Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 12-07-2023 Ejecutado por Santiago (administrador) sobre DESKTOP-BBP14QM (Micro-Star International Co., Ltd. MS-7C88) (12-07-2023 18:08:37) Ejecutado desde C:\Users\Santiago\OneDrive\Escritorio\FRST64.exe Perfiles cargados: Santiago Plataforma: Microsoft Windows 11 Pro Insider Preview Versión 22H2 25336.1010 (X64) Idioma: Español (España, internacional) -> Español (México) Navegador predeterminado: "C:\Users\Santiago\AppData\Local\Chromium\Application\chrome.exe" --single-argument %1 Modo de Inicio: Normal ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) (BELLSOFT -> BellSoft) C:\Program Files\BellSoft\LibericaJDK-20-Full\bin\javaw.exe (C:\Program Files (x86)\Bright VPN\net_updater32.exe ->) (Bright Data Ltd -> BrightData Ltd. (certified)) C:\ProgramData\BrightData\6cca5f7f15056f66a3211bbbd92076486a2361bb\brightdata.exe (C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe ->) (GOG sp. z o.o -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe <2> (C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe ->) (GOG sp. z o.o -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe (C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe ->) (Python Software Foundation -> Python Software Foundation) C:\Program Files (x86)\GOG Galaxy\python\python.exe <7> (C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe (C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe ->) (Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <5> (C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe (C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe (C:\Program Files (x86)\Stardock\Start11\Start11Srv.exe ->) (STARDOCK SYSTEMS, INC. -> Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start11\Start11_64.exe <2> (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\PowerToys\modules\Peek\PowerToys.Peek.UI.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.67\msedgewebview2.exe <6> (C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\AlwaysOnTop\PowerToys.AlwaysOnTop.exe (C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\Awake\PowerToys.Awake.exe (C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\ColorPicker\PowerToys.ColorPickerUI.exe (C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\FancyZones\PowerToys.FancyZones.exe (C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\KeyboardManager\KeyboardManagerEngine\PowerToys.KeyboardManagerEngine.exe (C:\Program Files\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\PowerOCR\PowerToys.PowerOCR.exe (C:\Program Files\Tablet\Wacom\WacomHost.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> ) C:\Program Files\Tablet\Wacom\Wacom_UpdateUtil.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (C:\Users\Santiago\AppData\Local\Steam Achievement Notifier (V1.8)\SteamAchievementNotifierV1.84.exe ->) (Jackson0ne) [Archivo no firmado] C:\Users\Santiago\AppData\Local\Temp\SteamAchievementNotifier(V1.8)\Steam Achievement Notifier (V1.84).exe <4> (C1D09E0B-E536-446C-B344-2F500D733EAA -> ) C:\Program Files\WindowsApps\GlobalDelightTechnologies.Boom3D_1.5.8585.0_x64__b7pwcagxvespy\Boom3D\Boom3D.exe (D:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe ->) (Skutta, Kristjan -> ) D:\SteamLibrary\steamapps\common\wallpaper_engine\bin\webwallpaper32.exe <5> (Discord Inc. -> Discord Inc.) C:\Users\Santiago\AppData\Local\DiscordCanary\app-1.0.72\DiscordCanary.exe <6> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <7> (explorer.exe ->) () [Archivo no firmado] C:\Users\Santiago\OneDrive\Escritorio\Cosas\ZoomInClass\ZoomInClass.exe (explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe (explorer.exe ->) (GOG sp. z o.o -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (explorer.exe ->) (JetBrains s.r.o. -> JetBrains) C:\Users\Santiago\AppData\Local\JetBrains\Toolbox\bin\jetbrains-toolbox.exe (explorer.exe ->) (maximmax42) [Archivo no firmado] C:\Users\Santiago\AppData\Roaming\CustomRP\CustomRP.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\launcher\PowerToys.PowerLauncher.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\modules\Peek\PowerToys.Peek.UI.exe (explorer.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe (explorer.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files\Razer\RzAppEngine\rzappengine.exe <7> (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (SIA AVB Disc Soft -> Disc Soft FZE LLC) C:\Program Files\reWASD\reWASDEngine.exe (explorer.exe ->) (Skutta, Kristjan -> ) D:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe (explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (GOG sp. z o.o -> GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe (InstallShield Software Corporation) [Archivo no firmado] C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe (Jackson0ne) [Archivo no firmado] [El archivo está en uso] C:\Users\Santiago\AppData\Local\Steam Achievement Notifier (V1.8)\SteamAchievementNotifierV1.84.exe (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\SystemSettingsAdminFlows.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DiscSoftBusServicePro.exe (services.exe ->) (Bright Data Ltd -> BrightData Ltd. (certified)) C:\Program Files (x86)\Bright VPN\net_updater32.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\WINDOWS\System32\DbxSvc.exe (services.exe ->) (Even Balance, Inc. -> ) C:\WINDOWS\SysWOW64\PnkBstrA.exe (services.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe <2> (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (JetBrains s.r.o. -> JetBrains s.r.o) C:\Program Files\JetBrains\ETW Host\16\JetBrains.Etw.Collector.Host.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <5> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_5218d4313424e84c\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2> (services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe (services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe (services.exe ->) (Razer USA Ltd. -> Razer) C:\Program Files (x86)\Razer\RzUpdateEngineService\RzUpdateEngineService.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\WINDOWS\RTUWPSrvcMain.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_65deddb7e1e48c48\RtkAudUService64.exe <2> (services.exe ->) (SIA AVB Disc Soft -> Disc Soft Ltd) C:\Program Files\reWASD\reWASDService.exe (services.exe ->) (Sophos Ltd -> The OpenVPN Project) C:\Program Files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpnserv.exe (services.exe ->) (STARDOCK SYSTEMS, INC. -> Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start11\Start11Srv.exe (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (services.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (services.exe ->) (Windscribe Limited -> Windscribe Limited) C:\Program Files (x86)\Windscribe\WindscribeService.exe (services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe (sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2325.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt\IGCC.exe (svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\PowerToys\PowerToys.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SecHealthUI_1000.25873.9001.0_x64__8wekyb3d8bbwe\SecHealthUI.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_523.17400.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\CastSrv.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\SysWOW64\wbem\WmiPrvSE.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.25336.1010_none_6c628e8dc3362d0e\TiWorker.exe (svchost.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\WINDOWS\System32\SecurityHealth\1.0.2306.10002-0\SecurityHealthHost.exe <2> (SystemSettingsAdminFlows.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\Dism\DismHost.exe Error al acceder al proceso -> HotPatch ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_65deddb7e1e48c48\RtkAudUService64.exe [1650984 2023-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102832 2022-04-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [117864 2021-03-24] (VMware, Inc. -> VMware, Inc.) HKLM-x32\...\Run: [openvpn-gui] => C:\Program Files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpn-gui.exe [620088 2017-07-03] (Sophos Ltd -> ) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11327200 2023-06-24] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [543736 2023-07-05] (Razer USA Ltd. -> Razer Inc.) HKLM-x32\...