Solved Explorer.exe buffer overflow

uperesito

Posts: 20   +0
Hello!
I was using my laptop when suddenly I got the error "explorer.exe buffer overflow", so I decided to do a checkup to see if I have any virus.
The logs are in Spanish, I hope they are not a problem.

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 13-09-2020
Ejecutado por Unai (administrador) sobre P-UNAI (Acer Aspire V5-571G) (15-09-2020 01:26:24)
Ejecutado desde C:\Users\Unai\Desktop
Perfiles cargados: Unai
Platform: Windows 10 Home Versión 2004 19041.508 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: "C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe" -- "%1"
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe <20>
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Data Perceptions -> Data Perceptions / PowerProgrammer) C:\Windows\SysWOW64\WebUpdateSvc4.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.8043.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Nitro Software, Inc. -> Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(ONTINET COM SL -> ) C:\ProgramData\ESET\ESET Security\app\appOnt.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Synology Inc. -> ) C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(voidtools -> voidtools) C:\Program Files\Everything\Everything.exe <2>

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3366616 2020-03-24] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [185648 2020-08-29] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2237256 2020-03-13] (voidtools -> voidtools)
HKLM-x32\...\Run: [RazerCortex] => "C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncher.exe" -autorun
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710776 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [284520 2020-07-31] (IDSA Production signing key -> Intel)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [appOnt] => C:\ProgramData\ESET\ESET Security\app\appOnt.exe [1738760 2017-09-25] (ONTINET COM SL -> )
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [648328 2020-04-13] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [AceStream] => C:\Users\Unai\AppData\Roaming\ACEStream\engine\ace_engine.exe
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [SendAnywhere] => C:\Program Files (x86)\Send Anywhere\Send Anywhere.exe [90231592 2020-03-13] (Estmob Inc. -> Estmob Inc.)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3395360 2020-09-04] (Valve -> Valve Corporation)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [Discord] => C:\Users\Unai\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32410000 2020-09-14] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [GoogleChromeAutoLaunch_4AC4223D71D859AE87BA8F6AAC969BA7] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [GoogleChromeAutoLaunch_9C985C124107B1F707CF43FDDD29FA5D] => C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe [2075816 2020-09-10] (Brave Software, Inc. -> Brave Software, Inc.)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [Docker Desktop] => C:\Program Files\Docker\Docker\Docker Desktop.exe
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [48594832 2020-06-15] (Google LLC -> )
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe [2075816 2020-09-10] (Brave Software, Inc. -> Brave Software, Inc.)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\MountPoints2: {91940010-a749-11ea-a4ff-083e8ee92650} - "D:\CMADownloader.exe"
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Nitro PDF Port 12 Monitor: C:\Windows\system32\NxPrinterMonitor12.dll [222816 2019-01-29] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\Windows\system32\hpz3llhn.dll [44288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.102\Installer\chrmstp.exe [2020-09-08] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\85.1.13.86\Installer\chrmstp.exe [2020-09-10] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2020-04-12]
ShortcutTarget: Twitch.lnk -> C:\Users\Unai\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {01551E9A-DC0D-47AA-9536-12C11D171CC3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118616 2020-08-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {13BAD3C4-682B-4AD7-8493-FF51021F1682} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
Task: {20080CC0-7A5D-4A9C-870E-62FA6FDF6584} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819120 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {225F718F-377C-4594-9009-BBDC26449F97} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-12-25] (Google Inc -> Google LLC)
Task: {260A8048-8DC8-4F80-B596-670AE5DDAF5D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {26FF8B5D-9582-477E-8D7F-2C8105419496} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
Task: {43CF0CCD-DEDB-4DEF-9C7C-9EC8FDDCCBC5} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-07-08] () [Archivo no firmado]
Task: {556AB094-D25B-4FE6-8645-65FEA1A1FACE} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {57180C9F-9168-45EF-9F9E-2B4C07E3E419} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {6AD574B0-56F2-4264-9421-CB59F7D80D0E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {742F8082-C089-458A-93AF-F6B90A44AE75} - System32\Tasks\ExclusiveTool => C:\Program Files (x86)\DSDCS\InputMapper\ExclusiveModeTool.exe [19968 2016-10-04] (InputMapper) [Archivo no firmado]
Task: {899AF1A5-18D1-4CC7-9186-9D8D6B713B90} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157544 2020-07-15] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {9239A5EB-6A50-4375-B956-2F35CB55F410} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {957D89F5-48E7-4D1F-9F00-C147377FB69C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {99EF05B5-1D23-4AC2-A625-FE51BDE1EAAA} - System32\Tasks\ASCOM - Update Earth Rotation Data => C:\Program Files (x86)\ASCOM\Platform 6\Tools\EarthRotationUpdate.exe [22528 2020-07-16] (ASCOM) [Archivo no firmado]
Task: {9C010232-2664-4286-B6EB-FC6B66D8BB25} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819120 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F03DBD0-906F-4D21-9FB8-7C9A72CD5290} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A3DB7CF3-9C62-4874-8CA3-CD2507ACE9EC} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157544 2020-07-15] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {A86F26B4-9600-4636-AA2B-20AB0B8FA26E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B27DF3EB-3417-4D96-B352-9BF5461A6B80} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B29161CF-2ECD-4E55-9EFC-32C8BB6E4DC6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [660688 2020-08-31] (Mozilla Corporation -> Mozilla Foundation)
Task: {B5017BCB-4621-4A17-81FF-86DACE76DF45} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_433_Plugin.exe [1502264 2020-09-09] (Adobe Inc. -> Adobe)
