe

Id. de informe: 3a4b8760-1013-4e08-8208-74cd68f0113b

Nombre completo del paquete con errores: 

Id. de la aplicación relativa al paquete con errores: 

Tipo de bloqueo: Cross-thread

Error: (04/20/2020 11:56:25 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center no pudo validar al autor de la llamada con el error %1.

Error: (04/20/2020 11:49:08 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2002) (User: NT AUTHORITY)
Description: No se puede abrir el objeto de rendimiento del servicio del redirector. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/20/2020 11:49:08 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: NT AUTHORITY)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/20/2020 11:43:09 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2002) (User: NT AUTHORITY)
Description: No se puede abrir el objeto de rendimiento del servicio del redirector. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.


Errores del sistema:
=============
Error: (04/21/2020 12:16:18 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 0:14:50 del ‎21/‎04/‎2020 resultó inesperado.

Error: (04/20/2020 12:53:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Detección SSDP terminó inesperadamente. Esto se ha repetido 2 veces. Se realizará la siguiente acción correctora en 100 milisegundos: Reiniciar el servicio.

Error: (04/20/2020 12:53:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Detección SSDP terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 100 milisegundos: Reiniciar el servicio.

Error: (04/20/2020 12:45:14 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: El cierre anterior del sistema a las 12:30:08 del ‎20/‎04/‎2020 resultó inesperado.

Error: (04/20/2020 01:20:04 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Servicio del sistema de notificaciones de inserción de Windows terminó inesperadamente. Esto se ha repetido 2 veces. Se realizará la siguiente acción correctora en 300000 milisegundos: Reiniciar el servicio.

Error: (04/20/2020 01:14:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Detección SSDP terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 100 milisegundos: Reiniciar el servicio.

Error: (04/20/2020 01:13:59 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Servicio del sistema de notificaciones de inserción de Windows terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 120000 milisegundos: Reiniciar el servicio.

Error: (04/20/2020 12:59:03 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio ASUS Software Manager terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio.


Windows Defender:
===================================
Date: 2020-04-20 23:10:45.050
Description: 
El acceso controlado a carpetas bloqueó C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe para que no pueda modificar %common_appdata%\ASUS\ASUS System Control Interface\AsusSoftwareManager\AsusLiveUpdate\Temp\.
Hora de detección: 2020-04-20T21:10:45.049Z
Usuario: NT AUTHORITY\SYSTEM
Ruta de acceso: %common_appdata%\ASUS\ASUS System Control Interface\AsusSoftwareManager\AsusLiveUpdate\Temp\
Nombre del proceso: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Versión de inteligencia de seguridad: 1.313.1959.0
Versión del motor: 1.1.16900.4
Versión del producto: 4.18.2003.8

Date: 2020-04-20 22:39:58.601
Description: 
El acceso controlado a carpetas bloqueó C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_9408453\javaw.exe para que no pueda modificar %common_appdata%\Oracle\Java\.oracle_jre_usage\.
Hora de detección: 2020-04-20T20:39:58.600Z
Usuario: DSPANACEA\LordNet
Ruta de acceso: %common_appdata%\Oracle\Java\.oracle_jre_usage\
Nombre del proceso: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_9408453\javaw.exe
Versión de inteligencia de seguridad: 1.313.1959.0
Versión del motor: 1.1.16900.4
Versión del producto: 4.18.2003.8

Date: 2020-04-20 22:36:44.732
Description: 
El acceso controlado a carpetas bloqueó C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_9408453\javaw.exe para que no pueda modificar %temp%\jna-2016977480\.
Hora de detección: 2020-04-20T20:36:44.732Z
Usuario: DSPANACEA\LordNet
Ruta de acceso: %temp%\jna-2016977480\
Nombre del proceso: C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_9408453\javaw.exe
Versión de inteligencia de seguridad: 1.313.1959.0
Versión del motor: 1.1.16900.4
Versión del producto: 4.18.2003.8