\Run: [ISUSScheduler] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [69632 2004-04-13] (InstallShield Software Corporation) [Archivo no firmado] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2022-09-15] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [pEpCOMServerAdapter.exe] => C:\Program Files (x86)\pEp\pEpCOMServerAdapter.exe (Ningún archivo) HKLM\...\Winlogon: [Shell] explorer.exe,cmd /C "start "" "C:\Program Files (x86)\Bright VPN\Bright VPN.exe" --silent" <=== ATENCIÓN HKLM-x32\...\Winlogon: [Shell] C:\Windows\SysWOW64\explorer.exe [4564232 2023-04-14] (Microsoft Windows -> Microsoft Corporation) <=== ATENCIÓN HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607544 2023-07-11] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607544 2023-07-11] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1789357901-601651562-3446351574-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607544 2023-07-11] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1789357901-601651562-3446351574-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3562248 2023-06-28] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-21-1789357901-601651562-3446351574-1001\...\Run: [ISUSPM Startup] => c:\Program Files (x86)\Common Files\installshield\updateservice\ISUSPM.exe [196608 2004-04-17] (InstallShield Software Corporation) [Archivo no firmado] HKU\S-1-5-21-1789357901-601651562-3446351574-1001\...\Run: [Discord] => C:\Users\Nadia\AppData\Local\Discord\Update.exe [1525032 2022-08-08] (Discord Inc. -> GitHub) HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4371816 2023-07-10] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3562248 2023-06-28] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [RzAppEngine] => C:\Program Files\Razer\RzAppEngine\rzappengine.exe [1641840 2021-10-06] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files\DAEMON Tools Pro\DTAgent.exe [4765040 2019-06-07] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [ISUSPM Startup] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [196608 2004-04-17] (InstallShield Software Corporation) [Archivo no firmado] HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13872608 2023-06-22] (GOG sp. z o.o -> GOG.com) HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [WallpaperEngine] => D:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe [3050080 2022-10-22] (Skutta, Kristjan -> ) HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [electron.app.Steam Achievement Notifier (V1.84)] => C:\Users\Santiago\OneDrive\Escritorio\Cosas\Steam Achievement Notifier\SANLauncherV1.84.exe [116811572 2023-02-05] () [Archivo no firmado] HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [Discord] => "C:\Users\Santiago\AppData\Local\Discord\Update.exe" --processStart Discord.exe (Ningún archivo) HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [DiscordCanary] => C:\Users\Santiago\AppData\Local\DiscordCanary\Update.exe [1525016 2023-04-19] (Discord Inc. -> GitHub) HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [reWASD Engine] => C:\Program Files\reWASD\reWASDEngine.exe [26438904 2023-05-31] (SIA AVB Disc Soft -> Disc Soft FZE LLC) HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [Docker Desktop] => C:\Program Files\Docker\Docker\Docker Desktop.exe [280880 2023-06-21] (Docker Inc -> Docker Inc.) HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [JetBrains Toolbox] => C:\Users\Santiago\AppData\Local\JetBrains\Toolbox\bin\jetbrains-toolbox.exe [937744 2023-06-27] (JetBrains s.r.o. -> JetBrains) HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Run: [DiscordPTB] => "C:\Users\Santiago\AppData\Local\DiscordPTB\Update.exe" --processStart DiscordPTB.exe (Ningún archivo) HKU\S-1-5-21-1789357901-601651562-3446351574-1002\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-1789357901-601651562-3446351574-1007\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607544 2023-07-11] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1789357901-601651562-3446351574-1007\...\Run: [Discord] => C:\Users\bianq\AppData\Local\Discord\Update.exe [1525016 2022-12-09] (Discord Inc. -> GitHub) HKU\S-1-5-21-1789357901-601651562-3446351574-1007\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13872608 2023-06-22] (GOG sp. z o.o -> GOG.com) HKU\S-1-5-21-1789357901-601651562-3446351574-1007\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37027792 2023-06-28] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1789357901-601651562-3446351574-1012\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607544 2023-07-11] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1789357901-601651562-3446351574-1012\...\Run: [reWASD Engine] => C:\Program Files\reWASD\reWASDEngine.exe [26438904 2023-05-31] (SIA AVB Disc Soft -> Disc Soft FZE LLC) HKU\S-1-5-21-1789357901-601651562-3446351574-1012\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13872608 2023-06-22] (GOG sp. z o.o -> GOG.com) HKU\S-1-5-21-1789357901-601651562-3446351574-1012\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37027792 2023-06-28] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-18\...\Run: [RazerAxon] => C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe [395056 2023-06-28] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3562248 2023-06-28] (Razer USA Ltd. -> Razer Inc.) HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\WINDOWS\system32\hpinkstsE311LM.dll [392200 2019-03-15] (HP Inc -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{7D2B3E1D-D096-4594-9D8F-A6667F12E0AC}] -> C:\Program Files\Razer\RzAppEngine\1.49.0.0\Installer\chrmstp.exe [2022-03-30] (Razer USA Ltd. -> Razer Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-29] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2023-05-28] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\StartGladosBot.lnk [2023-04-16] ShortcutTarget: StartGladosBot.lnk -> C:\Users\Public\Documents\Bot Glados\Start.bat () [Archivo no firmado] Startup: C:\Users\bianq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk [2023-06-05] ShortcutTarget: Enviar a OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) Startup: C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CustomRP.lnk [2022-04-18] ShortcutTarget: CustomRP.lnk -> C:\Users\Santiago\AppData\Roaming\CustomRP\CustomRP.exe (maximmax42) [Archivo no firmado] <==== ATENCIÓN Startup: C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GladosMusicBotStart.lnk [2023-04-16] ShortcutTarget: GladosMusicBotStart.lnk -> C:\Users\Santiago\OneDrive\Escritorio\BotDeMusica\Start.bat (Ningún archivo) Startup: C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft-Rewards-Extension-Cleaner.lnk [2023-06-19] ShortcutTarget: Microsoft-Rewards-Extension-Cleaner.lnk -> C:\Users\Santiago\OneDrive\Escritorio\MSRewardsExtensionCleaner-main\runsilent.vbs (Ningún archivo) Startup: C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ZoomInClass.lnk [2022-03-31] ShortcutTarget: ZoomInClass.lnk -> C:\Users\Santiago\OneDrive\Escritorio\Cosas\ZoomInClass\ZoomInClass.exe () [Archivo no firmado] GroupPolicy: Restricción ? <==== ATENCIÓN Policies: C:\ProgramData\NTUSER.pol: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ================= (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {980921BA-FE2C-40C9-B3D3-D9C416C847E2} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5008328 2023-04-14] (Microsoft Windows -> Microsoft Corporation) Task: {28E2AB71-FF0A-427C-84A8-84EE47D5F0F9} - System32\Tasks\Driver Booster SkipUAC (Santiago) => C:\Program Files (x86)\IObit\Driver Booster\10.0.0\DriverBooster.exe [8932328 2022-09-29] (IObit CO., LTD -> IObit) Task: {45978BED-28FD-4C52-AE94-01C7A9D0C8B4} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-13] (Dropbox, Inc -> Dropbox, Inc.) Task: {13C73501-DE6B-4214-9AC7-BD08BB5A5593} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-13] (Dropbox, Inc -> Dropbox, Inc.) Task: {AA361AF9-A066-4493-85E6-06BA23C76F25} - System32\Tasks\ETW Host Service Updater v16 => C:\Program Files\JetBrains\ETW Host\16\Updater\EtwHostServiceUpdater.exe [192512 2023-06-22] (JetBrains