Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 18-01-2020 Ejecutado por Yorudey (administrador) sobre YORUDEY-PC (Gigabyte Technology Co., Ltd. AB350-Gaming 3) (20-01-2020 21:57:09) Ejecutado desde C:\Users\Yorudey\Desktop Perfiles cargados: Yorudey (Perfiles disponibles: Yorudey & OVRLibraryService) Platform: Windows 10 Home Versión 1903 18362.592 (X64) Idioma: Español (España, internacional) Navegador predeterminado: Opera Modo de Inicio: Normal Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesos (Lista blanca) ================= (Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.) () [Archivo no firmado] C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0349781.inf_amd64_a9a51f30a2be0d77\B349558\atieclxx.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0349781.inf_amd64_a9a51f30a2be0d77\B349558\atiesrxx.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (ASUSTeK Computer Inc. -> TODO: ) C:\Program Files (x86)\ASUS\ASUS Gamepad\ap\AsusGamepadServer.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.6926\Agent.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (Discord Inc. -> Discord Inc.) C:\Users\Yorudey\AppData\Local\Discord\app-0.0.305\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\Yorudey\AppData\Local\Discord\app-0.0.305\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\Yorudey\AppData\Local\Discord\app-0.0.305\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\Yorudey\AppData\Local\Discord\app-0.0.305\Discord.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\Gigabyte\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\GraphicsCardEngine.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\Gigabyte\AORUS GRAPHICS ENGINE\AORUS.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\Gigabyte\GService\GCloud.exe (GIGABYTE Technology Co.,Ltd.) [Archivo no firmado] C:\Program Files (x86)\Gigabyte\AORUS GRAPHICS ENGINE\Led\GvLedService.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (Kristjan Skutta -> ) D:\Juegos\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBarFT.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe (Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe (Oculus VR, LLC -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe (Open Source Developer, Benjamin Höglinger-Stelzer -> Scarlet.Crush Productions) C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpService.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera.exe (Opera Software AS -> Opera Software) C:\Users\Yorudey\AppData\Local\Programs\Opera GX\64.0.3417.167\opera_crashreporter.exe (Parsec Cloud, Inc. -> Parsec) C:\Program Files\Parsec\pservice.exe (Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\Yorudey\AppData\Local\Blitz\current\Blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\Yorudey\AppData\Local\Blitz\current\Blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\Yorudey\AppData\Local\Blitz\current\Blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\Yorudey\AppData\Local\Blitz\current\Blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\Yorudey\AppData\Local\Blitz\current\Blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\Yorudey\AppData\Local\Blitz\current\Blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\Yorudey\AppData\Local\Blitz\current\Blitz.exe (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent) C:\Program Files\txgameassistant\appmarket\QMEmulatorService.exe (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.2.222\WsAppService.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe ==================== Registro (Lista blanca) =================== (Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270208 2018-11-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [598200 2018-09-28] (Razer USA Ltd. -> Razer Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Archivo no firmado] HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [36760 2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2904984 2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Inc.) HKLM-x32\...\Run: [REDRAGON M711 Gaming Mouse] => C:\Program Files (x86)\REDRAGON M711 Gaming Mouse\hid.exe [955392 2017-10-19] () [Archivo no firmado] HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN HKU\S-1-5-21-3812456334-1740610062-835106083-1001\...\Run: [Steam] => D:\Juegos\Steam\steam.exe [3288016 2019-12-16] (Valve -> Valve Corporation) HKU\S-1-5-21-3812456334-1740610062-835106083-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd) HKU\S-1-5-21-3812456334-1740610062-835106083-1001\...\Run: [Discord] => C:\Users\Yorudey\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.) HKU\S-1-5-21-3812456334-1740610062-835106083-1001\...\Run: [Hot Keyboard] => C:\Program Files (x86)\Hot Keyboard Pro\HotKeyb.exe [614400 2005-07-21] (TB Labs) [Archivo no firmado] HKU\S-1-5-21-3812456334-1740610062-835106083-1001\...\Run: [com.blitz.app] => C:\Users\Yorudey\AppData\Local\Blitz\Update.exe [1845320 2019-09-13] (Swift Media Entertainment, Inc. -> GitHub) HKU\S-1-5-21-3812456334-1740610062-835106083-1001\...\Run: [Voicemod] => C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe [2420168 2019-08-28] (Voicemod Sociedad Limitada -> Voicemod) HKU\S-1-5-21-3812456334-1740610062-835106083-1001\...\Run: [LoR deck tracker] => C:\Users\Yorudey\AppData\Local\RDT\app-0.3.9\RDT.exe [1047272 2019-11-18] (Gamers Net Inc -> Mobalytics) HKU\S-1-5-21-3812456334-1740610062-835106083-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36060048 2019-12-17] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3812456334-1740610062-835106083-1001\...