Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 02-02-2020 02 Ejecutado por Polux (administrador) sobre DESKTOP-HKUG6F4 (ASUS All Series) (11-02-2020 22:09:26) Ejecutado desde C:\Users\gabri\OneDrive\Escritorio Perfiles cargados: Polux (Perfiles disponibles: Polux) Platform: Windows 10 Pro Versión 1903 18362.592 (X64) Idioma: Español (España, internacional) Navegador predeterminado: FF Modo de Inicio: Normal Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) () [Archivo no firmado] C:\Program Files (x86)\Drakonia Configurator\hid.exe () [Archivo no firmado] C:\Program Files (x86)\Drakonia Configurator\trayicon.exe () [Archivo no firmado] C:\Program Files (x86)\No-IP\ducservice.exe () [Archivo no firmado] D:\WindowsApps\Microsoft.GamingApp_2002.1001.3.0_x64__8wekyb3d8bbwe\app\XboxAppServices.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (Creative Technology Ltd) [Archivo no firmado] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd) [Archivo no firmado] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe (Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Electronic Arts, Inc. -> Electronic Arts) D:\Origin\OriginWebHelperService.exe (ESET, spol. s r.o. -> ESET spol. s r.o.) D:\Descargas\ESETOnlineScanner_ESL.exe (Kristjan Skutta -> ) D:\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe (Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe (MEDIATEK INC. -> Mediatek Inc.) [Archivo no firmado] C:\Program Files (x86)\MediatekWiFi\Common\RaUI.exe (MEDIATEK INC. -> Mediatek Inc.) C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe (MEDIATEK INC. -> Mediatek Inc.) C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.37.23001.0_x64__8wekyb3d8bbwe\GamingServices.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.37.23001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11912.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBarFT.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtHdaSvc.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1871344 2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Inc.) HKLM-x32\...\Run: [GamingMouse] => C:\Program Files (x86)\Drakonia Configurator\hid.exe [248832 2013-10-29] () [Archivo no firmado] HKLM-x32\...\Run: [UpdReg] => C:\WINDOWS\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [Archivo no firmado] HKLM-x32\...\Run: [Sound Blaster Z-Series Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe [877056 2014-11-24] (Creative Technology Ltd) [Archivo no firmado] HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6261760 2020-02-04] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-4027488509-1906755848-293239664-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3311568 2020-01-18] (Valve -> Valve Corporation) HKU\S-1-5-21-4027488509-1906755848-293239664-1001\...\Run: [Chromium] => "c:\users\gabri\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory=Default --restore-last-session HKU\S-1-5-21-4027488509-1906755848-293239664-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [5262992 2018-03-07] (Disc Soft Ltd -> Disc Soft Ltd) HKU\S-1-5-21-4027488509-1906755848-293239664-1001\...\Run: [MiPhoneManager] => C:\Users\gabri\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe [157624 2016-03-11] (Xiaomi Technology Inc -> ) HKU\S-1-5-21-4027488509-1906755848-293239664-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd) HKU\S-1-5-21-4027488509-1906755848-293239664-1001\...\Run: [] => [X] HKU\S-1-5-21-4027488509-1906755848-293239664-1001\...\Run: [WallpaperEngine] => D:\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [2579960 2020-01-13] (Kristjan Skutta -> ) HKU\S-1-5-21-4027488509-1906755848-293239664-1001\...\Run: [Gaijin.Net Updater] => C:\Users\gabri\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2361600 2019-11-28] (Gaijin Network LTD -> Gaijin Entertainment) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Mediatek Wireless Utility.lnk [2020-02-11] ShortcutTarget: Mediatek Wireless Utility.lnk -> C:\Program Files (x86)\MediatekWiFi\Common\RaUI.exe (MEDIATEK INC. -> Mediatek Inc.) [Archivo no firmado] GroupPolicy: Restricción ? <==== ATENCIÓN GroupPolicy\User: Restricción ? <==== ATENCIÓN FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {09248119-FA20-4E07-B3B3-3A5DA0A38B97} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-02-11] (Adobe Inc. -> Adobe) Task: {143D8336-C045-45FE-8E2A-6606F3CA275E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {172BEEC4-404E-48F3-AF61-9DF60001E985} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems) Task: {17F3F92A-C2A3-4180-9D53-BC382903FA92} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1B411C36-15FD-4C25-9E5B-5C356D65689F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1C0063DF-38F7-4032-BA93-6D3450C759BB} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1E1C886C-B04C-40B1-8055-2B1D3D4DE881} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {1E23D6C3-1905-4DD4-9877-DFB6F62E6B32} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd) Task: {1EFC29ED-63C9-4676-8319-FB6110FDC513} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {44F1E918-C737-43A2-B936-134E78A6419B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {563AE4A5-7591-4D7D-A4F8-59D007BEFC56} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-02-07] (Dropbox, Inc -> Dropbox, Inc.) Task: {6DB202C1-64BA-4EA9-B935-DF6070657CD3} - System32\Tasks\Driver Booster SkipUAC (Polux) => C:\Program Files (x86)\IObit\Driver Booster\6.2.1\DriverBooster.exe Task: {6FE0A7E4-AF1E-426D-85A8-5E4CD4886F09} - System32\Tasks\EOSv3 Scheduler onLogOn => D:\Descargas\ESETOnlineScanner_ESL.exe [14562400 2020-02-11] (ESET, spol. s r.o. -> ESET spol. s r.o.) Task: {7E04D091-C7FF-486E-8874-1B7347A477BE} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {89F75216-27DF-4966-94D9-E552C2F569D0} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8AED33D1-A1BD-4F3A-A1B4-97C042D5270C} - System32\Tasks\Update Manager => C:\Users\gabri\AppData\Roaming\7.Days.To.Die.Alpha.v16.4.Repack\ybiselkf.exe Task: {94709EFC-449D-410C-A0FF-C4DCF69CD57F} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9A8C2953-C97F-4B94-9363-721487B7349A} - System32\Tasks\EOSv3 Scheduler onTime => D:\Descargas\ESETOnlineScanner_ESL.exe [14562400 2020-02-11] (ESET, spol. s r.o. -> ESET spol. s r.o.) Task: {A4F5E70C-ADAE-4FFC-A9E9-956B62CACE3A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A71A359D-0661-4598-A728-E0BE3382F425} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd) Task: {A9BB708E-B121-4CA4-80F9-5A69488A7B3E} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B3602647-8584-4200-B8EE-D02B89AB4F8A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-06] (Google Inc -> Google Inc.) Task: {B4E12E44-E3B0-49B2-9D96-A2CB72C80B63} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-06] (Google Inc -> Google Inc.) Task: {B61072E1-C9CD-4DE6-9A5F-B35937F56C87} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_330_Plugin.exe [1458232 2020-02-11] (Adobe Inc. -> Adobe) Task: {C5505FDF-A149-4F57-8D57-C91C2B411883} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-02-07] (Dropbox, Inc -> Dropbox, Inc.) Task: {D666A81F-D410-4620-839F-2721CB0CF4D5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DABF7932-35E7-46C5-9D18-3067F40700DF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DBD72AB5-6907-445E-AA29-9E7774AE96B0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F789B80E-CD3A-442A-A202-EEB4BDFF1ECF} - System32\Tasks\Microsoft\Windows\Maintenance\InstallWinSAT => Maintenance.vbs (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Tcpip\Parameters: [DhcpNameServer] 87.216.1.65 87.216.1.66 Tcpip\..\Interfaces\{5b12b834-aa47-4192-836c-d1582a780ca3}: [DhcpNameServer] 87.216.1.65 87.216.1.66 Tcpip\..\Interfaces\{d1248661-23aa-4a5e-aee1-3b8016108853}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{dcfa845a-f7b4-4ee5-a6bd-fd180f1711fa}: [DhcpNameServer] 87.216.1.65 87.216.1.66 Internet Explorer: ================== SearchScopes: HKU\S-1-5-21-4027488509-1906755848-293239664-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_241\bin\ssv.dll [2020-01-18] (Oracle America, Inc. -> Oracle Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-01-18] (Oracle America, Inc. -> Oracle Corporation) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [2008-05-23] (Microsoft Corporation) [Archivo no firmado] FireFox: ======== FF DefaultProfile: twc6jofk.default-1581435879561 FF ProfilePath: C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561 [2020-02-11] FF DownloadDir: D:\Descargas FF Homepage: Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561 -> hxxps://www.google.com/ FF Extension: (Ghostery – Bloqueador de anuncios para privacidad) - C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561\Extensions\firefox@ghostery.com.xpi [2020-02-11] FF Extension: (Pinned WhatsApp Web) - C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561\Extensions\whatsapppanel@alejandrobrizuela.com.ar.xpi [2020-02-11] FF Extension: (Black Pixel Firefox) - C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561\Extensions\{46f60d87-d458-4083-b2a6-d8165d1c296c}.xpi [2020-02-11] FF Extension: (Blue Blau Bleu) - C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561\Extensions\{4f489301-7982-4df1-88b9-97ed9cc3285a}.xpi [2020-02-11] FF Extension: (Dark Development Theme) - C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561\Extensions\{533d33f6-2b91-4d80-93e2-4072d9682061}.xpi [2020-02-11] FF Extension: (NoScript) - C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2020-02-11] FF Extension: (fractal frost) - C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561\Extensions\{880e832d-62b7-405b-8bb2-3b22e9a10016}.xpi [2020-02-11] FF Extension: (tiger eyes light blue) - C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561\Extensions\{885baf65-4fb9-43e1-9a87-c552d440dcc9}.xpi [2020-02-11] FF Extension: (A Solid Green Success) - C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561\Extensions\{b75581ca-48e9-4c45-b7f5-33d0321c26a7}.xpi [2020-02-11] FF Extension: (Video DownloadHelper) - C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-02-11] FF Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-02-11] FF Extension: (Lightning Overload) - C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561\Extensions\{dbc0131d-f859-4e7d-8440-74d72483d4c3}.xpi [2020-02-11] FF Extension: (Glass - Black) - C:\Users\gabri\AppData\Roaming\Mozilla\Firefox\Profiles\twc6jofk.default-1581435879561\Extensions\{e5aa11fe-6320-4fe9-8a12-f58cb0e3fa55}.xpi [2020-02-11] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2017-11-27] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> ) FF Plugin: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-01-18] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-01-18] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> ) FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Archivo no firmado] FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2017-11-27] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-4027488509-1906755848-293239664-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\gabri\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-08] (Unity Technologies SF -> Unity Technologies ApS) Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-03] (ASUSTeK Computer Inc. -> ) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8402648 2019-11-20] (BattlEye Innovations e.K. -> ) R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2012-10-08] (Creative Technology Ltd) [Archivo no firmado] R2 CtHdaSvc; C:\WINDOWS\sysWow64\CtHdaSvc.exe [122880 2017-01-18] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-02-07] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-02-07] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-02-04] (Dropbox, Inc -> Dropbox, Inc.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3480720 2018-03-07] (Disc Soft Ltd -> Disc Soft Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-05-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R2 GamingServices; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.37.23001.0_x64__8wekyb3d8bbwe\GamingServices.exe [21432 2020-01-31] (Microsoft Corporation -> Microsoft Corporation) R2 GamingServicesNet; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.37.23001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [21432 2020-01-31] (Microsoft Corporation -> Microsoft Corporation) S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2020-02-11] (Malwarebytes Inc -> Malwarebytes) R2 MediatekRegistryWriter; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe [405136 2014-12-04] (MEDIATEK INC. -> Mediatek Inc.) R2 MediatekRegistryWriter64; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe [454288 2014-12-04] (MEDIATEK INC. -> Mediatek Inc.) R2 NoIPDUCService4; C:\Program Files (x86)\No-IP\ducservice.exe [12288 2015-07-20] () [Archivo no firmado] R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) S3 Origin Client Service; D:\Origin\OriginClientService.exe [2505008 2020-01-29] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3427640 2020-01-29] (Electronic Arts, Inc. -> Electronic Arts) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11969880 2019-07-03] (TeamViewer GmbH -> TeamViewer GmbH) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-03] (ASUSTeK Computer Inc. -> ) R3 cthda; C:\WINDOWS\system32\drivers\cthda.sys [1074984 2017-01-18] (Creative Technology Ltd -> Creative Technology Ltd) R3 cthdb; C:\WINDOWS\system32\DRIVERS\cthdb.sys [33792 2017-02-13] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-01-02] (Disc Soft Ltd -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-01-02] (Disc Soft Ltd -> Disc Soft Ltd) R3 gameflt; C:\WINDOWS\System32\DriverStore\FileRepository\gameflt.inf_amd64_1b1c9965dc1c6f0f\gameflt.sys [71000 2019-12-11] (Microsoft Windows -> Microsoft Corporation) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-02-07] (Martin Malik - REALiX -> REALiX(tm)) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-02-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 mt7612US; C:\WINDOWS\System32\drivers\mt7612US.sys [400392 2017-07-14] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.) R3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2244952 2015-11-19] (MEDIATEK INC. -> MediaTek Inc.) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9e532b5f619dc909\nvlddmkm.sys [23276960 2020-01-31] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation) S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [9860088 2019-07-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation ) R3 rtux64w10; C:\WINDOWS\System32\drivers\rtux64w10.sys [550152 2019-03-10] (Realtek Semiconductor Corp. -> Realtek Corporation ) R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> ) R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> ) S1 uabezbdm; C:\WINDOWS\system32\drivers\uabezbdm.sys [72816 2020-02-11] (Microsoft Corporation -> Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [376032 2020-02-04] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-04] (Microsoft Windows -> Microsoft Corporation) R3 Xvdd; C:\WINDOWS\System32\DriverStore\FileRepository\xvdd.inf_amd64_3865f7cd0ca0fb7c\xvdd.sys [485720 2020-01-31] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) =================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-02-11 22:08 - 2020-02-11 22:09 - 000000000 ____D C:\FRST 2020-02-11 21:32 - 2020-02-11 21:32 - 000003788 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn 2020-02-11 21:32 - 2020-02-11 21:32 - 000003346 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime 2020-02-11 20:57 - 2020-02-11 20:57 - 000072816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uabezbdm.sys 2020-02-11 19:45 - 2020-02-11 19:45 - 000478392 ____N (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\7B652B2A.sys 2020-02-11 19:45 - 2020-02-11 19:45 - 000085600 ____N (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\88251751.sys 2020-02-11 19:45 - 2020-02-11 19:45 - 000000000 ____D C:\KVRT_Data 2020-02-11 19:33 - 2020-02-11 19:33 - 000000731 _____ C:\Users\gabri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2020-02-11 19:33 - 2020-02-11 19:33 - 000000000 ____D C:\Users\gabri\AppData\Local\ESET 2020-02-11 18:57 - 2020-02-11 18:57 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-02-11 18:57 - 2020-02-11 18:57 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2020-02-11 18:57 - 2020-02-11 18:57 - 000000000 ____D C:\Users\gabri\AppData\Local\mbamtray 2020-02-11 18:57 - 2020-02-11 18:57 - 000000000 ____D C:\Users\gabri\AppData\Local\mbam 2020-02-11 18:57 - 2020-02-11 18:57 - 000000000 ____D C:\Users\gabri\AppData\Local\cache 2020-02-11 18:57 - 2020-02-11 18:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2020-02-11 18:57 - 2020-02-11 18:57 - 000000000 ____D C:\ProgramData\Malwarebytes 2020-02-11 18:53 - 2020-02-11 18:53 - 000000000 ____D C:\Program Files\Malwarebytes 2020-02-11 18:25 - 2020-02-11 19:35 - 000000000 ____D C:\Users\gabri\AppData\Roaming\ZHP 2020-02-11 18:25 - 2020-02-11 18:25 - 000000000 ____D C:\Users\gabri\AppData\Local\ZHP 2020-02-11 16:43 - 2020-02-11 16:43 - 000001025 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-02-11 16:43 - 2020-02-11 16:43 - 000000000 ____D C:\Program Files\Mozilla Firefox 2020-02-06 19:58 - 2020-02-06 19:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2020-02-05 13:36 - 2020-02-05 13:36 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2020-02-05 13:35 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2020-02-05 13:35 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe 2020-02-05 13:35 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2020-02-05 13:35 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2020-02-05 13:35 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2020-02-05 13:35 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll 2020-02-05 13:35 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2020-02-05 13:35 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2020-02-05 13:35 - 2020-01-31 00:04 - 000450576 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2020-02-05 13:35 - 2020-01-31 00:04 - 000353160 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2020-02-05 13:35 - 2020-01-31 00:03 - 011843504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll 2020-02-05 13:35 - 2020-01-31 00:03 - 010167544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 017462616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 005384584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 004718792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 002075904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 001727320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6444219.