Task: {BE5DC1E5-2DE5-4CA8-8555-45D908B27003} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118616 2020-08-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {BF99BC7A-1AAD-4B2E-BAE0-0F0F1C05BB5F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C952DE49-B31B-463A-B3CE-E62EE8E96B4C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D14043E3-64F8-43FE-B7D2-776ED44C5879} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4090800 2020-08-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D902FB8A-3338-445E-B4A8-677D72127269} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4090800 2020-08-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {DE3AC651-21DA-492A-89DE-C2B56A4B0004} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-09-09] (Adobe Inc. -> Adobe)
Task: {E7D87AE1-08C4-48DD-A895-11E60E2D7804} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-12-25] (Google Inc -> Google LLC)
Task: {F7DC4CEE-014E-4910-BBE4-EE6EDC84DB56} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 80.58.61.254 80.58.61.250
Tcpip\..\Interfaces\{39870653-121f-4968-89c4-fdcde972d743}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{5847a533-d91b-4353-bcfe-4600fe97b88d}: [DhcpNameServer] 80.58.61.254 80.58.61.250
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricción <==== ATENCIÓN

Edge:
======
Edge Notifications: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001 -> hxxps://www.acer.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\Unai\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-09]
Edge Notifications: Default -> hxxps://www.acer.com

FireFox:
========
FF DefaultProfile: kn1a90l1.default
FF ProfilePath: C:\Users\Unai\AppData\Roaming\Mozilla\Firefox\Profiles\kn1a90l1.default [2020-01-08]
FF ProfilePath: C:\Users\Unai\AppData\Roaming\Mozilla\Firefox\Profiles\djm1fgd7.default-release-1598900435806 [2020-09-09]
FF HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Unai\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => no encontrado
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_433.dll [2020-09-09] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_433.dll [2020-09-09] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-07-15] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-07-15] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin HKU\S-1-5-21-2954361111-2295329619-4222815306-1001: @acestream.net/acestreamplugin,version=3.1.32 -> C:\Users\Unai\AppData\Roaming\ACEStream\player\npace_plugin.dll [Ningún archivo]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-09-13]

Chrome:
=======
CHR Profile: C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default [2020-09-13]
CHR DefaultSearchURL: Default -> hxxps://ssl.gstatic.com/apps-notify/drive_96_1x.png
CHR Extension: (Presentaciones) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-22]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2020-09-02]
CHR Extension: (Google Drive) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghbiahbpaijignceidepookljebhfak [2020-04-18]
CHR Extension: (Documentos) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-22]
CHR Extension: (Google Drive) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-09-22]
CHR Extension: (One-Click Video Downloader) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhepgcoaibmmehlmckhlmbdgcemhidcg [2020-05-14]
CHR Extension: (ColorZilla) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2020-04-14]
CHR Extension: (YouTube) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-09-22]
CHR Extension: (Export SVG with Style) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkjdcaddoplepioppogpckelchefhddi [2020-04-15]
CHR Extension: (AHA Music - Buscador de canciones para el navegador) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpacanjfikmhoddligfbehkpomnbgblf [2020-06-10]
CHR Extension: (Hojas de cálculo) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-09-22]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-09]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-09-09]
CHR Extension: (UnRAR and RAR Viewer) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\goeclnlkhfoejbhdebemhjljlmcbhfkp [2019-09-22]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-09-02]
CHR Extension: (Servicio cashback Letyshops) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\lphicbbhfmllgmomkkhjfkpbdlncafbn [2020-09-11]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-09-22]
CHR Extension: (Chrome Media Router) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-09]
CHR HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]
CHR HKLM-x32\...\Chrome\Extension: [makcojoppodhcgmmchohadhpkicoafka]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-09-09] (Adobe Inc. -> Adobe)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157544 2020-07-15] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157544 2020-07-15] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10566536 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-09-24] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-08-29] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-08-29] (ESET, spol. s r.o. -> ESET)
R2 Everything; C:\Program Files\Everything\Everything.exe [2237256 2020-03-13] (voidtools -> voidtools)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe [1995184 2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-10-07] (Mixbyte Inc -> Freemake)
R2 nlsX86cc; C:\Windows\SysWOW64\NLSSRV32.EXE [70752 2019-01-29] (Nitro Software, Inc. -> Nalpeiron Ltd.)
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [69864 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
S3 Rockstar Service; D:\Program Files (x86)\Launcher\RockstarService.exe [1711232 2020-07-04] (Rockstar Games, Inc. -> Rockstar Games)
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [253912 2019-10-30] (Synology Inc. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-01-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WebUpdate4; C:\WINDOWS\SysWOW64\WebUpdateSvc4.exe [293992 2013-03-07] (Data Perceptions -> Data Perceptions / PowerProgrammer)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-01-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 com.docker.service; "C:\Program Files\Docker\Docker\com.docker.service" [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [158512 2020-08-29] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106640 2020-08-29] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-05-31] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [195976 2020-08-29] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [116488 2020-08-29] (ESET, spol. s r.o. -> ESET)