\MountPoints2: {38bdd0fe-e3de-11e9-91a6-e0d55e298ae9} - "E:\HiSuiteDownLoader.exe" HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-09] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\79.1.2.43\Installer\chrmstp.exe [2020-01-17] (Brave Software, Inc.) [Archivo no firmado] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\fcbd.bat [2016-12-17] () [Archivo no firmado] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ScpToolkit Tray Notifications.lnk [2018-07-17] ShortcutTarget: ScpToolkit Tray Notifications.lnk -> C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpTrayApp.exe (Open Source Developer, Benjamin Höglinger-Stelzer -> Scarlet.Crush Productions) Startup: C:\Users\Yorudey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE AORUS GRAPHICS ENGINE.lnk [2018-06-10] ShortcutTarget: GIGABYTE AORUS GRAPHICS ENGINE.lnk -> C:\Program Files (x86)\Gigabyte\AORUS GRAPHICS ENGINE\autorun.exe () [Archivo no firmado] Startup: C:\Users\Yorudey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk [2019-12-18] ShortcutTarget: IMVU.lnk -> C:\Users\Yorudey\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe (IMVU, Inc. -> ) Startup: C:\Users\Yorudey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2019-11-21] ShortcutTarget: Twitch.lnk -> C:\Users\Yorudey\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.) Startup: C:\Users\Yorudey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WO Mic Client.lnk [2016-11-10] ShortcutTarget: WO Mic Client.lnk -> C:\Program Files (x86)\WOMic\WOMicClient.exe () [Archivo no firmado] ==================== Tareas programadas (Lista blanca) ============ (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) Task: {1A243C86-5286-44B4-B698-50442CF46CDE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.) Task: {2622DBE4-AF29-4854-AB6A-3783CDE551E9} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_156_pepper.exe [1453056 2019-03-17] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {318637F0-1677-4606-B939-23033E78193D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-23] (Google Inc -> Google LLC) Task: {3A2C4BFC-C514-4463-A95E-6427A4D011A8} - System32\Tasks\ScpUpdater => C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [460480 2016-04-12] (Open Source Developer, Benjamin Höglinger-Stelzer -> Nefarius Software Solutions) Task: {3BBC28D3-140A-46E4-A227-9F35E5C80492} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd) Task: {41170BE2-3D36-4EF6-AEC5-BB5FCBF8B4C3} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2019-12-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {4421199D-7CB6-4EC9-8C7E-01CD984DD2E2} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-Yorudeybenavidescr@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {4B9BF52A-2BD7-406F-B715-BD4D26234788} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation -> Microsoft Corporation) Task: {50C918F7-0D36-46D8-918B-CFBE3200BEE5} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 15.0.437 => C:\Program Files (x86)\Microsoft Visual Studio\2017\Community\Common7\IDE\VSIXAutoUpdate.exe Task: {51C99DC5-F371-4011-A016-4DDA67807D16} - System32\Tasks\KMSAuto => C:\WINDOWS\KMSAuto.exe Task: {62FE1D72-FBAD-4FDF-B16A-B1103F609CC0} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-08-13] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {848CA4C8-E0C6-4DB4-88A1-EC344088765E} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2019-06-17] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {8A65126B-B54A-4753-95C4-EA9476A8A52F} - System32\Tasks\Opera GX scheduled Autoupdate 1574480599 => C:\Users\Yorudey\AppData\Local\Programs\Opera GX\launcher.exe [1474584 2020-01-15] (Opera Software AS -> Opera Software) Task: {8A8EBBD2-FBB1-47FE-8E3F-6E5A4051BEB4} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {8ADFD1EF-63B9-476D-830F-718DB128C071} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd) Task: {923C2144-2279-4C75-95B5-1B0C115429C9} - System32\Tasks\Opera scheduled Autoupdate 1574458798 => C:\Program Files\Opera\launcher.exe [1528344 2019-12-19] (Opera Software AS -> Opera Software) Task: {938AE4D9-888F-4690-AA3D-99CA86FB4CBA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-23] (Google Inc -> Google LLC) Task: {94F472E2-6597-4A90-A050-C09738ABD744} - System32\Tasks\Uninstaller_SkipUac_Yorudey => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [5157136 2018-10-17] (IObit Information Technology -> IObit) Task: {9A6F7288-7D2E-42EC-B4F7-AFDEFC53218B} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [235952 2018-04-12] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {A37AD270-AE2D-4CF4-BE7B-F19A1FE53321} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation -> Microsoft Corporation) Task: {A4F92764-5918-441A-8492-8C7D7290BE00} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [862 2019-04-30] () [Archivo no firmado] Task: {AD527BE4-9A3A-4190-93F8-170962B8180E} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3812456334-1740610062-835106083-1001 => C:\Users\Yorudey\AppData\Local\MEGAsync\MEGAupdater.exe Task: {C4544617-E3AD-4B78-B2A7-865FB9AEC532} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2019-12-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {C88D66AE-FDAB-45C7-9D07-701472D20F30} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [506880 2019-12-04] (Advanced Micro Devices, Inc.) [Archivo no firmado] Task: {CA442143-18DC-4C9D-BAA8-F508DE792E97} - \Microsoft\Windows\UNP\RunCampaignManager -> Ningún archivo <==== ATENCIÓN Task: {CBAE530F-030D-4101-98EB-B7126A2CB17E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_140_Plugin.exe [1366528 2019-06-17] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {D01EF47C-205E-45C0-9931-A195F32C1869} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems) Task: {D34B6687-D6D8-442B-A919-ABF382997226} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-08-13] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {D3E583AB-F493-4B19-89C3-3BB626EE998F} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Yorudey\AppData\Local\Temp\scoped_dir3284_8145\esetonlinescanner_esn.exe <==== ATENCIÓN Task: {DCFAE18C-5456-44EB-B28B-D6E49E9AE3B6} - System32\Tasks\ASUS Gamepad => C:\Program Files (x86)\ASUS\ASUS Gamepad\ap\AsusGamepadServer.exe [37360 2015-09-14] (ASUSTeK Computer Inc. -> TODO: ) Task: {E4945D2F-EB07-49A1-BA9B-D1F73D06689E} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Yorudey\AppData\Local\Temp\scoped_dir3284_8145\esetonlinescanner_esn.exe <==== ATENCIÓN Task: {E83F5756-F879-495F-9D1A-23500E4C37D7} - System32\Tasks\Red Giant Link => C:\Program Files (x86)\Red Giant Link\Red Giant Link.exe [409816 2014-09-05] (Red Giant Software LLC -> ) Task: {F22A2380-3CAB-4A64-A9B7-398B3CE326AE} - System32\Tasks\Microsoft Office 15 Sync Maintenance for YORUDEY-PC-Yorudey YORUDEY-PC => C:\Program Files (x86)\Microsoft Office\Office15\MsoSync.exe [448704 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {FB18E696-AA63-413A-A88D-D4F99452EABE} - System32\Tasks\Launcher GIGABYTE AORUS GRAPHICS ENGINE => C:\Program Files (x86)\GIGABYTE\AORUS GRAPHICS ENGINE\AORUS.exe [20076688 2018-05-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.) (Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\ScpUpdater.job => C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe ==================== Internet (Lista blanca) ==================== (Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.) Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 186.32.188.33 186.32.188.32 Tcpip\..\Interfaces\{68c74832-e5f4-448f-a90b-1c60be59b1da}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{69dcbd48-01dc-4f89-becf-9dff85464474}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{b86912da-0ac7-491a-9c37-cd9fbef2d4a9}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{cd5e0ba1-f2b6-4035-afbb-9be79e844e02}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{da7ebe24-f916-477e-a236-2e6e8bf12c58}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{fa6a9950-7c37-48ca-92ec-b0105e7825d4}: [DhcpNameServer] 186.32.188.33 186.32.188.32 Internet Explorer: ================== HKU\S-1-5-21-3812456334-1740610062-835106083-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-xl/?ocid=iehp BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2018-07-19] (IObit Information Technology -> IObit) BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-01-21] (Microsoft Corporation -> Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-15] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-15] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) FireFox: ======== FF DefaultProfile: enjzeipk.default FF ProfilePath: C:\Users\Yorudey\AppData\Roaming\Mozilla\Firefox\Profiles\pm5904lt.default-release [2020-01-20] FF Extension: (Watch2Gether) - C:\Users\Yorudey\AppData\Roaming\Mozilla\Firefox\Profiles\pm5904lt.default-release\Extensions\{6ea0a676-b3ef-48aa-b23d-24c8876945fb}.xpi [2019-12-25] FF Extension: (Metastream Remote) - C:\Users\Yorudey\AppData\Roaming\Mozilla\Firefox\Profiles\pm5904lt.default-release\Extensions\{da2b93f0-35d5-461e-9bc7-6ba10aef1af4}.xpi [2019-12-04] FF Extension: (VTT Enhancement Suite) - C:\Users\Yorudey\AppData\Roaming\Mozilla\Firefox\Profiles\pm5904lt.default-release\Extensions\{ffed5dfa-f0e1-403d-905d-ac3f698660a7}.xpi [2019-12-25] FF ProfilePath: C:\Users\Yorudey\AppData\Roaming\Mozilla\Firefox\Profiles\enjzeipk.default [2020-01-20] FF Extension: (SoundCloud MP3 Downloader) - C:\Users\Yorudey\AppData\Roaming\Mozilla\Firefox\Profiles\enjzeipk.default\Extensions\jid1-hnmMaq1milpehc6uI@jetpack.xpi [2019-05-04] FF Extension: (VTT Enhancement Suite) - C:\Users\Yorudey\AppData\Roaming\Mozilla\Firefox\Profiles\enjzeipk.default\Extensions\{ffed5dfa-f0e1-403d-905d-ac3f698660a7}.xpi [2019-06-29] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2017-05-06] [Heredado] [no firmado] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_29_0_0_140.dll [2019-06-17] (Adobe Systems Incorporated -> ) FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [Ningún archivo] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_140.dll [2019-06-17] (Adobe Systems Incorporated -> ) FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-15] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-15] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-08-13] (Brave Software, Inc. -> BraveSoftware Inc.) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-08-13] (Brave Software, Inc. -> BraveSoftware Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [Ningún archivo] Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> hxxp://google.com/ CHR StartupUrls: Default -> "" CHR Profile: C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default [2020-01-20] CHR DownloadDir: D:\Descargas CHR Extension: (Presentaciones) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12] CHR Extension: (BetterTTV) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2020-01-13] CHR Extension: (Documentos) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12] CHR Extension: (Google Drive) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-07] CHR Extension: (MEGA) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2020-01-16] CHR Extension: (YouTube) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-07] CHR Extension: (Sad Panda) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohapeiooecafommnlaiccilacgmkaoc [2019-04-14] CHR Extension: (AdBoom ad blocker) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\cajimjmphdgkpcefbpinlmliccebbcka [2019-10-24] CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-22] CHR Extension: (Watch2Gether) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\cimpffimgeipdhnhjohpbehjkcdpjolg [2019-12-17] CHR Extension: (Play HLS M3u8) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckblfoghkjhaclegefojbgllenffajdc [2019-03-05] CHR Extension: (Tampermonkey) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-12-02] CHR Extension: (VTT Enhancement Suite) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadcomaehamhdhekodcpiglabcjkepff [2019-06-24] CHR Extension: (FrankerFaceZ) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2017-03-22] CHR Extension: (Metastream Remote) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\fakegmdomhmegokfomgmkbopjibonfcp [2019-11-21] CHR Extension: (ZenMate VPN - Mejor seguridad para Internet) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2019-10-03] CHR Extension: (Hojas de cálculo) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12] CHR Extension: (Vysor) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\gidgenkbbabolejbgbpnhbimgjbffefm [2019-05-14] CHR Extension: (NextPage) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmngokdlpjndogllbjmdldiidknbkbli [2019-10-04] CHR Extension: (TwitchAlerts Stream Labels) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgmggmdngboajiakmbpdknfpdelbjbcg [2016-12-07] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03] CHR Extension: (Enhanced Steam) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2019-02-02] CHR Extension: (Gmail) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29] CHR Extension: (Chrome Media Router) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-16] CHR Extension: (Onepage) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Default\Extensions\pljpepknjlkhhhnheilglnnileomjcml [2019-10-23] CHR Profile: C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-01-19] CHR Profile: C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-01-19] CHR Extension: (Presentaciones) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-08-23] CHR Extension: (Documentos) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2019-08-23] CHR Extension: (Google Drive) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-08-23] CHR Extension: (YouTube) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-08-23] CHR Extension: (Hojas de