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 001569160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 001490688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6444219.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 001485688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 001370360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 001145776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 001064384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 000825720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 000815120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 000685912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 000677584 _____ C:\WINDOWS\system32\nvofapi64.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 000660176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 000557304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2020-02-05 13:35 - 2020-01-31 00:02 - 000545112 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2020-02-05 13:35 - 2020-01-31 00:01 - 040511408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll 2020-02-05 13:35 - 2020-01-31 00:01 - 035380120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll 2020-02-05 13:35 - 2020-01-31 00:01 - 015031808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2020-02-05 13:35 - 2020-01-30 23:58 - 004230752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2020-02-04 14:20 - 2020-02-04 14:20 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2020-02-04 14:20 - 2020-02-04 14:20 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2020-02-04 14:20 - 2020-02-04 14:20 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2020-02-04 14:20 - 2020-02-04 14:20 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2020-01-31 23:47 - 2020-01-31 23:47 - 000000000 ____D C:\Users\gabri\AppData\Local\Targem 2020-01-31 20:47 - 2020-01-31 20:47 - 000000000 ____D C:\Users\gabri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crossout 2020-01-31 20:47 - 2020-01-31 20:47 - 000000000 ____D C:\Users\gabri\AppData\Local\Gaijin 2020-01-31 20:47 - 2020-01-31 20:47 - 000000000 ____D C:\ProgramData\Gaijin 2020-01-27 15:24 - 2020-01-27 15:24 - 000000000 ____D C:\Users\gabri\AppData\LocalLow\nomada studio 2020-01-27 13:08 - 2020-01-27 13:08 - 000000000 ____D C:\Users\gabri\AppData\Roaming\A Plague Tale Innocence 2020-01-26 18:39 - 2020-01-26 18:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2020-01-26 18:39 - 2020-01-26 18:39 - 000000000 ____D C:\Program Files\7-Zip 2020-01-18 13:22 - 2020-01-18 13:22 - 000000000 ____D C:\Users\gabri\AppData\Local\AT 2020-01-18 13:17 - 2020-01-18 13:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon Ball Z Kakarot 2020-01-17 15:02 - 2020-01-18 13:05 - 000000000 ____D C:\Users\gabri\AppData\LocalLow\uTorrent 2020-01-16 17:10 - 2020-01-16 17:10 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-01-16 17:10 - 2020-01-16 17:10 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-01-16 17:10 - 2020-01-16 17:10 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-01-16 17:10 - 2020-01-16 17:10 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-01-16 17:10 - 2020-01-16 17:10 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-01-16 17:10 - 2020-01-16 17:10 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-01-16 17:10 - 2020-01-16 17:10 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2020-01-16 17:10 - 2020-01-16 17:10 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2020-01-16 17:10 - 2020-01-16 17:10 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-01-16 17:10 - 2020-01-16 17:10 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2020-01-16 17:10 - 2020-01-16 17:10 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2020-01-16 17:10 - 2020-01-16 17:10 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2020-01-16 17:10 - 2020-01-16 17:10 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-01-16 17:10 - 2020-01-16 17:10 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2020-01-16 17:10 - 2020-01-16 17:10 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2020-01-16 17:10 - 2020-01-16 17:10 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2020-01-16 17:10 - 2020-01-16 17:10 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys 2020-01-16 17:10 - 2020-01-16 17:10 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe 2020-01-16 