s.r.o.) [Archivo no firmado] Task: {A8079A6B-2D98-4F2E-AFA1-DF15CD9945EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-31] (Google LLC -> Google LLC) Task: {763CC320-6328-476E-9AA4-D1DA45C84E95} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-31] (Google LLC -> Google LLC) Task: {742D2034-2A80-4B04-BB83-A35965A5186F} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002032 2022-12-07] (Intel Corporation -> Intel Corporation) Task: {8973D987-3F8E-44A3-BE2E-8556ED2C17AC} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002032 2022-12-07] (Intel Corporation -> Intel Corporation) Task: {2B0DCE3B-F682-4217-9768-B01C77F4A60D} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Ningún archivo) Task: {5B87D76E-98A6-4764-A9DE-358950B82D38} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616792 2023-07-01] (Microsoft Corporation -> Microsoft Corporation) Task: {799C54FB-1492-464B-AE18-D274FAAA3E44} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616792 2023-07-01] (Microsoft Corporation -> Microsoft Corporation) Task: {53231416-484E-4CA7-AAA4-B613F51898C1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-07-01] (Microsoft Corporation -> Microsoft Corporation) Task: {32C2360F-B21E-47A1-91DE-942465555F96} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-07-01] (Microsoft Corporation -> Microsoft Corporation) Task: {6A6D64C9-C1C9-4AFF-8FDE-752C8595DAFA} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [164752 2023-07-01] (Microsoft Corporation -> Microsoft Corporation) Task: {79A9E9B7-EC67-4EF5-826E-D4FEDE645F0B} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (Ningún archivo) Task: {22EE383D-DCEA-4F74-8927-262302384BE6} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Ningún archivo) Task: {65F0C96D-C275-4CE0-9266-A6C0524218A7} - System32\Tasks\Microsoft\Windows\PDE\Conversion Maintenance Task => C:\WINDOWS\system32\efsui.exe [36864 2023-04-04] (Microsoft Windows -> Microsoft Corporation) Task: {B8F105EA-D954-48A9-8580-2AA2201DF892} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => {7750564D-D61C-4557-8A9D-7DF56BDCFF96} Task: {CCBFA379-3519-4859-8E03-BB9126542BB2} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (Ningún archivo) Task: {004E9743-7BBB-40F4-BDF6-5B2367DEEC19} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Ningún archivo) Task: {04EAE3EE-4F5C-423B-9038-7BEFA5AFA4EC} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Ningún archivo) Task: {D94B35A1-BFF8-4321-B43E-9A724EC5224A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Ningún archivo) Task: {3B7DF7E2-CD14-4F7D-A356-1BE536C17FA3} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} Task: {4BBC263B-AA62-4B47-9138-2CAAC95CC6DD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2565F899-CAA6-404F-BE86-B9B128A7ECCD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7AC342EF-48B1-4320-A0D0-22CABFFB7A09} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8C8FB63B-4E85-4DEE-89CA-7BDD97EF8583} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A26A0F8B-D85F-4E08-B063-453F5147C1C2} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {EC88B835-7865-471A-B4BF-C773E851C13A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation) Task: {E3BE2376-3D47-4A8E-AD54-D5B5356E9C99} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {DC675C18-FAFE-481C-9046-48B11705EFB6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3AA7DAEC-D899-498D-89CC-6A3B9AE0D68D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2888668C-4164-4C44-8A93-009FBED774AF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F533BBF8-0425-4E38-A29E-312CAFAF2476} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A5CC8B3D-BA41-489F-8F96-D787F5519F77} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {424ADC16-9422-497D-BE6D-EAAF0D909916} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {4FC9A5FA-7C34-456D-99C4-5543DB0C3BBB} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125624 2023-07-11] (Microsoft Corporation -> Microsoft Corporation) Task: {DD51688E-55F1-4BAB-9003-41125AB3977A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1789357901-601651562-3446351574-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125624 2023-07-11] (Microsoft Corporation -> Microsoft Corporation) Task: {C03F9ADC-DE50-44A2-A4B9-B8B9A16D3C78} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1789357901-601651562-3446351574-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125624 2023-07-11] (Microsoft Corporation -> Microsoft Corporation) Task: {AE6B929D-B93F-4496-B5F6-4E743624D3AA} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1789357901-601651562-3446351574-1007 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125624 2023-07-11] (Microsoft Corporation -> Microsoft Corporation) Task: {DED418F3-8BBA-4E01-9212-C3AF1704A9D0} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1789357901-601651562-3446351574-1012 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125624 2023-07-11] (Microsoft Corporation -> Microsoft Corporation) Task: {05DDDE3B-0D2E-49DA-B878-FAF9BD10075D} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2640904 2023-07-05] (Overwolf Ltd -> Overwolf LTD) Task: {298E25A1-B9AA-4A51-88FC-A091FAB16A40} - System32\Tasks\PowerToys\Autorun for Santiago => C:\Program Files\PowerToys\PowerToys.exe [1104264 2023-07-02] (Microsoft Corporation -> Microsoft Corporation) Task: {C336C526-6B27-466D-AFBA-3206B8E07198} - System32\Tasks\RazerCortexScheduleClean => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [543736 2023-07-05] (Razer USA Ltd. -> Razer Inc.) Task: {7B451DEE-6A74-49C9-B528-D930A44DCE5C} - System32\Tasks\Stardock Start11 Steam Update Checks => "C:\Program Files (x86)\Steam\steamapps\common\Start11\Start11Bootstrap.exe" "/updatecheckonly" (Ningún archivo) Task: {FD825F68-623C-45C4-89F2-E4AAE0C43AC4} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [163840 2023-04-04] (Microsoft Windows -> Microsoft Corporation) -> //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {15C43B07-75CD-4666-84B1-EBDC0F67A72E} - System32\Tasks\ViGEmBus_Updater => C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBus_Updater.exe [1117096 2022-09-27] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{1811af1b-2fde-4fde-8b9e-cd55f82cda83}: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{32fa6512-a217-45ce-98ea-6968735a4423}: [NameServer] 1.1.1.1,1.0.0.1 Tcpip\..\Interfaces\{32fa6512-a217-45ce-98ea-6968735a4423}: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{538df68c-78f6-4362-ba9c-a0cab80ea16b}: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{5b4b3160-549e-47ae-92cc-da2b38c8b71c}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{5b4b3160-549e-47ae-92cc-da2b38c8b71c}: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{65dc2a13-645d-4277-bf75-0668f581fb40}: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{a3ff3900-0cdc-48e6-87ee-15b210618e82}: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{bb51e2e7-073e-477c-b2b7-0c5bd2460ab3}: [DhcpNameServer] 192.168.53.218 Tcpip\..\Interfaces\{c99f191c-f382-4122-ab3d-acaf73ae317b}: [DhcpNameServer] 192.168.61.187 Tcpip\..\Interfaces\{ca2fc865-a1ee-4623-b44f-4cd9b9293f7b}: [DhcpNameServer] 192.168.100.