cálculo) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-08-23] CHR Extension: (Documentos de Google sin conexión) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-08-23] CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-08-23] CHR Extension: (Gmail) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-08-23] CHR Extension: (Chrome Media Router) - C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-23] CHR Profile: C:\Users\Yorudey\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-19] Opera: ======= OPR DownloadDir: C:\Users\Yorudey\Desktop\Mapas Dungeons\Character OPR Extension: (BetterTTV) - C:\Users\Yorudey\AppData\Roaming\Opera Software\Opera Stable\Extensions\deofbbdfofnmppcjbhjibgodpcdchjii [2019-01-10] OPR Extension: (FrankerFaceZ) - C:\Users\Yorudey\AppData\Roaming\Opera Software\Opera Stable\Extensions\djkpepcignmpfblhbfpmlhoindhndkdj [2019-11-18] OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\Yorudey\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2019-10-25] ==================== Servicios (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\u0349781.inf_amd64_a9a51f30a2be0d77\B349558\atiesrxx.exe [532712 2019-12-12] (Advanced Micro Devices, Inc. -> AMD) R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [466800 2018-11-09] (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8402648 2019-12-16] (BattlEye Innovations e.K. -> ) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-08-13] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-08-13] (Brave Software, Inc. -> BraveSoftware Inc.) R2 Ds3Service; C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpService.exe [394944 2016-04-12] (Open Source Developer, Benjamin Höglinger-Stelzer -> Scarlet.Crush Productions) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-02-06] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [146864 2018-04-12] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [Archivo no firmado] R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [153360 2018-09-25] (IObit Information Technology -> IObit) R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21304 2017-09-28] (Microsoft Corporation -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6960640 2019-12-15] (Malwarebytes Inc -> Malwarebytes) S3 NGS; C:\WINDOWS\NGService.exe [2994248 2018-10-19] (NEXON Korea Corporation. -> NEXON Korea Corporation) S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [123312 2018-04-12] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S3 OVRLibraryService; C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe [145336 2020-01-07] (Oculus VR, LLC -> Facebook Technologies, LLC) R2 OVRService; C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe [913848 2020-01-07] (Oculus VR, LLC -> Facebook Technologies, LLC) R2 Parsec; C:\Program Files\Parsec\pservice.exe [190536 2018-07-27] (Parsec Cloud, Inc. -> Parsec) R2 QMEmulatorService; C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [148840 2019-09-30] (Tencent Technology(Shenzhen) Company Limited -> Tencent) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [474256 2019-12-11] (Rockstar Games, Inc. -> Rockstar Games) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Archivo no firmado] S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [187904 2017-09-28] (Microsoft Corporation) [Archivo no firmado] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12001112 2019-08-07] (TeamViewer GmbH -> TeamViewer GmbH) S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2019-07-25] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) R2 Wallpaper Engine Service; D:\Juegos\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [354808 2019-10-28] (Kristjan Skutta -> ) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-18] (Microsoft Corporation -> Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-18] (Microsoft Corporation -> Microsoft Corporation) R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.222\WsAppService.exe [474768 2017-03-01] (Wondershare software CO., LIMITED -> Wondershare) R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-07-09] (Wondershare Technology Co.,Ltd -> Wondershare) R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [130336 2019-06-26] (Wondershare Technology Co.,Ltd -> Wondershare) R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [2236360 2019-05-10] (Wacom Technology Corporation -> Wacom Technology, Corp.) ===================== Controladores (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) S3 AGP; C:\WINDOWS\System32\drivers\AsusGamePad.sys [21592 2015-09-14] (ASUSTeK Computer Inc. -> ASUS Corporation) R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> ) R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [46040 2019-10-30] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc) R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [24528 2019-04-18] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc) R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\u0349781.inf_amd64_a9a51f30a2be0d77\B349558\atikmdag.sys [65723616 2019-12-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\u0349781.inf_amd64_a9a51f30a2be0d77\B349558\atikmpag.sys [600296 2019-12-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [111456 2019-12-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [32520 2019-09-17] (Advanced Micro Devices INC. -> Advanced Micro Devices) R0 amdpsp; C:\WINDOWS\System32\DRIVERS\amdpsp.sys [138064 2019-06-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. ) R2 AMDRyzenMasterDriver; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\AMD\Ryzen\AMDRyzenMasterDriver.sys [70304 2017-11-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [93240 2018-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [33336 2018-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> ) R2 aow_drv; C:\Program Files\TxGameAssistant\UI\2.0.12832.123\aow_drv_x64_ev.sys [863616 2019-09-27] (Tencent Technology (Shenzhen) Company Limited -> Tencent) R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [108152 2019-07-23] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) R3 atillk64; C:\Program Files (x86)\GIGABYTE\AORUS GRAPHICS ENGINE\AtiTool\atillk64.sys [14608 2006-07-19] (ATI Technologies, Inc -> ATI Technologies Inc.) S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [2836840 2020-01-18] (BattlEye Innovations e.K. -> ) R1 cbfs6; C:\WINDOWS\system32\drivers\cbfs6.sys [460992 2016-09-21] (EldoS Corporation -> /n software, Inc.) S3 