17:10 - 2020-01-16 17:10 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WSDScan.sys 2020-01-16 17:10 - 2020-01-16 17:10 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll 2020-01-16 17:10 - 2020-01-16 17:10 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll 2020-01-16 17:06 - 2020-01-16 17:06 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-01-16 17:06 - 2020-01-16 17:06 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-01-15 16:41 - 2020-01-15 16:41 - 000000000 ____D C:\Users\gabri\AppData\Local\Electronic Arts ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-02-11 22:10 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-02-11 21:09 - 2017-11-29 20:07 - 000000000 ____D C:\Users\gabri\AppData\LocalLow\Mozilla 2020-02-11 20:57 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2020-02-11 20:41 - 2017-11-29 20:55 - 000000000 ____D C:\Program Files (x86)\Steam 2020-02-11 20:41 - 2017-11-29 19:57 - 000000000 ____D C:\ProgramData\NVIDIA 2020-02-11 20:22 - 2017-11-29 20:03 - 000000000 ____D C:\Users\gabri\AppData\Roaming\uTorrent 2020-02-11 20:13 - 2019-06-12 23:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-02-11 19:33 - 2017-12-09 18:35 - 000000000 ____D C:\Users\gabri\AppData\Local\CrashDumps 2020-02-11 19:16 - 2019-06-12 23:51 - 001773366 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-02-11 19:16 - 2019-03-19 12:59 - 000788560 _____ C:\WINDOWS\system32\perfh00A.dat 2020-02-11 19:16 - 2019-03-19 12:59 - 000155850 _____ C:\WINDOWS\system32\perfc00A.dat 2020-02-11 19:16 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF 2020-02-11 19:10 - 2019-06-12 23:49 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-02-11 19:10 - 2018-04-01 12:41 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2020-02-11 19:09 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2020-02-11 18:57 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-02-11 18:26 - 2019-06-12 23:49 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2020-02-11 18:26 - 2018-09-10 17:15 - 000000000 ____D C:\Program Files\CCleaner 2020-02-11 16:43 - 2019-02-15 17:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-02-11 16:34 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-02-11 16:34 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-02-11 16:30 - 2017-12-13 14:32 - 000000000 ____D C:\Users\gabri\AppData\Local\Battle.net 2020-02-11 16:29 - 2017-12-11 20:59 - 000000000 ____D C:\Users\gabri\AppData\Roaming\vlc 2020-02-11 16:27 - 2017-12-13 14:29 - 000000000 ____D C:\Program Files (x86)\Battle.net 2020-02-11 16:18 - 2019-02-15 16:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2020-02-11 15:53 - 2019-06-12 23:49 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4027488509-1906755848-293239664-1001 2020-02-11 15:53 - 2019-06-12 22:52 - 000002417 _____ C:\Users\gabri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-02-11 15:53 - 2017-11-29 19:49 - 000000000 ___RD C:\Users\gabri\OneDrive 2020-02-11 15:52 - 2019-06-12 23:49 - 000004618 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier 2020-02-11 15:52 - 2019-06-12 23:49 - 000004218 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{DCAE7CB1-F70C-4AF0-B0EB-F49AB6D1778C} 2020-02-11 15:52 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2020-02-11 15:52 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed 2020-02-09 23:41 - 2018-03-06 23:21 - 000000000 ____D C:\Users\gabri\AppData\Roaming\discord 2020-02-09 16:31 - 2017-11-29 20:10 - 000000000 ____D C:\Users\gabri\AppData\Local\PlaceholderTileLogoFolder 2020-02-08 20:59 - 2017-11-29 19:47 - 000000000 ____D C:\Users\gabri\AppData\Local\Packages 2020-02-06 19:58 - 2019-02-07 13:40 - 000000000 ____D C:\Program Files (x86)\Dropbox 2020-02-05 12:05 - 2019-06-12 23:49 - 000003622 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2020-02-05 12:05 - 2019-06-12 23:49 - 000003498 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2020-02-05 00:20 - 2019-05-07 23:05 - 000000000 ____D C:\Users\gabri\AppData\Local\MEGAsync 2020-02-04 22:39 - 2018-02-01 14:02 - 000000000 ____D C:\Users\gabri\AppData\Roaming\Origin 2020-02-04 22:39 - 2018-02-01 13:56 - 000000000 ____D C:\ProgramData\Origin 2020-02-04 15:17 - 2018-02-01 13:56 - 000000000 ____D C:\Users\gabri\AppData\Local\Origin 2020-02-04 12:15 - 2018-03-01 09:57 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2020-02-02 00:38 - 2018-01-02 17:48 - 000000000 ____D C:\Users\gabri\AppData\Roaming\DAEMON Tools Lite 2020-01-31 23:47 - 2019-10-24 14:49 - 000000000 ____D C:\Users\gabri\AppData\Roaming\EasyAntiCheat 2020-01-31 23:47 - 2017-12-07 22:35 - 000000000 ____D