Date: 2020-04-20 22:15:45.520
Description: 
El acceso controlado a carpetas bloqueó C:\Users\LordNet\AppData\Local\Temp\is-6HF4S.tmp\Advanced_IP_Scanner_2.5.3850.tmp para que no pueda modificar C:\Users\LordNet.
Hora de detección: 2020-04-20T20:15:45.519Z
Usuario: DSPANACEA\LordNet
Ruta de acceso: C:\Users\LordNet
Nombre del proceso: C:\Users\LordNet\AppData\Local\Temp\is-6HF4S.tmp\Advanced_IP_Scanner_2.5.3850.tmp
Versión de inteligencia de seguridad: 1.313.1959.0
Versión del motor: 1.1.16900.4
Versión del producto: 4.18.2003.8

Date: 2020-04-20 22:15:32.523
Description: 
El acceso controlado a carpetas bloqueó C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe para que no pueda modificar %temp%\.
Hora de detección: 2020-04-20T20:15:32.522Z
Usuario: DSPANACEA\LordNet
Ruta de acceso: %temp%\
Nombre del proceso: C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Versión de inteligencia de seguridad: 1.313.1959.0
Versión del motor: 1.1.16900.4
Versión del producto: 4.18.2003.8

Date: 2020-04-19 20:30:05.818
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.313.1875.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.16900.4
Código de error: 0x80240438
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. 

Date: 2020-04-19 13:51:50.155
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.313.1831.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.16900.4
Código de error: 0x80240438
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. 

CodeIntegrity:
===================================

Date: 2020-04-18 16:32:07.541
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\LordNet\Downloads\SysinternalsSuite\PORTMSYS.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-04-18 16:09:14.522
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\LordNet\AppData\Local\Temp\Temp1_SysinternalsSuite.zip\PORTMSYS.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-04-18 16:08:03.281
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\LordNet\Downloads\PORTMSYS.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-04-17 07:08:00.370
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2020-04-17 07:01:56.334
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2020-04-17 07:01:56.165
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2020-04-17 07:00:19.975
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2020-04-17 07:00:19.971
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

==================== Información de la memoria =========================== 

BIOS: American Megatrends Inc. X509DA.306 10/11/2019
Placa base: ASUSTeK COMPUTER INC. X509DA
Procesador: AMD Ryzen 5 3500U with Radeon Vega Mobile Gfx 
Porcentaje de memoria en uso: 74%
RAM física total: 6091.64 MB
RAM física disponible: 1568.73 MB
Virtual total: 11979.64 MB
Virtual disponible: 4448.43 MB

==================== Unidades ================================

Drive c: (OS) (Fixed) (Total:237.57 GB) (Free:157.35 GB) NTFS

\\?\Volume{628da373-7b87-446b-9076-6081dfa70073}\ (RECOVERY) (Fixed) (Total:0.63 GB) (Free:0.22 GB) NTFS
\\?\Volume{9c318daf-0487-4dbf-b682-ed999f11067b}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: FC959EB8)

Partition: GPT.

==================== Final de Addition.txt =======================`Texto preformateado``Texto preformateado`
    
texto preformateado con sangría de 4 espacios

Miguelgrado · 21 Abril, 2020 11:52

En la captura que me pusiste…al lado derecho que mas informacion pone?

De todas maneras es un proceso local de un archivo legitimo de windows, por lo que no habria problema

LordNet_Black · 21 Abril, 2020 11:54

lo que sale en la captura es lo que tengo

Miguelgrado · 21 Abril, 2020 12:05

A mi me sale mas informacion al lado derecho…

De todas maneras, no le veo mas problema.

Puedes usar glaswire y ahi veras todo lo que se conecta y a donde exactamente

LordNet_Black · 24 Abril, 2020 11:15

vale gracias por la ayuda

system · 26 Abril, 2020 11:15

Este tema se cerró automáticamente 2 días después de la última publicación. No se permiten nuevas respuestas.