clwvd7; C:\WINDOWS\system32\DRIVERS\clwvd7.sys [42968 2015-03-24] (CyberLink Corp. -> CyberLink Corporation) R3 CMUSBDAC; C:\WINDOWS\system32\DRIVERS\CMUSBDAC.sys [3819744 2018-07-24] (WDKTestCert cm359,131641702659254692 -> C-MEDIA) S3 DroidCam; C:\WINDOWS\system32\DRIVERS\droidcam.sys [33592 2015-05-23] (DEV47 APPS -> Dev47Apps) S3 DroidCamVideo; C:\WINDOWS\system32\DRIVERS\droidcamvideo.sys [230712 2015-05-23] (DEV47 APPS -> Windows (R) Win 7 DDK provider) S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [34496 2018-10-18] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R0 EPMVolFlt; C:\WINDOWS\System32\drivers\EPMVolFlt.sys [30416 2018-10-18] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider) S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10848 2018-10-24] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Archivo no firmado] R3 gdrv; C:\Windows\gdrv.sys [26792 2018-06-11] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R3 gdrv2; C:\WINDOWS\gdrv2.sys [32600 2019-07-15] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S3 GLCKIO; C:\ProgramData\ASUS\GLKIO\690b33e1-0462-4e84-9bea-c7552b45432a.sys [18712 2018-06-10] (ASUSTeK Computer Inc. -> ) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-05-19] (Martin Malik - REALiX -> REALiX(tm)) R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37184 2018-10-16] (IObit Information Technology -> IObit) R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [43392 2018-10-16] (IObit Information Technology -> IObit) S3 KINONI_Wave; C:\WINDOWS\system32\drivers\kinonivad.sys [32360 2016-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2019-03-18] (Microsoft Windows -> Microsoft Corporation) R2 LdBoxDrv; C:\Program Files\dnplayerext2\LdBoxDrv.sys [283216 2019-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Oracle Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216544 2019-12-16] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-12-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-01-20] (Malwarebytes Inc -> Malwarebytes) R1 NemuDrv; C:\Program Files (x86)\MuMu\emulator\nemu\Hypervisor\NemuDrv.sys [299240 2018-05-03] (NetEase(Hangzhou) Network Co. Ltd. -> NetEase Corporation) R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [83776 2019-05-10] (Insecure.Com LLC -> Insecure.Com LLC.) S3 OCULUSVRHEADSET; C:\WINDOWS\System32\drivers\OCULUS119B.sys [1887232 2018-02-12] (C-MEDIA ELECTRONICS INC. -> OCULUS) R3 Oculus_ViGEmBus; C:\WINDOWS\System32\drivers\Oculus_ViGEmBus.sys [32856 2018-02-12] (Oculus VR, LLC -> Facebook Inc.) S3 OCUSBVID; C:\WINDOWS\System32\drivers\ocusbvid111.sys [69176 2018-02-12] (Oculus VR, LLC -> Oculus VR, LLC) S3 Phosgene; C:\WINDOWS\system32\DRIVERS\Phosgene.sys [34136 2015-09-02] (ADORIASOFT LLC -> Adoriasoft LLC) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> ) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1167768 2019-11-20] (Realtek Semiconductor Corp. -> Realtek ) S3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [50240 2019-09-19] (Razer USA Ltd. -> Razer Inc) S3 RzDev_006e; C:\WINDOWS\System32\drivers\RzDev_006e.sys [51688 2018-04-22] (Razer USA Ltd. -> Razer Inc) S3 RzDev_0306; C:\WINDOWS\System32\drivers\RzDev_0306.sys [51776 2019-09-19] (Razer USA Ltd. -> Razer Inc) R3 rzjstk; C:\WINDOWS\System32\drivers\rzjstk.sys [36568 2015-08-13] (Razer Inc. -> Razer Inc) R3 rzkeypadendpt; C:\WINDOWS\System32\drivers\rzkeypadendpt.sys [46280 2015-08-13] (Razer Inc. -> Razer Inc) R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software) R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> ) R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> ) S3 tesrsdt; C:\WINDOWS\system32\drivers\tesrsdt.sys [442128 2019-10-09] (Tencent Technology(Shenzhen) Company Limited -> TENCENT) S3 TesSafe; C:\WINDOWS\system32\TesSafe.sys [555064 2019-11-30] (Tencent Technology(Shenzhen) Company Limited -> TENCENT) R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [60640 2014-02-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) R3 VBAudio100VMVAIO3MME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio364_win10.sys [71712 2019-02-08] (Vincent Burel -> Windows (R) Win 7 DDK provider) R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider) R3 VBAudioVMAUXVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmauxvaio64_win10.sys [71920 2019-02-08] (Vincent Burel -> Windows (R) Win 7 DDK provider) R3 VBAudioVMVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2019-02-08] (Vincent Burel -> Windows (R) Win 7 DDK provider) R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [53128 2018-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer) R3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [45408 2019-07-02] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider) R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [18624 2016-09-21] (EldoS Corporation -> /n software, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46472 2019-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [333784 2019-03-18] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-18] (Microsoft Windows -> Microsoft Corporation) S3 wovad_micarray; C:\WINDOWS\system32\drivers\womic.sys [33112 2016-07-07] (Beijing Wolicheng Technology Co., Ltd. -> Windows (R) Win 7 DDK provider) S3 xhunter1; C:\WINDOWS\xhunter1.sys [74552 2019-12-09] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [26200 2016-06-15] (Splitmedialabs Limited -> SplitmediaLabs Limited) ==================== NetSvcs (Lista blanca) =================== (Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.) ==================== Un mes (creado) =================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-01-20 21:57 - 2020-01-20 21:57 - 000051186 ____C C:\Users\Yorudey\Desktop\FRST.txt 2020-01-20 21:56 - 2020-01-20 21:57 - 000000000 ____D C:\FRST 2020-01-20 21:56 - 2020-01-20 21:56 - 002572800 ____C (Farbar) C:\Users\Yorudey\Desktop\FRST64.exe 2020-01-20 18:35 - 2020-01-20 18:35 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2020-01-20 07:31 - 2020-01-20 18:25 - 000000000 ____D C:\KVRT_Data 2020-01-20 07:04 - 2020-01-20 07:04 - 000005552 ____C C:\Users\Yorudey\Desktop\ese.txt 2020-01-19 18:00 - 2020-01-19 18:00 - 000001827 ____C C:\Users\Yorudey\Desktop\Malwa.txt 2020-01-19 16:20 - 2020-01-19 16:20 - 000008407 ____C C:\Users\Yorudey\Desktop\ZHPCleaner (R).txt 2020-01-19 16:16 - 2020-01-19 16:16 - 000008783 ____C C:\Users\Yorudey\Desktop\ZHPCleaner (S).txt 2020-01-19 16:06 - 2020-01-19 16:20 - 000000000 ____D