C:\Users\gabri\OneDrive\Documentos\My Games 2020-01-31 11:04 - 2019-12-12 11:38 - 000052152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2020-01-31 11:04 - 2019-10-11 12:39 - 000031672 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe 2020-01-31 11:04 - 2019-06-13 00:35 - 001336248 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2020-01-31 11:04 - 2019-06-13 00:35 - 000149432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2020-01-31 11:04 - 2019-06-13 00:35 - 000087992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll 2020-01-31 11:02 - 2019-02-07 13:40 - 000001022 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2020-01-31 11:02 - 2019-02-07 13:40 - 000001018 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2020-01-30 23:58 - 2019-05-27 23:43 - 004963008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2020-01-30 02:40 - 2019-05-27 23:43 - 000055783 _____ C:\WINDOWS\system32\nvinfo.pb 2020-01-30 00:56 - 2017-11-29 19:57 - 005577224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2020-01-30 00:56 - 2017-11-29 19:57 - 002655864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2020-01-30 00:56 - 2017-11-29 19:57 - 001767920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2020-01-30 00:56 - 2017-11-29 19:57 - 000670840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2020-01-30 00:56 - 2017-11-29 19:57 - 000454512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2020-01-30 00:56 - 2017-11-29 19:57 - 000131176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2020-01-30 00:56 - 2017-11-29 19:57 - 000083976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2020-01-29 19:26 - 2019-06-12 23:49 - 000004082 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2020-01-29 19:26 - 2019-06-12 23:49 - 000003850 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2020-01-27 23:18 - 2017-11-30 01:46 - 000000000 ____D C:\Users\gabri\AppData\Local\Spotify 2020-01-27 23:15 - 2017-11-30 01:44 - 000000000 ____D C:\Users\gabri\AppData\Roaming\Spotify 2020-01-27 08:11 - 2017-11-29 19:57 - 008887562 _____ C:\WINDOWS\system32\nvcoproc.bin 2020-01-26 23:41 - 2018-07-10 13:47 - 000000000 ____D C:\ProgramData\Packages 2020-01-23 14:28 - 2017-11-29 19:57 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2020-01-21 21:31 - 2019-06-12 22:52 - 000000000 ____D C:\Users\gabri 2020-01-18 14:47 - 2018-11-25 15:09 - 000000000 ____D C:\Program Files\Java 2020-01-18 14:47 - 2017-12-10 13:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2020-01-18 14:46 - 2018-11-25 15:09 - 000129088 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll 2020-01-18 12:57 - 2019-06-12 20:47 - 000000000 ____D C:\Users\gabri\AppData\Local\BitTorrentHelper 2020-01-17 13:34 - 2019-06-12 23:43 - 000356616 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-01-17 02:37 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP 2020-01-17 02:37 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-01-17 02:37 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-01-17 02:37 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-01-16 22:14 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-01-15 16:30 - 2017-12-04 00:13 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-01-15 16:28 - 2017-12-04 00:13 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Archivos en la raíz de algunos directorios ======== 2017-09-29 14:42 - 2017-09-29 14:42 - 000174592 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\EudOyytYlIE.exe 2018-04-12 00:34 - 2018-04-12 00:34 - 000059904 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\IJfgraIi.exe 2018-02-04 16:57 - 2018-02-04 16:57 - 000000000 _____ () C:\Users\gabri\AppData\Roaming\FC29FA0894FE.ini 2018-10-04 19:42 - 2018-10-04 19:42 - 000000000 _____ () C:\Users\gabri\AppData\Local\oobelibMkey.log 2017-09-29 14:42 - 2017-09-29 14:42 - 000059904 _____ (Microsoft Corporation) C:\Users\gabri\AppData\Local\QOaOEP.exe 2017-11-29 21:43 - 2019-01-07 17:13 - 000007602 _____ () C:\Users\gabri\AppData\Local\Resmon.ResmonCfg 2018-04-12 00:34 - 2018-04-12 00:34 - 000178688 _____ (Microsoft Corporation) C:\Users\gabri\AppData\Local\VIia.exe 2018-01-31 16:40 - 2018-05-23 18:45 - 000000002 _____ () C:\Users\gabri\AppData\Local\WMI.ini 2019-01-16 21:44 - 2019-01-16 21:44 - 000000015 _____ () C:\Users\gabri\AppData\Local\X-Plane_drm_11.prf 2019-01-16 21:43 - 2019-01-16 21:43 - 000000022 _____ () C:\Users\gabri\AppData\Local\x-plane_install_11.txt 2019-02-27 11:01 - 2019-02-27 11:01 - 000000000 _____ () C:\Users\gabri\AppData\Local\{467079AD-0031-46FA-98FB-54DBA47D61A1} ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================