R3 esihdrv; C:\Users\Unai\AppData\Local\Temp\esihdrv.sys [205464 2020-09-15] (ESET, spol. s r.o. -> ESET) <==== ATENCIÓN
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-03-24] (Martin Malik - REALiX -> REALiX(tm))
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [262160 2019-08-11] (WDKTestCert charles-yeh,132058328970830801 -> Prolific Technology Inc.)
S3 SnapCameraVirtualDevice; C:\WINDOWS\System32\drivers\SnapCameraVirtualDevice.sys [2800232 2020-03-21] (Snap Inc. -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2020-01-10] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-01-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-01-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-01-10] (Microsoft Windows -> Microsoft Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2020-06-04] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
U4 AppMgmt; no ImagePath
U4 CscService; no ImagePath
U4 napagent; no ImagePath
U4 PeerDistSvc; no ImagePath
S3 WinRing0_1_2_0; \??\C:\Users\Unai\Downloads\ThrottleStop 872\WinRing0x64.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-09-15 01:26 - 2020-09-15 01:27 - 000031451 _____ C:\Users\Unai\Desktop\FRST.txt
2020-09-15 01:23 - 2020-09-15 01:23 - 002297856 _____ (Farbar) C:\Users\Unai\Desktop\FRST64.exe
2020-09-15 00:55 - 2020-09-15 01:01 - 000000148 _____ C:\Users\Unai\Desktop\text.txt
2020-09-15 00:50 - 2020-09-15 00:50 - 000000785 _____ C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-09-15 00:50 - 2020-09-15 00:50 - 000000657 _____ C:\Users\Unai\Desktop\ESET Online Scanner.lnk
2020-09-15 00:39 - 2020-09-15 01:26 - 000000000 ____D C:\FRST
2020-09-14 15:19 - 2020-09-14 15:19 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Goldberg SteamEmu Saves
2020-09-14 15:19 - 2020-09-14 15:19 - 000000000 ____D C:\Users\Unai\AppData\LocalLow\Volcanoid
2020-09-13 01:42 - 2020-09-13 01:42 - 004820992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 004274688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 003992576 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 003659264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 003547784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 002338184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 002136744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-09-13 01:42 - 2020-09-13 01:42 - 001541224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 001301584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 001260200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 001239040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 001183256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 001117344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 001048064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2020-09-13 01:42 - 2020-09-13 01:42 - 001014864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000966144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2020-09-13 01:42 - 2020-09-13 01:42 - 000946712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000749056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000680664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2020-09-13 01:42 - 2020-09-13 01:42 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFSR.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000665264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-09-13 01:42 - 2020-09-13 01:42 - 000538120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSE.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncutil.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DirectML.Debug.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOVER.exe
2020-09-13 01:42 - 2020-09-13 01:42 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2020-09-13 01:42 - 2020-09-13 01:42 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2020-09-13 01:42 - 2020-09-13 01:42 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSUTILITY.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSERES.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootim.exe
2020-09-13 01:41 - 2020-09-13 01:42 - 024264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 032610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 031598936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 026272768 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 023441408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 019869696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 018766848 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 018075136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 014754304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 010847552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 010336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 008897200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 007633360 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 007611904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 006554432 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmchipset.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 006417408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 006357032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 005993968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 005820416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 005430480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 005056000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004892672 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004783344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004747776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004629328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 004523008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004304384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004009064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003913728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003875840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003868672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003819528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003806720 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003505952 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003334656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003307520 _____ (Microsoft Corporation) C:\WINDOWS\system32\HostNetSvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003224896 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmcompute.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 003082240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002991416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 002918736 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002851128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 002806152 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002772992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002757120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002749440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 002687488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002635640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002606592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002541056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002519512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002485560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 002452856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 002451456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002433024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002403800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmwp.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 002317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002306048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002265328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002206208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002178048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002023704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001980728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001978656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001956032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001951232 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001868672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001866240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001856312 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001834496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001812368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001805192 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-09-13 01:41 - 2020-09-13 01:41 - 001777152 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001770040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001720832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001719096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001693208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001681408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001659904 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001654824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001649664 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001640888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001617088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001557816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001542752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001538656 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001506608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vfpext.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 001494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001485824 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001472824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 001449792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001449472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001438432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001430528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001411072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001400208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-09-13 01:41 - 2020-09-13 01:41 - 001388544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001352232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001337344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001329664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001314608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001309504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-09-13 01:41 - 2020-09-13 01:41 - 001296384 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #2
2020-09-13 01:41 - 2020-09-13 01:41 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001279288 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001255744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001253376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 001209344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001209096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001198288 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001191592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001181200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001128544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001126488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001115448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lxcore.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001068112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001061376 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001056768 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001044880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001003320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000976680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000969216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000961192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000943408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000920896 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000913776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000907440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000894768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000890944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000887304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000869376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000857344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000843376 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000827912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000801544 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000794624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000775776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000763840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000759792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 000757192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000755576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000750976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000748360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000744240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000707584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000705560 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000702792 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000688960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000676680 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000671544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmcompute.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000659776 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmuidevices.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000647480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000643584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000639928 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000634680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000634240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000603464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000602184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000585696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000583608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000573752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000568120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000546464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000531448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000530440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000528352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\glmf32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UiaManager.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmusrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000502592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-09-13 01:41 - 2020-09-13 01:41 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000500968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000495848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000482304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000455480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000420920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000412688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000403768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glmf32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmvpci.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmsmb.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000377344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000374072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000373560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000367416 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000360024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000337768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000322376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msquic.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vfpctrl.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000303288 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000303168 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnputil.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000291640 _____ (Microsoft Corporation) C:\WINDOWS\system32\nvspinfo.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000286024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000260928 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmCrashDump.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000259888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000240136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000230392 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000230376 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VideoHandlers.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000217920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000213344 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000212760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsl.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000196768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 000190792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxApplicabilityEngine.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000180024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000167880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000153400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000147256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000143104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000141008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000138936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000133736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000125016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000119608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000118072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000117056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000110504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000109992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000109384 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmwpevents.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000099640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlgpclnt.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000095032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000092952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000091448 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rassstp.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wslconfig.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000069752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000069728 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000069432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000068928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000064824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000061752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000059448 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagnosticdataquery.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000051000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VmsProxy.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.SystemId.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000042320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfctrs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000039224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VmsProxyHNic.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\vfpapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfdisk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfos.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCShellCommonProxyStub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2020-09-13 01:41 - 2020-09-13 01:41 - 000021312 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragproxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\midimap.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000017216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000009277 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-09-13 01:41 - 2020-09-13 01:41 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragres.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 009034752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 008006248 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 007979416 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 006197760 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 006193664 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 005870496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 005776544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 005729280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 004727296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 004592136 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 003815424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 003779384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 003749376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 003436544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 003303936 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #3
2020-09-13 01:40 - 2020-09-13 01:40 - 003181056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 003062784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002975744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002951680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 002647040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002631168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002587448 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002422784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002319216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002259968 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002248192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002131032 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002103704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002102784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsudk.shellcommon.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001924608 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001905664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001825280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001766912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001701368 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001700352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001514496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001504768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 001498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001473024 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001426944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 001378568 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001337176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001277440 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001261056 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001257984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001145344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001140928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001114112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001094472 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001092392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001089344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001046528 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2020-09-13 01:40 - 2020-09-13 01:40 - 001030656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001028288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001027344 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001021952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001008696 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000999744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000978760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000939448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000935936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000934912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000929792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000914216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000903992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2020-09-13 01:40 - 2020-09-13 01:40 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000809280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000799544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000753152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000725608 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000702776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UiaManager.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000635824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000602440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-09-13 01:40 - 2020-09-13 01:40 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000527880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2020-09-13 01:40 - 2020-09-13 01:40 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000472376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000454960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000437760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000428672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000420456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000418800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000393728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000361472 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_InputPersonalization.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000314688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000305472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000269624 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000255800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbusr.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000255296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000249664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000239432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000223040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000185672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000185664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000183112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000180040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000169456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000160064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000159048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000155952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000152376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadWamExtension.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000132928 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000132728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlgpclnt.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000116024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-09-13 01:40 - 2020-09-13 01:40 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000070976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.PlatformExtension.DevicePickerExperience.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000064008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.SystemId.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000060744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000056648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-09-13 01:40 - 2020-09-13 01:40 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2020-09-13 01:40 - 2020-09-13 01:40 - 000030024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000029456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\midimap.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000025392 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspiper.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdiagnostics.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000019776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000016704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys
2020-09-13 01:32 - 2020-08-25 05:42 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-09-13 01:32 - 2020-08-25 05:36 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-09-11 01:23 - 2020-09-11 14:31 - 000000000 ____D C:\Users\Unai\Desktop\TNO
2020-09-11 01:16 - 2020-09-11 01:16 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2954361111-2295329619-4222815306-1001
2020-09-11 01:16 - 2020-09-11 01:16 - 000002398 _____ C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-09-11 00:17 - 2020-09-11 00:17 - 000000802 _____ C:\Users\Public\Desktop\SpaceEngine 0.980.lnk
2020-09-11 00:17 - 2020-09-11 00:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpaceEngine
2020-09-11 00:15 - 2020-09-11 00:21 - 000000000 ____D C:\SpaceEngine
2020-09-09 16:16 - 2020-09-09 16:17 - 000000000 ____D C:\Users\Unai\Documents\Aster
2020-09-09 16:15 - 2020-09-09 16:17 - 000000000 ____D C:\Users\Unai\AppData\Local\Regard3D
2020-09-09 15:51 - 2020-09-09 15:51 - 000000000 ____D C:\Program Files\Agisoft
2020-09-09 02:07 - 2020-09-09 02:07 - 000000000 ____D C:\Users\Public\Documents\3d-io
2020-09-09 02:03 - 2020-09-09 02:03 - 000000000 ____D C:\ProgramData\3d-io
2020-09-09 01:40 - 2020-09-09 01:40 - 000002322 _____ C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\fSpy.lnk
2020-09-08 23:35 - 2020-09-08 23:35 - 000029300 _____ C:\Users\Unai\AppData\Local\recently-used.xbel
2020-09-06 12:35 - 2020-09-06 12:36 - 000000000 ____D C:\Users\Unai\AppData\Local\skychart
2020-09-06 12:35 - 2020-09-06 12:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cartes du Ciel
2020-09-06 12:34 - 2020-09-06 12:35 - 000000000 ____D C:\Program Files\Ciel
2020-09-03 19:25 - 2020-09-03 19:30 - 000048653 _____ C:\WINDOWS\SysWOW64\wuwuninst.exe
2020-09-03 19:25 - 2020-09-03 19:25 - 000000031 _____ C:\WINDOWS\WebUpdateSvc4.INI
2020-09-03 19:25 - 2020-09-03 19:25 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Meade
2020-09-03 19:25 - 2008-10-31 11:06 - 000000494 _____ C:\WINDOWS\SysWOW64\WebUpdateSvc4.LIC
2020-09-02 18:20 - 2020-09-02 18:20 - 000000000 ____D C:\Users\Unai\AppData\Local\siril
2020-09-02 18:18 - 2020-09-02 18:19 - 000000000 ____D C:\Program Files\SiriL
2020-09-02 18:10 - 2020-09-09 14:37 - 000004556 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-09-02 18:10 - 2020-09-09 14:37 - 000004388 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2020-09-02 01:38 - 2020-09-02 02:04 - 000000000 ____D C:\Users\Unai\.cargo
2020-09-02 01:38 - 2020-09-02 01:39 - 000000000 ____D C:\Users\Unai\.rustup
2020-09-02 01:36 - 2020-09-02 01:36 - 000001363 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2020-09-02 01:36 - 2020-09-02 01:36 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Microsoft Visual Studio
2020-09-01 12:35 - 2020-09-11 00:03 - 000001194 _____ C:\Users\Unai\Desktop\blender.lnk
2020-08-31 21:21 - 2020-08-31 21:21 - 000001294 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2020-08-31 21:21 - 2020-08-31 21:21 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Thunderbird
2020-08-31 21:21 - 2020-08-31 21:21 - 000000000 ____D C:\Users\Unai\AppData\Local\Thunderbird
2020-08-31 21:21 - 2020-08-31 21:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-08-31 20:59 - 2020-08-31 20:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-08-31 20:54 - 2020-09-08 14:08 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-08-31 19:42 - 2020-08-31 22:22 - 000000577 _____ C:\Users\Unai\Desktop\telescope.live.txt
2020-08-31 12:46 - 2020-09-11 00:03 - 000000000 ____D C:\Users\Unai\Desktop\pruebas final
2020-08-30 21:15 - 2020-09-13 02:18 - 000000000 ___RD C:\Users\Unai\Google Drive
2020-08-30 20:50 - 2020-08-30 20:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-08-30 18:39 - 2020-08-30 18:39 - 000000000 ____D C:\Users\Unai\AppData\Local\The ASCOM Initiative
2020-08-30 18:38 - 2020-08-30 18:38 - 000003974 _____ C:\WINDOWS\system32\Tasks\ASCOM - Update Earth Rotation Data
2020-08-30 18:38 - 2020-08-30 18:38 - 000000000 ____D C:\Program Files\Common Files\ASCOM
2020-08-30 18:37 - 2020-08-30 18:37 - 000000000 ____D C:\WINDOWS\Symbols
2020-08-30 18:37 - 2020-08-30 18:37 - 000000000 ____D C:\Program Files (x86)\ASCOM
2020-08-29 17:40 - 2020-08-29 17:40 - 000000000 ____D C:\Users\Unai\AppData\Roaming\hugin
2020-08-29 13:37 - 2020-09-08 23:29 - 000000000 ____D C:\Users\Unai\.dbus-keyrings
2020-08-29 13:37 - 2020-08-29 13:37 - 000000000 ____D C:\Users\Unai\AppData\Roaming\siril
2020-08-29 13:37 - 2020-08-29 13:37 - 000000000 ____D C:\Users\Unai\AppData\Local\gtk-3.0