C:\Users\Yorudey\AppData\Roaming\ZHP 2020-01-19 16:06 - 2020-01-19 16:06 - 000000875 ____C C:\Users\Yorudey\Desktop\ZHPCleaner.lnk 2020-01-19 16:06 - 2020-01-19 16:06 - 000000000 ____D C:\Users\Yorudey\AppData\Local\ZHP 2020-01-19 16:05 - 2020-01-19 16:05 - 000003396 ____C C:\Users\Yorudey\Desktop\AdwCleaner[C00].txt 2020-01-19 16:04 - 2020-01-19 16:04 - 000000000 ____D C:\Users\Yorudey\AppData\Roaming\Tencent 2020-01-19 16:04 - 2020-01-19 16:04 - 000000000 ____D C:\Users\Yorudey\AppData\Local\Tencent 2020-01-19 15:59 - 2020-01-19 16:03 - 000000000 ____D C:\AdwCleaner 2020-01-18 16:56 - 2020-01-18 16:56 - 000000000 ____D C:\Users\Yorudey\AppData\Local\TowerOfGuns2 2020-01-18 16:46 - 2020-01-18 16:46 - 000000209 ____C C:\Users\Yorudey\Desktop\MOTHERGUNSHIP.url 2020-01-18 15:27 - 2020-01-18 15:27 - 000000209 ____C C:\Users\Yorudey\Desktop\Dead Cells.url 2020-01-16 20:07 - 2020-01-20 00:02 - 000000739 ____C C:\Users\Yorudey\Desktop\ESET Online Scanner.lnk 2020-01-16 19:55 - 2020-01-20 07:09 - 000000000 ___DC C:\Users\Yorudey\Desktop\LIMP 2020-01-16 19:55 - 2020-01-16 19:56 - 000002934 ____C C:\Users\Yorudey\Desktop\Rkill.txt 2020-01-16 17:46 - 2020-01-16 17:51 - 000000000 ___DC C:\Users\Yorudey\Documents\Call of Duty Modern Warfare 2020-01-16 17:42 - 2020-01-16 17:42 - 000002219 _____ C:\Users\Public\Desktop\Streamlabs Chatbot.lnk 2020-01-16 14:59 - 2020-01-16 14:59 - 000000759 _____ C:\Users\Public\Desktop\Call of Duty Modern Warfare.lnk 2020-01-16 08:33 - 2020-01-16 08:33 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2020-01-16 08:33 - 2020-01-16 08:33 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll 2020-01-16 08:33 - 2020-01-16 08:33 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-01-16 08:32 - 2020-01-16 08:32 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-01-16 08:32 - 2020-01-16 08:32 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-01-16 08:32 - 2020-01-16 08:32 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-01-16 08:32 - 2020-01-16 08:32 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-01-16 08:32 - 2020-01-16 08:32 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-01-16 08:32 - 2020-01-16 08:32 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2020-01-16 08:32 - 2020-01-16 08:32 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2020-01-16 08:32 - 2020-01-16 08:32 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-01-16 08:32 - 2020-01-16 08:32 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2020-01-16 08:32 - 2020-01-16 08:32 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2020-01-16 08:32 - 2020-01-16 08:32 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2020-01-16 08:32 - 2020-01-16 08:32 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-01-16 08:32 - 2020-01-16 08:32 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2020-01-16 08:32 - 2020-01-16 08:32 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2020-01-16 08:32 - 2020-01-16 08:32 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe 2020-01-16 08:32 - 2020-01-16 08:32 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll 2020-01-16 08:32 - 2020-01-16 08:32 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll 2020-01-16 00:04 - 2020-01-16 00:04 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-01-16 00:04 - 2020-01-16 00:04 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-01-13 08:41 - 2020-01-13 08:44 - 000000000 ____D C:\Program Files\Razer 2020-01-13 08:34 - 2020-01-20 18:47 - 000000000 ____D C:\Users\Yorudey\AppData\Local\CrashDumps 2020-01-13 08:31 - 2020-01-13 08:31 - 000000000 ____D C:\Users\Yorudey\AppData\Roaming\Synapse3 2020-01-13 08:27 - 2019-10-31 01:17 - 000079368 _____ (Razer Inc) C:\WINDOWS\system32\RazerS3Coinstaller.dll 2020-01-10 21:32 - 2020-01-10 21:32 - 000000000 ___DC C:\Users\Yorudey\AppData\LocalLow\うおつき 2020-01-09 11:29 - 2020-01-20 19:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2020-01-08 13:49 - 2020-01-08 13:49 - 000000000 ____D C:\ProgramData\Redstone 2020-01-08 01:58 - 2020-01-12 11:25 - 000000000 ___DC C:\Users\Yorudey\Desktop\rdr2_online_mod_menu_[unknowncheats.me]_ 2020-01-06 19:03 - 2020-01-06 19:03 - 000000000 ____D C:\Users\Yorudey\AppData\Roaming\Rogue Legacy 2020-01-06 19:02 - 2020-01-06 19:02 - 000000209 ____C C:\Users\Yorudey\Desktop\Rogue Legacy.url 2020-01-03 02:09 - 2020-01-03 02:09 - 000000000 ____D C:\Users\Yorudey\AppData\Roaming\Party Games 2020-01-02 22:35 - 2020-01-02 22:35 - 000000261 ____C C:\Users\Yorudey\Desktop\METAL SLUG 3.url 2020-01-02 22:18 - 2020-01-02 22:21 - 000000000 ____D C:\Users\Yorudey\AppData\Local\mslug3 2020-01-02 14:08 - 2020-01-02 14:08 - 000000017 ____C C:\Users\Yorudey\Desktop\re.txt 2020-01-01 23:57 - 2020-01-01 23:57 - 050038009 ____C C:\Users\Yorudey\Desktop\2020-01-01 23-52-08.mp4 2020-01-01 20:02 - 2020-01-01 20:02 - 000000261 ____C C:\Users\Yorudey\Desktop\Ape Out.url 2020-01-01 20:02 - 2020-01-01 20:02 - 000000000 ___DC C:\Users\Yorudey\AppData\LocalLow\Gabe Cuzzillo 2020-01-01 18:37 - 2020-01-01 18:37 - 000000209 ____C C:\Users\Yorudey\Desktop\Golfing Over It with Alva Majo.url 2020-01-01 15:57 - 2020-01-01 15:57 - 000001398 ____C C:\Users\Yorudey\Desktop\ON.lnk 2020-01-01 15:56 - 2020-01-01 15:56 - 000001402 ____C C:\Users\Yorudey\Desktop\Off - copia.lnk 2020-01-01 15:55 - 2020-01-01 15:56 - 000001402 ____C C:\Users\Yorudey\Desktop\Off.lnk 2019-12-30 10:21 - 2020-01-15 22:09 - 000000000 ____D C:\Users\Yorudey\AppData\Local\FiveM 2019-12-30 10:21 - 2019-12-30 10:21 - 000002128 ____C C:\Users\Yorudey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM Singleplayer.lnk 2019-12-30 10:21 - 2019-12-30 10:21 - 000002120 ____C C:\Users\Yorudey\Desktop\FiveM Singleplayer.lnk 2019-12-30 10:21 - 2019-12-30 10:21 - 000002120 ____C C:\Users\Yorudey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM.lnk 2019-12-30 10:21 - 2019-12-30 10:21 - 000002112 ____C C:\Users\Yorudey\Desktop\FiveM.lnk 2019-12-28 12:11 - 2020-01-19 18:11 - 000000000 ____D C:\Users\Yorudey\AppData\Local\RedM 2019-12-28 12:11 - 2019-12-28 12:11 - 000002108 ____C C:\Users\Yorudey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RedM Singleplayer.lnk 2019-12-28 12:11 - 2019-12-28 12:11 - 000002100 ____C C:\Users\Yorudey\Desktop\RedM Singleplayer.lnk 2019-12-28 12:11 - 2019-12-28 12:11 - 000002100 ____C C:\Users\Yorudey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RedM.lnk 2019-12-28 12:11 - 2019-12-28 12:11 - 000002092 ____C C:\Users\Yorudey\Desktop\RedM.lnk 