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Santiago\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-14] Edge Notifications: Default -> hxxps://www79.christianivory.pro Edge Extension: (Edge relevant text changes) - C:\Users\Santiago\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-02-16] FireFox: ======== FF DefaultProfile: hinjhaow.68-edition-default FF ProfilePath: C:\Users\Santiago\AppData\Roaming\Waterfox\Profiles\hinjhaow.68-edition-default [2022-05-04] FF ProfilePath: C:\Users\Santiago\AppData\Roaming\Waterfox\Profiles\bl5cniub.default-default [2022-10-05] FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\Santiago\AppData\Roaming\Waterfox\Profiles\bl5cniub.default-default\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2022-05-04] FF Plugin: @java.com/DTPlugin,version=11.202.2 -> C:\Program Files\Unity\Hub\Editor\2021.3.15f1\Editor\Data\PlaybackEngines\AndroidPlayer\OpenJDK\bin\dtplugin\npDeployJava1.dll [2023-07-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.202.2 -> C:\Program Files\Unity\Hub\Editor\2021.3.15f1\Editor\Data\PlaybackEngines\AndroidPlayer\OpenJDK\bin\plugin2\npjp2.dll [2023-07-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-07-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-07-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-07-01] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\Santiago\AppData\Local\Google\Chrome\User Data\Default [2023-05-30] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Santiago\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-30] CHR Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\Santiago\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-01-22] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Santiago\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-01] CHR Extension: (Notificador Chromium) - C:\Users\Santiago\OneDrive\Escritorio\Cosas\Extensiones\Notificador Chromium [2022-11-06] [UpdateUrl:hxxps://raw.githubusercontent.com/PinkLittleKitty/chromium-notifier/master/gupdate.xml] <==== ATENCIÓN CHR HKU\S-1-5-21-1789357901-601651562-3446351574-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] Vivaldi: ======= VIV Profile: C:\Users\Santiago\AppData\Local\Vivaldi\User Data\Default [2022-11-01] VIV HomePage: Default -> chrome-extension://lkpebdhmblffaikggdghmknokfekdlph/ VIV NewTab: Default -> Active:"chrome-extension://lkpebdhmblffaikggdghmknokfekdlph/default.html" VIV DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}&{ddg:Referral} VIV DefaultSearchKeyword: Default -> d VIV DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list VIV Extension: (Safe Torrent Scanner) - C:\Users\Santiago\AppData\Local\Vivaldi\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-11-01] VIV Extension: (DuckDuckGo) - C:\Users\Santiago\AppData\Local\Vivaldi\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2022-11-01] VIV Extension: (Google Anime Waifus) - C:\Users\Santiago\AppData\Local\Vivaldi\User Data\Default\Extensions\lkpebdhmblffaikggdghmknokfekdlph [2022-11-01] VIV Extension: (Menú de aplicaciones de Drive (de Google)) - C:\Users\Santiago\AppData\Local\Vivaldi\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2022-11-01] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [4040776 2023-06-30] (philandro Software GmbH -> AnyDesk Software GmbH) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2023-06-30] (BattlEye Innovations e.K. -> ) R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe [74520 2023-06-26] (Google LLC -> Google LLC) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11851144 2023-07-01] (Microsoft Corporation -> Microsoft Corporation) S3 com.docker.service; C:\Program Files\Docker\Docker\com.docker.service [19792 2023-06-21] (Docker Inc -> Docker Inc.) R2 CortexLauncherService; C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe [588712 2023-07-05] (Razer USA Ltd. -> Razer Inc.) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-13] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-13] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2023-06-24] (Dropbox, Inc -> Dropbox, Inc.) R3 Disc Soft Pro Bus Service; C:\Program Files\DAEMON Tools Pro\DiscSoftBusServicePro.exe [2856304 2019-06-07] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43272 2023-07-03] (Intel Corporation -> Intel) R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [212744 2023-07-03] (Intel Corporation -> Intel) S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11499112 2023-06-22] (Electronic Arts, Inc. -> Electronic Arts) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2023-06-02] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2023-06-14] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2023-03-25] (Epic Games Inc. -> Epic Games, Inc.) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.139.0704.0001\FileSyncHelper.exe [3447728 2023-07-11] (Microsoft Corporation -> Microsoft Corporation) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2346464 2023-06-22] (GOG sp. z o.o -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7178720 2023-06-22] (GOG sp. z o.o -> GOG.com) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-06-14] (HP Inc. -> HP Inc.) R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21304 2017-09-28] (Microsoft Corporation -> Microsoft Corporation) R2 JetBrainsEtwHost.16; C:\Program Files\JetBrains\ETW Host\16\JetBrains.Etw.Collector.Host.exe [1585960 2023-06-22] (JetBrains s.r.o. -> JetBrains s.r.o) R2 luminati_net_updater_win_brightvpn_com; C:\Program Files (x86)\Bright VPN\net_updater32.exe [10362376 2023-06-19] (Bright Data Ltd -> BrightData Ltd. (certified)) S2 MBAMIService; C:\ProgramData\MB3Install\MBAMIService.exe [231120 2019-06-26] (Malwarebytes Corporation -> Malwarebytes) S3 NGS; C:\ProgramData\Nexon\NGS\NGService.exe [3134240 2023-01-26] (NEXON Korea Corporation. -> NEXON Korea Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.139.0704.0001\OneDriveUpdaterService.exe [3783608 2023-07-11] (Microsoft Corporation -> Microsoft Corporation) S3 OpenVPNService; C:\Program Files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpnserv.exe [96104 2017-07-03] (Sophos Ltd -> The OpenVPN Project) R2 OpenVPNServiceInteractive; C:\Program Files (x86)\Sophos\Sophos SSL VPN Client\bin\openvpnserv.exe [96104 2017-07-03] (Sophos Ltd -> The OpenVPN Project) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2640904 2023-07-05] (Overwolf Ltd -> Overwolf LTD) R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2021-08-12] (Even Balance, Inc. -> ) R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [2001320 2023-06-14] (Razer USA Ltd. -> Razer Inc.) R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [510896 2023-06-14] (Razer USA Ltd. -> Razer Inc.) R2 Razer Chroma Stream Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe [1361360 2023-03-06] (Razer USA Ltd. -> Razer Inc.) R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [256264 2023-02-10] (Razer USA Ltd. -> Razer Inc) R2 Razer Game Manager Service 3; C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe [362760 2023-06-14] (Razer USA Ltd. -> Razer Inc) R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [297736 2023-06-28] (Razer USA Ltd. -> Razer Inc.) R2 Razer Update Service; C:\Program Files (x86)\Razer\RzUpdateEngineService\RzUpdateEngineService.exe [408912 2020-04-01] (Razer USA Ltd. -> Razer) R2 reWASDService; C:\Program Files\reWASD\reWASDService.exe [3010808 2023-05-31] (SIA AVB Disc Soft -> Disc Soft Ltd) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2703192 2022-12-17] (Rockstar Games, Inc. -> Rockstar Games) R2 RTUsbSwSrvc; C:\WINDOWS\RTUWPSrvcMain.exe [914528 2022-04-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [538424 2023-05-17] (Razer USA Ltd. -> Razer Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [397040 2023-04-04] (Microsoft Windows Publisher -> Microsoft Corporation) R2 Start11; C:\Program Files (x86)\Stardock\Start11\Start11Srv.exe [250304 2023-06-23] (STARDOCK SYSTEMS, INC. -> Stardock Software, Inc) S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5938216 2022-07-29] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [15223040 2021-03-24] (VMware, Inc. -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WindscribeService; C:\Program Files (x86)\Windscribe\WindscribeService.exe [1256880 2022-11-06] (Windscribe Limited -> Windscribe Limited) R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-06-26] (Wondershare Technology Co.,Ltd -> Wondershare) S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [10062496 2022-07-29] (PUBG CORPORATION -> KRAFTON, Inc) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_5218d4313424e84c\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_5218d4313424e84c\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin\brynhildr.sys [2355952 2022-04-20] (Activision Publishing Inc -> Activision Blizzard, Inc.) R3 CompositeBus_98BD966ADB7DB246; C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98bd966adb7db246\CompositeBus.sys [81920 2023-04-04] (Microsoft Windows -> Microsoft Corporation) S3 DisplayMux; C:\WINDOWS\System32\drivers\DisplayMux.sys [57344 2023-04-04] (Microsoft Windows -> Microsoft Corporation) R1 dokan1; C:\WINDOWS\System32\DRIVERS\dokan1.sys [138760 2021-01-14] (ADAPP SASU -> Dokan Project) R2 Driver; C:\Program Files (x86)\EVGA\Kernel\driver-x64.sys [39856 2023-06-25] (EVGA Corp. -> ) R3 dtproscsibus; C:\WINDOWS\System32\drivers\dtproscsibus.sys [42472 2022-04-27] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EasyAntiCheat_EOSSys; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.sys [14505424 2023-06-30] (EasyAntiCheat Oy -> EasyAntiCheat Oy) R0 fse; C:\WINDOWS\System32\drivers\fse.sys [213280 2023-04-04] (Microsoft Windows -> Microsoft Corporation) R3 GDPL_BOOM; C:\WINDOWS\system32\drivers\boomvad.sys [46632 2023-03-28] (WDKTestCert Adarsh,133180870191105194 -> Windows (R) Win 7 DDK provider) R0 hidgamemap; C:\WINDOWS\System32\drivers\hidgamemap.sys [352616 2023-05-31] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 HidGuardian; C:\WINDOWS\System32\drivers\HidGuardian.sys [35728 2018-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer) S3 I3CHost; C:\WINDOWS\System32\DriverStore\FileRepository\i3chost.inf_amd64_de53b3bfd6a29b0a\I3CHost.sys [61728 2023-04-04] (Microsoft Windows -> Microsoft Corporation) S3 kdnic_legacy; C:\WINDOWS\System32\drivers\kdnic_legacy.sys [65824 2023-04-04] (Microsoft Windows -> Microsoft Corporation) S3 Larmkanal; C:\WINDOWS\System32\drivers\Larmkanal.sys [33112 2015-09-02] (ADORIASOFT LLC -> Adoriasoft LLC) S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-29] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.) S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.) S3 MDA_NTDRV; C:\WINDOWS\system32\MDA_NTDRV.sys [21208 2022-07-05] (北京铠信神州科技有限责任公司 -> ) R3 MpKsle888d086; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0D85B2F0-CBAB-4D81-8DB9-CF32E7C0AFE2}\MpKslDrv.sys [221480 2023-07-12] (Microsoft Windows -> Microsoft Corporation) S2 NetworkPrivacyPolicy; C:\WINDOWS\System32\DriverStore\FileRepository\networkprivacypolicy.inf_amd64_0456f923cc75da6f\NetworkPrivacyPolicy.sys [73728 2023-04-04] (Microsoft Windows -> ) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-13] (Nvidia Corporation -> NVIDIA Corporation) S3 Phosgene; C:\WINDOWS\system32\DRIVERS\Phosgene.sys [34136 2015-09-02] (ADORIASOFT LLC -> Adoriasoft LLC) R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_12e5292d75bc9d96\rt68cx21x64.sys [713136 2022-10-05] (Realtek Semiconductor Corp. -> Realtek) R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [12143184 2022-04-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation) R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [64168 2022-08-18] (Razer USA Ltd. -> Razer Inc) R3 RzDev_0084; C:\WINDOWS\System32\drivers\RzDev_0084.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc) S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> ) R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> ) R1 steamxbox; C:\WINDOWS\System32\drivers\steamxbox.sys [278208 2023-02-21] (Valve Corp. -> Valve Corporation) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [34152 2016-01-18] (Sophos -> The OpenVPN Project) R3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [57768 2022-04-17] (Windscribe Limited -> The OpenVPN Project) R3 UEFI_24F5F7393309C734; C:\WINDOWS\System32\DriverStore\FileRepository\uefi.inf_amd64_24f5f7393309c734\UEFI.sys [74016 2023-04-04] (Microsoft Windows -> Microsoft Corporation) R3 umbus_9D289986E87ABF4A; C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_9d289986e87abf4a\umbus.sys [94208 2023-04-04] (Microsoft Windows -> Microsoft Corporation) R2 UnionFS; C:\WINDOWS\system32\drivers\UnionFS.sys [545056 2023-04-04] (Microsoft Windows -> Microsoft Corporation) S3 usbscan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_631f681f341c9bac\usbscan.sys [94208 2023-04-04] (Microsoft Windows -> Microsoft Corporation) S3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider) R3 VCamSDK; C:\WINDOWS\system32\DRIVERS\VCamSDK.sys [1092456 2021-04-27] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft) S3 vjoy; C:\WINDOWS\System32\drivers\vjoy.sys [67448 2019-07-14] (On-site Dental Systems (Justin Shafer) -> Shaul Eizikovich) S3 vmbusproxy; C:\WINDOWS\system32\drivers\vmbusproxy.sys [94208 2023-04-04] (Microsoft Windows -> ) R2 VMnetBridge; C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys [67072 2021-03-24] (VMware, Inc. -> VMware, Inc.) S3 vmultia; C:\WINDOWS\System32\drivers\vmultia.sys [20720 2013-01-15] (Texas A&M University | Interface Ecology Lab -> Windows (R) Win 7 DDK provider) R0 vsock; C:\WINDOWS\System32\DRIVERS\vsock.sys [105912 2020-08-10] (VMware, Inc. -> VMware, Inc.) R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-x64.sys [54592 2020-08-11] (VMware, Inc. -> VMware, Inc.) R3 vwifibus; C:\WINDOWS\System32\DriverStore\FileRepository\netvwifibus.inf_amd64_77e76732b0d2a640\vwifibus.sys [65536 2023-04-04] (Microsoft Windows -> Microsoft Corporation) R3 vwifimp; C:\WINDOWS\System32\DriverStore\FileRepository\netvwifimp.inf_amd64_2224e1b5acd4ac64\vwifimp.sys [86016 2023-04-04] (Microsoft Windows -> Microsoft Corporation) S3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [125024 2023-05-12] (WDKTestCert dant,133252007345039948 -> Wacom Co. Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2023-06-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [201968 2023-04-04] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-06-14] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-14] (Microsoft Windows -> Microsoft Corporation) S3 WinAccelCx0101; C:\WINDOWS\System32\Drivers\winaccelcx.sys [119072 2023-04-04] (Microsoft Windows -> Microsoft Corporation) S3 WindscribeSplitTunnel; C:\WINDOWS\system32\DRIVERS\WindscribeSplitTunnel.sys [35752 2022-11-06] (Windscribe Limited -> ) R3 windtun420; C:\WINDOWS\System32\drivers\windtun420.sys [47544 2022-04-17] (Windscribe Limited -> WireGuard LLC) S3 xhunter1; C:\WINDOWS\xhunter1.sys [1431328 2022-07-29] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) (Lista blanca) ========= (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2023-07-12 18:07 - 2023-07-12 18:09 - 000000000 ____D C:\FRST 2023-07-12 17:52 - 2023-07-12 17:54 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\bright-vpn 2023-07-12 17:52 - 2023-07-12 17:52 - 000000000 ____D C:\Users\Santiago\AppData\Local\BrightData 2023-07-12 17:52 - 2023-07-12 17:52 - 000000000 ____D C:\ProgramData\BrightData 2023-07-12 17:52 - 2023-07-12 17:52 - 000000000 ____D C:\Program Files (x86)\Bright VPN 2023-07-12 17:48 - 2023-07-12 17:48 - 000803452 _____ C:\WINDOWS\system32\perfh00A.dat 2023-07-12 17:48 - 2023-07-12 17:48 - 000160780 _____ C:\WINDOWS\system32\perfc00A.dat 2023-07-12 17:47 - 2023-07-12 17:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2023-07-12 17:47 - 2023-07-12 17:47 - 000000000 ____D C:\ProgramData\MB3Migration 2023-07-12 17:47 - 2023-07-12 17:47 - 000000000 ____D C:\ProgramData\MB3Install 2023-07-12 17:47 - 2023-07-12 17:47 - 000000000 ____D C:\ProgramData\MB3CoreBackup 2023-07-12 17:47 - 2023-07-12 17:47 - 000000000 ____D C:\Program Files (x86)\7-Zip 2023-07-12 17:47 - 2019-01-23 21:53 - 000000000 ____D C:\ProgramData\MB2Migration 2023-07-12 10:56 - 2023-07-12 10:56 - 000000000 ____D C:\Users\Santiago\AppData\Local\Hogwarts Legacy 2023-07-12 10:10 - 2023-07-12 10:10 - 000002447 _____ C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sunamu.lnk 2023-07-12 10:10 - 2023-07-12 10:10 - 000000000 ____D C:\Users\Santiago\AppData\Local\sunamu-updater 2023-07-12 10:03 - 2023-07-12 10:15 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\sunamu 2023-07-11 10:03 - 2023-07-11 10:03 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-07-11 10:03 - 2023-07-11 10:03 - 000002187 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-07-10 17:37 - 2023-07-10 17:40 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\ResponsivelyApp 2023-07-10 17:37 - 2023-07-10 17:37 - 000002581 _____ C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ResponsivelyApp.lnk 2023-07-10 17:37 - 2023-07-10 17:37 - 000000000 ____D C:\Users\Santiago\AppData\Local\responsivelyapp-updater 2023-07-10 14:33 - 2023-07-10 21:31 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Yacht Club Games 2023-07-07 11:58 - 2023-07-07 11:58 - 000000000 ____D C:\Program Files\PowerShell 2023-07-06 23:01 - 2023-07-06 23:01 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Sun 2023-07-06 22:58 - 2023-07-06 23:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2023-07-06 22:58 - 2023-07-06 22:58 - 000000000 ____D C:\Program Files\Java 2023-07-06 15:07 - 2023-07-12 03:45 - 000000000 ____D C:\ProgramData\BoomLogs 2023-07-06 11:25 - 2023-07-12 17:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys 2023-07-06 11:25 - 2023-07-06 11:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview) 2023-07-05 18:55 - 2023-07-05 18:55 - 000001549 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk 2023-07-05 14:25 - 2023-07-05 14:25 - 000000000 ____D C:\Users\Santiago\OneDrive\Documentos\Salt and Sanctuary 2023-07-05 01:56 - 2023-07-05 01:56 - 000002312 _____ C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\yuzu.lnk 2023-07-01 16:43 - 2023-07-01 16:43 - 000000000 ____D C:\Users\bianq\AppData\Roaming\JetBrains 2023-06-30 18:03 - 2023-06-30 18:03 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\EasyAntiCheat 2023-06-30 05:58 - 2023-06-30 05:58 - 000000000 ____D C:\Users\Santiago\OneDrive\Documentos\Dry Cactus 2023-06-30 05:58 - 2023-06-30 05:58 - 000000000 ____D C:\Users\Santiago\AppData\LocalLow\Dry Cactus 2023-06-29 14:15 - 2023-06-29 14:15 - 000000000 ____D C:\WINDOWS\LastGood 2023-06-29 14:12 - 2023-06-26 05:45 - 000848992 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2023-06-29 14:12 - 2023-06-26 05:45 - 000848992 _____ C:\WINDOWS\system32\vulkaninfo.exe 2023-06-29 14:12 - 2023-06-26 05:45 - 000713824 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2023-06-29 14:12 - 2023-06-26 05:45 - 000713824 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2023-06-29 14:12 - 2023-06-26 05:44 - 001487384 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2023-06-29 14:12 - 2023-06-26 05:44 - 001227312 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2023-06-29 14:12 - 2023-06-26 05:44 - 000653408 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2023-06-29 14:12 - 2023-06-26 05:44 - 000653408 _____ C:\WINDOWS\system32\vulkan-1.dll 2023-06-29 14:12 - 2023-06-26 05:44 - 000637024 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2023-06-29 14:12 - 2023-06-26 05:44 - 000637024 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2023-06-29 14:12 - 2023-06-26 05:40 - 000934448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2023-06-29 14:12 - 2023-06-26 05:40 - 000669232 _____ C:\WINDOWS\system32\nvofapi64.dll 2023-06-29 14:12 - 2023-06-26 05:40 - 000504320 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2023-06-29 14:12 - 2023-06-26 05:39 - 002168368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2023-06-29 14:12 - 2023-06-26 05:39 - 001621528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2023-06-29 14:12 - 2023-06-26 05:39 - 001538048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2023-06-29 14:12 - 2023-06-26 05:39 - 001195520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2023-06-29 14:12 - 2023-06-26 05:39 - 000992816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2023-06-29 14:12 - 2023-06-26 05:39 - 000777216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2023-06-29 14:12 - 2023-06-26 05:39 - 000769024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2023-06-29 14:12 - 2023-06-26 05:38 - 014520344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2023-06-29 14:12 - 2023-06-26 05:38 - 012066328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2023-06-29 14:12 - 2023-06-26 05:38 - 006190640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2023-06-29 14:12 - 2023-06-26 05:38 - 005844504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2023-06-29 14:12 - 2023-06-26 05:38 - 005550640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll 2023-06-29 14:12 - 2023-06-26 05:38 - 003482648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2023-06-29 14:12 - 2023-06-26 05:38 - 000459288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2023-06-29 14:12 - 2023-06-26 05:37 - 000852976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2023-06-29 14:12 - 2023-06-26 05:36 - 007858072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2023-06-29 14:12 - 2023-06-26 05:36 - 006736984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2023-06-29 14:12 - 2023-06-23 22:20 - 000107938 _____ C:\WINDOWS\system32\nvinfo.pb 2023-06-29 12:14 - 2023-06-29 12:14 - 000000000 ____D C:\Users\Santiago\AppData\LocalLow\JumpStart 2023-06-28 21:19 - 2023-06-29 02:03 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\discordptb 2023-06-28 21:00 - 2023-06-28 21:00 - 000000000 ____D C:\Users\Santiago\AppData\Local\JxBrowser 2023-06-28 20:57 - 2023-07-05 19:56 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Duckly 2023-06-28 20:57 - 2023-06-28 20:57 - 000000000 ____D C:\Users\Santiago\AppData\Local\duckly 2023-06-28 18:38 - 2023-07-06 09:50 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JetBrains 2023-06-28 18:30 - 2023-06-28 18:33 - 000000000 ____D C:\Users\Santiago\.fleet 2023-06-28 18:18 - 2023-06-28 18:35 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JetBrains Toolbox 2023-06-28 16:47 - 2023-06-28 16:47 - 000000000 ____D C:\Users\Santiago\AppData\Local\Symbols 2023-06-28 16:46 - 2023-06-28 16:46 - 000000000 ____D C:\Users\Santiago\.templateengine 2023-06-28 16:44 - 2023-06-28 16:44 - 000000000 ____D C:\Users\Santiago\dotTraceSnapshots 2023-06-28 16:44 - 2023-06-28 16:44 - 000000000 ____D C:\Users\Santiago\AppData\Local\SymbolSourceSymbols 2023-06-28 16:44 - 2023-06-28 16:44 - 000000000 ____D C:\Users\Santiago\AppData\Local\RefSrcSymbols 2023-06-28 16:43 - 2023-06-28 18:38 - 000000000 ____D C:\Users\Santiago\AppData\Local\JetBrains 2023-06-28 16:43 - 2023-06-28 18:32 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\JetBrains 2023-06-28 16:43 - 2023-06-28 16:43 - 000003508 _____ C:\WINDOWS\system32\Tasks\ETW Host Service Updater v16 2023-06-28 16:43 - 2023-06-28 16:43 - 000000000 ____D C:\Program Files\JetBrains 2023-06-27 19:32 - 2023-06-27 19:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2023-06-26 23:56 - 2023-06-26 23:56 - 000000000 ____D C:\Users\Santiago\OneDrive\Documentos\KoeiTecmo 2023-06-26 19:41 - 2023-06-26 19:41 - 000000000 ____D C:\Users\Santiago\AppData\Local\mbam 2023-06-26 18:03 - 2023-06-26 18:26 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\ModDrop Client 2023-06-26 18:03 - 2023-06-26 18:03 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Olympus Games 2023-06-26 17:57 - 2023-06-26 17:57 - 000000000 ____D C:\ProgramData\ModDrop 2023-06-26 17:56 - 2023-06-26 17:56 - 000000000 ____D C:\Users\Santiago\AppData\Local\AdvinstAnalytics 2023-06-26 11:49 - 2023-06-26 11:49 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2023-06-26 00:35 - 2023-06-26 00:35 - 000000000 ____D C:\Users\Santiago\OneDrive\Documentos\DeadIslandDE 2023-06-25 23:39 - 2023-06-25 23:39 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\EVGA 2023-06-25 23:39 - 2023-06-25 23:39 - 000000000 ____D C:\Users\Santiago\AppData\Local\EVGA_Co.,_Ltd 2023-06-25 23:39 - 2023-06-25 23:39 - 000000000 ____D C:\Program Files (x86)\EVGA 2023-06-25 23:39 - 2023-06-25 23:30 - 000165360 _____ C:\WINDOWS\system32\FW1FontWrapper_x64.dll 2023-06-25 23:39 - 2023-06-25 23:30 - 000138736 _____ C:\WINDOWS\SysWOW64\FW1FontWrapper.dll 2023-06-24 16:54 - 2023-06-24 16:54 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2023-06-24 01:47 - 2023-06-24 01:47 - 000000000 ____D C:\WINDOWS\%LOCALAPPDATA% 2023-06-22 00:42 - 2023-06-22 00:42 - 000000000 ___SD C:\WINDOWS\system32\containers 2023-06-21 23:28 - 2023-07-11 16:58 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Docker Desktop 2023-06-21 23:28 - 2023-06-21 23:28 - 000002159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Docker Desktop.lnk 2023-06-21 23:25 - 2023-07-11 16:09 - 000000000 ____D C:\Users\Santiago\AppData\Local\Docker Desktop Installer 2023-06-21 18:23 - 2023-06-21 18:23 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\dreamtime 2023-06-21 15:17 - 2023-06-16 07:33 - 000161920 _____ (Razer Inc) C:\WINDOWS\system32\RazerS3CoinstallerEx.dll 2023-06-19 03:57 - 2023-06-19 03:57 - 000000000 ____D C:\WINDOWS\system32\temp 2023-06-16 16:54 - 2023-06-16 17:10 - 000000000 ____D C:\Users\Santiago\AppData\Local\User Data 2023-06-16 16:54 - 2023-06-16 16:54 - 000000000 ____D C:\Users\Santiago\AppData\Local\nwjs 