2019-12-28 07:30 - 2019-12-28 12:11 - 000000000 ___DC C:\Users\Yorudey\Desktop\M 2019-12-27 17:55 - 2019-12-29 14:59 - 007098003 ____C C:\Users\Yorudey\Documents\Mapa.wonderdraft_map 2019-12-27 17:36 - 2019-12-27 17:36 - 000001509 ____C C:\Users\Yorudey\Desktop\Wonderdraft - Acceso directo.lnk 2019-12-27 17:18 - 2019-12-27 17:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wonderdraft 2019-12-27 17:18 - 2019-12-27 17:36 - 000000000 ____D C:\Program Files\Wonderdraft 2019-12-27 17:18 - 2019-12-27 17:35 - 000000000 ____D C:\Users\Yorudey\AppData\Roaming\Wonderdraft 2019-12-27 17:18 - 2019-12-27 17:18 - 107535688 ____C (Tailwind Games, LLC ) C:\Users\Yorudey\Desktop\Wonderdraft-1.0.3.4-Win64 (1).exe 2019-12-24 17:35 - 2020-01-20 18:57 - 000005302 _____ C:\WINDOWS\system32\Tasks\Microsoft Office 15 Sync Maintenance for YORUDEY-PC-Yorudey YORUDEY-PC 2019-12-24 17:24 - 2019-12-24 17:25 - 000000000 ____D C:\Users\Yorudey\AppData\Local\AMD 2019-12-24 17:24 - 2019-12-24 17:24 - 000003194 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate 2019-12-24 17:24 - 2019-12-24 17:24 - 000003160 _____ C:\WINDOWS\system32\Tasks\StartCN 2019-12-24 17:24 - 2019-12-24 17:24 - 000003080 _____ C:\WINDOWS\system32\Tasks\StartDVR 2019-12-24 17:24 - 2019-12-12 14:13 - 000111456 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys 2019-12-24 17:23 - 2019-12-24 17:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software 2019-12-24 17:23 - 2019-12-24 17:23 - 000000000 ____D C:\ProgramData\AMD 2019-12-24 17:15 - 2019-12-24 17:16 - 508307112 ____C (AMD Inc.) C:\Users\Yorudey\Desktop\win10-radeon-software-adrenalin-2020-edition-19.12.2-dec12.exe 2019-12-24 17:13 - 2019-12-24 17:13 - 041900000 _____ (AMD Inc.) C:\Users\Yorudey\Downloads\radeon-software-adrenalin-2020-19.12.2-minimalsetup-191212_64bit.exe 2019-12-24 16:19 - 2019-12-24 17:48 - 000000000 ___DC C:\Users\Yorudey\Desktop\Mesa de Control 2019-12-22 22:47 - 2019-12-22 22:47 - 000000000 ___DC C:\Users\Yorudey\AppData\LocalLow\ADOG 2019-12-22 09:11 - 2019-12-22 09:13 - 000000000 ___DC C:\Users\Yorudey\Desktop\Navidad 2019-12-22 08:29 - 2019-12-22 08:29 - 000000000 ___DC C:\Users\Yorudey\Desktop\Mapas Dungeons 2019-12-21 09:24 - 2019-12-21 09:24 - 000000000 ____D C:\Users\Yorudey\AppData\Local\SunbayCity ==================== Un mes (modificado) ================== (Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.) 2020-01-20 21:57 - 2019-07-15 18:54 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\Blitz 2020-01-20 21:55 - 2016-11-07 08:02 - 000000000 ___DC C:\Users\Yorudey\AppData\Local\Battle.net 2020-01-20 21:03 - 2019-03-18 22:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-01-20 19:26 - 2017-06-19 18:37 - 000000000 ___DC C:\Users\Yorudey\AppData\LocalLow\Mozilla 2020-01-20 19:19 - 2018-12-23 17:30 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\obs-studio 2020-01-20 19:02 - 2017-06-19 18:34 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-01-20 19:02 - 2017-06-19 18:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-01-20 18:51 - 2019-11-23 10:44 - 000000000 ____D C:\Users\Yorudey\Downloads\opera autoupdate 2020-01-20 18:51 - 2018-05-19 00:36 - 000000000 ____D C:\ProgramData\ProductData 2020-01-20 18:48 - 2019-08-31 00:35 - 000000000 ____D C:\ProgramData\Voicemod 2020-01-20 18:47 - 2019-08-31 00:33 - 000000000 ___DC C:\Users\Yorudey\AppData\Local\Voicemod 2020-01-20 18:47 - 2018-05-19 17:22 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\WTablet 2020-01-20 18:46 - 2018-02-12 13:28 - 000000000 ___DC C:\Users\Yorudey\AppData\Local\Oculus 2020-01-20 18:41 - 2019-10-03 20:14 - 002384320 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-01-20 18:41 - 2019-10-03 12:12 - 000487246 _____ C:\WINDOWS\system32\perfh011.dat 2020-01-20 18:41 - 2019-10-03 12:12 - 000132876 _____ C:\WINDOWS\system32\perfc011.dat 2020-01-20 18:41 - 2019-03-19 05:59 - 000786400 _____ C:\WINDOWS\system32\perfh00A.dat 2020-01-20 18:41 - 2019-03-19 05:59 - 000155282 _____ C:\WINDOWS\system32\perfc00A.dat 2020-01-20 18:41 - 2019-03-18 22:50 - 000000000 ____D C:\WINDOWS\INF 2020-01-20 18:35 - 2019-10-03 20:12 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-01-20 18:35 - 2019-06-15 09:06 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2020-01-20 18:35 - 2018-11-23 18:14 - 000000208 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat 2020-01-20 18:35 - 2018-11-23 18:08 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper 2020-01-20 18:35 - 2018-11-23 16:39 - 000000150 _____ C:\WINDOWS\SysWOW64\winsevr.dat 2020-01-20 18:34 - 2019-03-18 22:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2020-01-20 18:34 - 2017-04-20 18:21 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin 2020-01-20 18:29 - 2019-03-18 22:37 - 000008192 _____ C:\WINDOWS\system32\config\ELAM 2020-01-20 18:21 - 2019-10-03 20:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-01-20 02:00 - 2017-05-03 21:58 - 000000000 ___DC C:\Users\Yorudey\AppData\Local\Adobe 2020-01-20 01:54 - 2019-06-12 18:57 - 000000000 ____D C:\Users\Yorudey\Downloads\Green Screen Memes 2020-01-19 18:00 - 2019-09-15 21:37 - 000000000 ___DC C:\Users\Yorudey\Documents\Discord Canta 2020-01-19 18:00 - 2017-06-12 18:54 - 000000000 ___DC C:\Users\Yorudey\Documents\Porno Secreta Kappa 2020-01-19 16:03 - 2018-05-19 00:35 - 000000000 ____D C:\Program Files (x86)\IObit 2020-01-19 15:58 - 2019-11-24 01:28 - 000000000 ____D C:\WINDOWS\Minidump 2020-01-19 13:20 - 2019-10-26 12:54 - 000000000 ____D C:\Users\Yorudey\AppData\Local\cache 2020-01-19 13:18 - 2019-10-03 20:06 - 000000000 ____D C:\Users\Yorudey 2020-01-19 13:09 - 2016-12-15 19:19 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\discord 2020-01-18 23:41 - 2019-03-18 22:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-01-18 23:41 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-01-18 21:00 - 2019-10-03 20:12 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3812456334-1740610062-835106083-1001 2020-01-18 21:00 - 2019-10-03 20:06 - 000002397 ____C C:\Users\Yorudey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-01-18 21:00 - 2016-11-07 04:16 - 000000000 ___RD C:\Users\Yorudey\OneDrive 2020-01-18 20:36 - 2019-08-31 14:25 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-01-18 13:41 - 2016-12-13 22:32 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\vlc 2020-01-17 19:33 - 2016-11-08 08:01 - 000000132 ____C C:\Users\Yorudey\AppData\Roaming\Prefs. de formato PNG de Adobe CS6 2020-01-17 19:05 - 2019-08-13 