2023-06-14 14:19 - 2023-06-25 21:06 - 000000000 ____D C:\Users\Santiago\Zomboid 2023-06-14 04:11 - 2023-06-14 04:11 - 000353704 _____ (Razer Inc.) C:\WINDOWS\system32\RzChromaSDK64.dll 2023-06-14 04:07 - 2023-06-14 04:07 - 000286120 _____ (Razer Inc.) C:\WINDOWS\SysWOW64\RzChromaSDK.dll 2023-06-12 11:38 - 2023-06-12 11:38 - 000000000 ____D C:\Users\alejo_r9brdwe\AppData\Local\UnrealEngineLauncher 2023-06-12 11:38 - 2023-06-12 11:38 - 000000000 ____D C:\Users\alejo_r9brdwe\AppData\Local\UnrealEngine 2023-06-12 11:38 - 2023-06-12 11:38 - 000000000 ____D C:\Users\alejo_r9brdwe\AppData\Local\EpicGamesLauncher 2023-06-12 11:36 - 2023-06-12 11:36 - 000000000 ____D C:\Users\bianq\AppData\Local\UnrealEngineLauncher 2023-06-12 11:36 - 2023-06-12 11:36 - 000000000 ____D C:\Users\bianq\AppData\Local\EpicGamesLauncher ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2023-07-12 18:09 - 2021-03-29 13:39 - 000000000 ____D C:\Program Files (x86)\Steam 2023-07-12 18:04 - 2023-04-04 01:19 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-07-12 17:55 - 2023-04-04 01:19 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-07-12 17:48 - 2023-04-09 17:35 - 001808016 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-07-12 17:48 - 2023-04-04 01:18 - 000000000 ____D C:\WINDOWS\INF 2023-07-12 17:48 - 2023-02-05 03:24 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Steam Achievement Notifier (V1.84) 2023-07-12 17:48 - 2021-10-25 16:12 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Code 2023-07-12 17:46 - 2023-05-19 17:32 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Dropbox 2023-07-12 17:46 - 2023-05-02 14:58 - 000000000 ____D C:\Users\Santiago\AppData\Local\DiscordCanary 2023-07-12 17:46 - 2023-04-09 17:39 - 000003984 _____ C:\WINDOWS\system32\Tasks\RazerCortexScheduleClean 2023-07-12 17:46 - 2022-03-13 19:42 - 000000000 ____D C:\Users\Santiago\AppData\Local\Dropbox 2023-07-12 17:46 - 2021-03-31 17:20 - 000000000 ____D C:\Program Files (x86)\Google 2023-07-12 17:45 - 2023-02-05 03:24 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\sanlauncher 2023-07-12 17:45 - 2021-05-10 18:28 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\discordcanary 2023-07-12 17:44 - 2023-05-03 23:02 - 000012288 ___SH C:\DumpStack.log.tmp 2023-07-12 17:44 - 2023-04-09 17:39 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-07-12 17:44 - 2023-04-09 17:28 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK 2023-07-12 17:44 - 2023-04-04 01:19 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-07-12 17:44 - 2023-04-04 01:13 - 001835008 _____ C:\WINDOWS\system32\config\BBI 2023-07-12 17:44 - 2022-08-14 16:08 - 000000000 ____D C:\ProgramData\NVIDIA 2023-07-12 17:44 - 2022-06-06 19:20 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\WTablet 2023-07-12 17:44 - 2021-08-06 11:48 - 000000518 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics 2023-07-12 17:44 - 2021-05-05 16:10 - 000000000 ____D C:\Users\Santiago\AppData\Local\CrashDumps 2023-07-12 17:43 - 2022-04-21 07:06 - 000000000 ____D C:\WINDOWS\RTUWPSrvcMain 2023-07-12 17:42 - 2021-03-31 17:47 - 000000000 ____D C:\Users\Santiago\AppData\Local\JDownloader 2.0 2023-07-12 12:11 - 2023-03-24 21:23 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Spotify 2023-07-12 10:57 - 2023-05-03 23:05 - 000000000 ____D C:\Users\Santiago\AppData\Local\D3DSCache 2023-07-12 09:30 - 2023-03-24 21:24 - 000000000 ____D C:\Users\Santiago\AppData\Local\Spotify 2023-07-12 08:36 - 2021-07-19 22:57 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2023-07-12 08:21 - 2023-04-04 01:19 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-07-12 03:45 - 2021-03-31 21:49 - 000000000 ____D C:\Users\Santiago\AppData\LocalLow\Unity 2023-07-12 03:45 - 2021-03-31 20:42 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\UnityHub 2023-07-12 02:51 - 2021-03-26 20:03 - 000000000 ____D C:\Users\Santiago\AppData\LocalLow\DefaultCompany 2023-07-11 23:34 - 2023-02-10 02:17 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\GitHub Desktop 2023-07-11 21:32 - 2021-03-29 15:10 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\.minecraft 2023-07-11 20:45 - 2023-04-04 01:19 - 000000000 ___HD C:\Program Files\WindowsApps 2023-07-11 20:45 - 2021-03-29 13:06 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-07-11 17:29 - 2021-03-29 15:07 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher 2023-07-11 16:58 - 2023-05-31 07:03 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Docker 2023-07-11 16:18 - 2023-05-31 07:08 - 000000000 ____D C:\Users\Santiago\.docker 2023-07-11 16:18 - 2023-05-31 07:03 - 000000000 ____D C:\Users\Santiago\AppData\Local\Docker 2023-07-11 16:16 - 2021-03-29 13:17 - 000000000 ____D C:\Users\Santiago\AppData\Local\Packages 2023-07-11 16:16 - 2021-03-29 13:12 - 000000000 ____D C:\ProgramData\Packages 2023-07-11 16:00 - 2022-11-13 21:16 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-07-11 15:58 - 2023-04-20 16:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-07-11 10:03 - 2023-04-09 17:39 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1789357901-601651562-3446351574-1012 2023-07-11 10:03 - 2023-04-09 17:39 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1789357901-601651562-3446351574-1007 2023-07-11 10:03 - 2023-04-09 17:39 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1789357901-601651562-3446351574-1002 2023-07-11 10:03 - 2023-04-09 17:39 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1789357901-601651562-3446351574-1001 2023-07-11 10:03 - 2022-11-21 21:06 - 000000000 ___RD C:\Users\alejo_r9brdwe\OneDrive 2023-07-11 10:00 - 2022-11-21 21:08 - 000000000 ____D C:\Users\alejo_r9brdwe\AppData\Local\Dropbox 2023-07-11 09:58 - 2022-11-21 21:06 - 000000000 ____D C:\Users\alejo_r9brdwe\AppData\Roaming\WTablet 2023-07-11 03:26 - 2021-03-29 14:25 - 000000000 ____D C:\Users\Santiago\AppData\Local\Battle.net 2023-07-10 22:39 - 2023-04-09 17:39 - 000003708 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-07-10 22:39 - 2023-04-09 17:39 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-07-10 16:39 - 2021-11-07 01:08 - 000007603 _____ C:\Users\Santiago\AppData\Local\Resmon.ResmonCfg 2023-07-10 14:30 - 2022-07-11 06:58 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Games 2023-07-10 12:03 - 2022-11-21 21:06 - 000000000 ____D C:\Users\alejo_r9brdwe\AppData\Local\D3DSCache 2023-07-09 14:01 - 2022-07-21 18:01 - 000000000 ____D C:\Program Files (x86)\Overwolf 2023-07-08 17:35 - 2021-12-21 18:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2023-07-08 17:33 - 2021-12-21 18:36 - 000000000 ____D C:\Program Files (x86)\Razer Chroma SDK 2023-07-07 17:21 - 2022-12-28 21:07 - 000000000 ____D C:\Users\bianq\AppData\Roaming\discord 2023-07-07 16:47 - 2022-12-28 21:07 - 000000000 ____D C:\Users\bianq\AppData\Local\Discord 2023-07-07 14:49 - 2022-10-10 06:42 - 000000000 ____D C:\Users\bianq\AppData\Local\D3DSCache 2023-07-07 14:47 - 2022-10-10 06:44 - 000000000 ___RD C:\Users\bianq\OneDrive 2023-07-07 14:47 - 2022-10-10 06:44 - 000000000 ____D C:\Users\bianq\AppData\Local\Dropbox 2023-07-07 14:47 - 2022-10-10 06:42 - 000000000 ____D C:\Users\bianq\AppData\Roaming\WTablet 2023-07-07 12:32 - 2021-12-21 18:37 - 000000000 ____D C:\Users\Santiago\AppData\Local\Razer 2023-07-07 12:32 - 2021-12-21 18:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex 2023-07-07 11:58 - 2021-11-04 21:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerShell 2023-07-07 11:58 - 2021-03-29 14:18 - 000000000 ____D C:\ProgramData\Package Cache 2023-07-07 01:37 - 2023-04-09 17:30 - 000000000 ____D C:\Users\Santiago 2023-07-06 23:01 - 2022-01-20 22:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit 2023-07-06 22:52 - 2021-04-30 22:31 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\audacity 2023-07-06 22:46 - 2021-12-19 19:17 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\vlc 2023-07-06 22:13 - 2022-07-07 02:55 - 000000000 ____D C:\Users\Santiago\AppData\LocalLow\Hematoxi&Co 2023-07-06 19:07 - 2021-03-25 12:16 - 000000000 ___SD C:\Users\Santiago\AppData\Roaming\Microsoft\Credentials 2023-07-06 17:36 - 2021-10-25 16:12 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code 2023-07-06 11:24 - 2023-05-23 14:54 - 000000000 ____D C:\Program Files\PowerToys 2023-07-06 09:41 - 2023-05-26 02:16 - 000000000 ____D C:\Users\Santiago\OneDrive\Documentos\BoomLogs 2023-07-06 09:41 - 2021-03-31 21:50 - 000000000 ____D C:\Users\Santiago\AppData\Local\Unity 2023-07-06 09:40 - 2023-04-04 01:19 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth 2023-07-05 02:33 - 2021-08-03 22:41 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Vortex 2023-07-04 22:19 - 2021-03-26 12:56 - 000000000 ____D C:\Users\Santiago\OneDrive\Documentos\My Games 2023-07-04 03:07 - 2021-04-16 15:11 - 000000000 ____D C:\Users\Santiago\AppData\Local\Skyrim Special Edition 2023-07-03 23:24 - 2023-05-03 23:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Axon 2023-07-03 16:46 - 2022-06-26 14:43 - 000000000 ____D C:\Users\Santiago\OneDrive\Documentos\Square Enix 2023-07-02 20:31 - 2021-04-27 08:35 - 000000000 ____D C:\Users\Santiago\AppData\Local\Ubisoft Game Launcher 2023-07-01 19:44 - 2022-11-13 02:10 - 000000000 ____D C:\Program Files\Microsoft Office 2023-06-30 18:45 - 2022-10-10 06:43 - 000000000 ____D C:\Users\bianq\AppData\Local\CrashDumps 2023-06-30 18:19 - 2023-01-25 02:50 - 000000000 ____D C:\Users\bianq\AppData\Local\Roblox 2023-06-30 06:21 - 2023-05-28 14:28 - 000000000 ____D C:\Program Files (x86)\AnyDesk 2023-06-30 03:21 - 2022-03-16 19:02 - 000000000 ____D C:\Users\Santiago\AppData\Local\BattlEye 2023-06-30 01:07 - 2021-03-29 14:25 - 000000000 ____D C:\Program Files (x86)\Battle.net 2023-06-30 00:05 - 2021-06-24 08:39 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Little Inferno 2023-06-29 14:34 - 2021-04-23 19:36 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\VMware 2023-06-29 14:34 - 2021-04-23 19:36 - 000000000 ____D C:\Users\Santiago\AppData\Local\VMware 2023-06-29 14:25 - 2021-04-23 19:31 - 000000000 ____D C:\ProgramData\VMware 2023-06-29 14:16 - 2022-08-14 15:59 - 000000000 ____D C:\Users\Santiago\AppData\Local\NVIDIA 2023-06-29 00:37 - 2021-03-31 17:20 - 000002256 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-06-28 21:19 - 2021-03-29 14:13 - 000000000 ____D C:\Users\Santiago\AppData\Local\SquirrelTemp 2023-06-28 21:19 - 2021-03-25 13:43 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2023-06-28 18:38 - 2021-03-31 20:42 - 000000000 ____D C:\Program Files\Unity Hub 2023-06-28 18:20 - 2022-12-11 21:25 - 000000000 ____D C:\Users\Santiago\.config 2023-06-27 19:32 - 2022-03-13 18:37 - 000000000 ____D C:\Program Files (x86)\Dropbox 2023-06-27 19:18 - 2021-03-29 13:35 - 000002459 _____ C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk 2023-06-27 19:18 - 2021-03-29 13:35 - 000000000 ____D C:\Users\Santiago\AppData\Local\Chromium 2023-06-27 18:14 - 2023-02-10 02:17 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc 2023-06-27 18:14 - 2023-02-10 02:17 - 000000000 ____D C:\Users\Santiago\AppData\Local\GitHubDesktop 2023-06-27 17:07 - 2022-08-29 01:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock 2023-06-27 17:07 - 2021-09-07 18:44 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CustomRP 2023-06-27 17:07 - 2021-09-07 18:44 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\CustomRP 2023-06-27 01:02 - 2021-10-25 16:21 - 000000000 ____D C:\Users\Santiago\.dotnet 2023-06-27 00:59 - 2021-10-25 16:21 - 000000000 ____D C:\Program Files\dotnet 2023-06-26 21:44 - 2021-03-29 14:45 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\StardewValley 2023-06-26 19:48 - 2022-03-06 17:25 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\uTorrent 2023-06-26 19:48 - 2021-04-25 14:27 - 000000000 ____D C:\Program Files (x86)\UltraStar WorldParty 2023-06-26 19:21 - 2021-03-29 13:39 - 000000000 ____D C:\Users\Santiago\AppData\Local\Steam 2023-06-25 21:38 - 2021-03-25 12:17 - 000000000 ___RD C:\Users\Santiago\OneDrive 2023-06-25 14:19 - 2023-01-25 02:50 - 000000000 ____D C:\Users\bianq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox 2023-06-24 14:33 - 2022-11-21 21:07 - 000000000 ____D C:\Users\alejo_r9brdwe\AppData\Local\CrashDumps 2023-06-22 21:34 - 2022-09-06 21:59 - 000000000 ____D C:\ProgramData\GOG.com 2023-06-22 20:53 - 2022-07-13 04:01 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy 2023-06-21 23:28 - 2023-05-31 07:04 - 000000000 ____D C:\Program Files\Docker 2023-06-21 23:28 - 2023-05-31 07:03 - 000000000 ____D C:\ProgramData\DockerDesktop 2023-06-21 23:28 - 2023-04-14 09:54 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-06-21 15:17 - 2023-04-09 17:30 - 000000000 ____D C:\Users\alejo_r9brdwe 2023-06-21 14:53 - 2022-12-04 11:12 - 000000000 ____D C:\Users\alejo_r9brdwe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox 2023-06-19 04:17 - 2021-04-27 08:42 - 000000000 ____D C:\Users\Santiago\OneDrive\Documentos\Trackmania2020 2023-06-19 04:17 - 2021-03-31 12:40 - 000000000 ____D C:\ProgramData\TrackMania 2023-06-16 14:53 - 2021-03-31 16:25 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-06-16 14:38 - 2021-03-31 16:25 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-06-15 16:31 - 2023-04-09 17:39 - 000003916 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2023-06-15 16:31 - 2023-04-09 17:39 - 000003792 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2023-06-15 10:46 - 2023-06-11 17:33 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2023-06-15 10:46 - 2021-11-01 20:23 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2023-06-15 01:42 - 2021-05-04 13:01 - 000000000 ____D C:\Users\Santiago\AppData\Roaming\obs-studio 2023-06-14 14:18 - 2021-03-25 16:55 - 000000000 ____D C:\Users\Santiago\BrawlhallaReplays 2023-06-14 12:54 - 2021-03-29 13:05 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-06-13 18:05 - 2021-10-25 16:12 - 000000000 ____D C:\Users\Santiago\.vscode 2023-06-13 11:10 - 2023-06-09 13:31 - 000247288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll 2023-06-13 11:10 - 2023-05-05 16:55 - 000493048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2023-06-13 11:10 - 2022-10-07 23:55 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe 2023-06-13 11:10 - 2022-10-07 23:55 - 000062968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe 2023-06-13 11:10 - 2021-11-17 12:58 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2023-06-13 11:10 - 2021-11-07 01:29 - 002807296 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2023-06-13 11:10 - 2021-11-07 01:29 - 000202232 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2023-06-13 11:10 - 2021-11-07 01:29 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2023-06-12 11:38 - 2022-12-23 10:35 - 000000000 ____D C:\Users\alejo_r9brdwe\AppData\Local\NVIDIA Corporation ==================== Archivos en la raíz de algunos directorios ======== 2022-02-25 20:35 - 2022-02-28 20:08 - 000028672 _____ () C:\Users\Santiago\AppData\Roaming\crash.bin 2022-09-03 02:41 - 2023-02-23 20:01 - 000208896 _____ () C:\Users\Santiago\AppData\Roaming\emp.bin 2021-05-04 16:06 - 2022-11-16 01:03 - 000000015 _____ () C:\Users\Santiago\AppData\Roaming\obs-virtualcam.txt 2022-01-12 04:13 - 2022-01-12 04:21 - 000012544 _____ () C:\Users\Santiago\AppData\Roaming\SpeedRunnersLog.txt 2023-01-25 14:42 - 2023-01-25 15:01 - 000512541 _____ () C:\Users\Santiago\AppData\Roaming\viper-requests.json 2023-01-25 14:42 - 2023-01-25 14:46 - 000000311 _____ () C:\Users\Santiago\AppData\Roaming\viper.json 2022-10-24 18:12 - 2022-10-24 18:12 - 000003950 _____ () C:\Users\Santiago\AppData\Local\1413663067 2022-09-23 17:25 - 2022-09-23 17:25 - 000006822 _____ () C:\Users\Santiago\AppData\Local\2476191251 2023-05-02 20:14 - 2023-05-02 20:14 - 000005966 _____ () C:\Users\Santiago\AppData\Local\92642719525 2023-01-28 00:10 - 2023-01-28 00:10 - 000003982 _____ () C:\Users\Santiago\AppData\Local\92765256503 2023-03-04 15:52 - 2023-03-04 15:52 - 000006598 _____ () C:\Users\Santiago\AppData\Local\93803181808 2023-04-19 10:31 - 2023-04-19 10:31 - 000005662 _____ () C:\Users\Santiago\AppData\Local\967015202 2022-09-24 18:01 - 2022-09-24 18:06 - 000000128 _____ () C:\Users\Santiago\AppData\Local\PUTTY.RND 2023-05-03 19:25 - 2023-05-03 19:25 - 000000218 _____ () C:\Users\Santiago\AppData\Local\recently-used.xbel 2021-11-07 01:08 - 2023-07-10 16:39 - 000007603 _____ () C:\Users\Santiago\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================