23:59 - 000002418 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2020-01-17 18:10 - 2018-05-19 18:08 - 000000000 ___DC C:\Users\Yorudey\AppData\Local\D3DSCache 2020-01-17 08:26 - 2019-07-15 18:54 - 000000000 ___DC C:\Users\Yorudey\AppData\Local\Blitz 2020-01-16 19:48 - 2017-04-20 18:21 - 000000000 ____D C:\ProgramData\Razer 2020-01-16 19:48 - 2016-11-07 09:20 - 000000000 ___DC C:\Users\Yorudey\AppData\Local\Razer 2020-01-16 19:48 - 2016-11-07 08:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2020-01-16 17:35 - 2019-10-03 20:01 - 005277344 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-01-16 15:46 - 2019-03-18 22:52 - 000000000 ___SD C:\WINDOWS\system32\UNP 2020-01-16 15:46 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-01-16 15:46 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-01-16 15:46 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-01-16 08:39 - 2016-11-08 04:30 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-01-16 08:35 - 2019-03-18 22:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-01-16 08:35 - 2016-11-08 04:30 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2020-01-16 08:35 - 2016-11-07 08:00 - 000000000 ____D C:\Program Files (x86)\Battle.net 2020-01-16 08:32 - 2019-11-22 21:43 - 000004196 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1574480599 2020-01-16 08:32 - 2019-11-22 21:43 - 000001456 ____C C:\Users\Yorudey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera GX.lnk 2020-01-14 23:27 - 2017-04-06 21:24 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\RenPy 2020-01-13 08:44 - 2017-04-20 18:20 - 000000000 ____D C:\Program Files (x86)\Razer 2020-01-12 11:19 - 2017-04-11 08:21 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\Twitch 2020-01-11 03:13 - 2019-10-03 20:06 - 000000000 ____D C:\Users\OVRLibraryService 2020-01-10 20:31 - 2018-07-17 09:53 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2020-01-09 18:23 - 2019-10-23 19:40 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-01-09 13:54 - 2019-06-05 23:38 - 000000000 ____D C:\Users\Yorudey\Downloads\GTA SA INTRO FINAL 2020-01-09 11:43 - 2019-11-30 10:12 - 000000000 ___DC C:\Users\Yorudey\Desktop\El rey Sin corazon 2020-01-07 19:09 - 2018-02-12 14:56 - 000000000 ____D C:\Program Files\Oculus 2020-01-06 19:03 - 2017-11-03 21:11 - 000000000 ___DC C:\Users\Yorudey\Documents\SavedGames 2020-01-02 22:43 - 2019-03-25 20:39 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\Parsec 2020-01-02 22:35 - 2018-05-11 19:29 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Twitch Games 2020-01-02 22:29 - 2016-11-06 20:49 - 000000000 __RDC C:\Users\Yorudey\Documents\My Games 2020-01-01 18:44 - 2018-12-09 00:40 - 000000000 ___DC C:\Users\Yorudey\AppData\LocalLow\Majorariatto 2020-01-01 15:52 - 2019-05-05 16:27 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\Hot Keyboard 2019-12-29 14:38 - 2017-05-19 19:51 - 000000000 ___DC C:\Users\Yorudey\AppData\Local\Rockstar Games 2019-12-29 14:38 - 2017-05-19 19:50 - 000000000 ___DC C:\Users\Yorudey\Documents\Rockstar Games 2019-12-29 09:49 - 2019-12-07 13:42 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games 2019-12-28 23:20 - 2019-03-31 21:19 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\CitizenFX 2019-12-28 11:50 - 2019-03-31 21:19 - 000000000 ___DC C:\Users\Yorudey\AppData\Local\DigitalEntitlements 2019-12-28 11:18 - 2016-12-17 10:46 - 000000000 ___DC C:\Users\Yorudey\AppData\Local\Spotify 2019-12-28 11:18 - 2016-12-17 10:45 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\Spotify 2019-12-28 11:11 - 2016-12-17 10:46 - 000001836 ____C C:\Users\Yorudey\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2019-12-26 16:46 - 2018-03-08 13:36 - 000000000 ___DC C:\Users\Yorudey\AppData\Roaming\streamlabels 2019-12-24 17:29 - 2017-12-03 14:53 - 000000000 ___DC C:\Users\Yorudey\AppData\Local\Packages 2019-12-24 17:24 - 2018-06-18 18:49 - 000000000 ____D C:\Program Files\AMD 2019-12-24 17:23 - 2018-07-17 09:55 - 000000000 ____D C:\Program Files (x86)\AMD 2019-12-24 17:20 - 2019-10-26 02:54 - 000000000 ____D C:\Users\Yorudey\AppData\Roaming\ATI 2019-12-24 17:16 - 2016-11-07 07:59 - 000000000 ____D C:\AMD 2019-12-22 08:23 - 2017-10-28 20:05 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-12-22 08:16 - 2017-08-07 19:46 - 000000000 ____D C:\Program Files\Opera 2019-12-21 20:10 - 2019-10-03 20:12 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update ==================== Archivos en la raíz de algunos directorios ======== 2018-10-15 11:30 - 2018-10-15 11:30 - 000000000 ____C () C:\Users\Yorudey\AppData\Roaming\.OculusDebugToolGUI 2018-02-12 16:41 - 2018-02-12 16:41 - 000129287 ____C () C:\Users\Yorudey\AppData\Roaming\BodyProfileImage.png 2018-06-30 21:17 - 2018-06-30 21:17 - 000000068 ____C () C:\Users\Yorudey\AppData\Roaming\changzhi_leidian.data 2018-06-30 21:55 - 2018-06-30 21:55 - 000000068 ____C () C:\Users\Yorudey\AppData\Roaming\changzhi_mplayer.data 2017-02-06 19:38 - 2017-02-06 23:27 - 000004032 ____C () C:\Users\Yorudey\AppData\Roaming\KB8888239.log 2016-11-08 08:01 - 2020-01-17 19:33 - 000000132 ____C () C:\Users\Yorudey\AppData\Roaming\Prefs. de formato PNG de Adobe CS6 2018-02-12 16:41 - 2018-02-12 16:41 - 000186458 ____C () C:\Users\Yorudey\AppData\Roaming\ProfileImage.png 2019-02-08 22:03 - 2019-02-08 22:03 - 000034147 ____C () C:\Users\Yorudey\AppData\Roaming\VoiceMeeterBananaDefault.xml 2018-01-28 01:43 - 2019-02-08 22:10 - 000004663 ____C () C:\Users\Yorudey\AppData\Roaming\VoiceMeeterDefault.xml 2019-02-08 19:26 - 2019-08-04 19:26 - 000059746 ____C () C:\Users\Yorudey\AppData\Roaming\VoiceMeeterPotatoDefault.xml 2016-12-25 22:01 - 2019-07-06 00:58 - 000001456 ____C () C:\Users\Yorudey\AppData\Local\Adobe Guardar para Web 13.0 Prefs 2017-02-02 18:28 - 2017-02-02 18:28 - 000003584 ____C () C:\Users\Yorudey\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2017-05-07 17:37 - 2017-05-22 17:25 - 001065984 ____C () C:\Users\Yorudey\AppData\Local\file__0.localstorage 2018-03-27 23:58 - 2018-04-22 19:11 - 000000600 ____C () C:\Users\Yorudey\AppData\Local\PUTTY.RND 2017-02-22 23:16 - 2018-12-14 18:55 - 000007663 ____C () C:\Users\Yorudey\AppData\Local\Resmon.ResmonCfg 2019-07-27 14:14 - 2019-07-27 14:14 - 000000056 ____C () C:\Users\Yorudey\AppData\Local\uts.ini ==================== SigCheck ============================ (No existe una corrección automática para los archivos que no pasan la verificación.) ==================== Final de FRST.txt ========================