2020-08-29 13:35 - 2020-08-29 13:35 - 000195976 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2020-08-29 13:35 - 2020-08-29 13:35 - 000158512 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2020-08-29 13:35 - 2020-08-29 13:35 - 000116488 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2020-08-29 13:30 - 2020-09-02 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiriL
2020-08-29 13:29 - 2020-08-29 13:30 - 000000000 ____D C:\Program Files (x86)\SiriL
2020-08-29 13:26 - 2020-08-29 13:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PHD Guiding 2
2020-08-29 13:26 - 2020-08-29 13:26 - 000000000 ____D C:\Program Files (x86)\PHDGuiding2
2020-08-29 02:17 - 2020-08-29 02:17 - 000000000 ____D C:\Users\Unai\AppData\Roaming\FITS Liberator
2020-08-29 02:11 - 2020-08-29 02:11 - 000001169 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FITS Liberator.lnk
2020-08-29 02:11 - 2020-08-29 02:11 - 000000000 ____D C:\Program Files (x86)\FITS Liberator
2020-08-28 22:20 - 2020-08-28 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DeepSkyStacker (64 bit)
2020-08-28 21:59 - 2020-07-16 17:06 - 000193704 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2020-08-28 21:51 - 2020-08-28 21:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2020-08-28 21:51 - 2020-08-28 21:51 - 000000000 ____D C:\Program Files\qBittorrent
2020-08-28 21:47 - 2020-08-28 21:47 - 000000000 ____D C:\Users\Unai\AppData\LocalLow\BitTorrent
2020-08-27 14:26 - 2020-08-27 14:27 - 000000000 ____D C:\Program Files\WinJUPOS 11.1.6
2020-08-27 14:26 - 2020-08-27 14:26 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinJUPOS 11.1.6
2020-08-27 03:01 - 2020-08-27 03:01 - 003023872 _____ (Fateful Productions) C:\Users\Unai\Downloads\CompactGUI.exe
2020-08-27 02:25 - 2020-08-27 02:55 - 000000000 ____D C:\Users\Unai\AppData\Local\FlightSimulator
2020-08-26 13:01 - 2020-08-26 13:01 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:01 - 2020-08-26 13:01 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:01 - 2020-06-23 16:20 - 002754024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2020-08-26 13:00 - 2020-08-26 13:00 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-03-11 21:26 - 000067456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2020-08-26 13:00 - 2020-03-04 14:54 - 001804784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2020-08-26 13:00 - 2020-03-04 14:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2020-08-26 12:04 - 2020-08-27 02:09 - 000000000 ____D C:\Users\Unai\AppData\Roaming\HOODLUM
2020-08-22 20:02 - 2020-08-22 20:02 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2020-08-22 17:26 - 2020-08-22 17:26 - 000000052 _____ C:\Users\Unai\AppData\Roaming\.CLB
2020-08-22 17:26 - 2020-08-22 17:26 - 000000016 _____ C:\Users\Unai\AppData\Roaming\.OBS
2020-08-22 17:26 - 2020-08-22 17:26 - 000000016 _____ C:\Users\Unai\AppData\Roaming\.ICL
2020-08-20 19:00 - 2020-08-20 19:00 - 000000052 _____ C:\Users\Unai\AppData\Roaming\_CLB.BAK
2020-08-20 19:00 - 2020-08-20 19:00 - 000000016 _____ C:\Users\Unai\AppData\Roaming\_OBS.BAK
2020-08-20 19:00 - 2020-08-20 19:00 - 000000016 _____ C:\Users\Unai\AppData\Roaming\_ICL.BAK
2020-08-20 18:59 - 2020-08-28 00:11 - 000000000 ____D C:\Users\Unai\AppData\Roaming\WinJUPOS
2020-08-20 18:23 - 2020-08-20 18:26 - 000001228 _____ C:\Users\Unai\.PlanetarySystemStacker.ini
2020-08-20 18:22 - 2020-08-20 18:22 - 000000000 ____D C:\Users\Unai\.astropy
2020-08-19 13:32 - 2020-09-13 02:16 - 000008192 ___SH C:\DumpStack.log.tmp
2020-08-19 13:32 - 2020-08-19 13:33 - 001311340 _____ C:\WINDOWS\Minidump\081920-6984-01.dmp

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-09-15 01:22 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-09-15 01:21 - 2020-02-07 19:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-09-15 01:13 - 2020-03-13 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2020-09-15 01:13 - 2020-03-13 19:06 - 000000000 ____D C:\Program Files\KMSpico
2020-09-15 00:50 - 2019-09-22 01:18 - 000000000 ____D C:\Users\Unai\AppData\Local\ESET
2020-09-15 00:43 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-09-15 00:35 - 2019-09-22 02:21 - 000000000 ____D C:\Users\Unai\AppData\Local\CrashDumps
2020-09-14 23:34 - 2020-01-30 21:33 - 000000000 ____D C:\Program Files (x86)\Steam
2020-09-14 14:45 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-09-14 14:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-09-14 13:53 - 2019-09-19 22:15 - 000000000 ____D C:\ProgramData\NVIDIA
2020-09-13 16:38 - 2019-09-19 23:26 - 000000000 ____D C:\Users\Unai\AppData\LocalLow\Mozilla
2020-09-13 02:20 - 2020-02-07 20:07 - 001772930 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-09-13 02:20 - 2019-12-07 16:55 - 000789640 _____ C:\WINDOWS\system32\perfh00A.dat
2020-09-13 02:20 - 2019-12-07 16:55 - 000155992 _____ C:\WINDOWS\system32\perfc00A.dat
2020-09-13 02:17 - 2019-09-19 22:25 - 000000000 __SHD C:\Users\Unai\IntelGraphicsProfiles
2020-09-13 02:16 - 2020-04-08 16:27 - 000316024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-13 02:16 - 2020-02-07 20:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-09-13 02:16 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-09-13 02:16 - 2019-09-19 22:06 - 000053284 _____ C:\WINDOWS\system32\wpbbin.exe
2020-09-13 02:15 - 2020-07-19 22:36 - 000000000 ___SD C:\WINDOWS\system32\lxss
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-09-13 02:14 - 2020-07-19 22:35 - 000000000 ____D C:\Users\Unai\AppData\Local\Everything
2020-09-13 02:14 - 2020-07-17 13:08 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Everything
2020-09-13 01:47 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-09-13 01:40 - 2020-02-07 20:04 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-09-13 01:25 - 2020-01-12 14:48 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Send Anywhere
2020-09-11 01:16 - 2019-09-19 22:27 - 000000000 ___RD C:\Users\Unai\OneDrive
2020-09-11 01:13 - 2019-09-19 22:23 - 000000000 ___RD C:\Users\Unai\3D Objects
2020-09-11 00:22 - 2019-10-04 22:59 - 000000000 ____D C:\Users\Unai\AppData\Roaming\vlc
2020-09-11 00:07 - 2020-07-17 13:01 - 000000000 ____D C:\Users\Unai\AppData\Roaming\obs-studio
2020-09-11 00:03 - 2020-06-10 19:02 - 000001080 _____ C:\Users\Unai\Desktop\Meshroom.lnk
2020-09-11 00:03 - 2020-05-04 12:53 - 000002466 _____ C:\Users\Unai\Desktop\Runway.lnk
2020-09-11 00:03 - 2020-04-20 11:41 - 000002155 _____ C:\Users\Unai\Desktop\JDownloader 2.lnk
2020-09-11 00:03 - 2020-04-04 16:06 - 000001303 _____ C:\Users\Unai\Desktop\OpenIV.lnk
2020-09-11 00:03 - 2019-09-22 02:03 - 000001990 _____ C:\Users\Unai\Desktop\WinDirStat.lnk
2020-09-10 23:57 - 2020-07-15 17:57 - 000002422 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2020-09-10 00:38 - 2020-04-14 16:23 - 000002423 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-09-09 16:24 - 2020-03-18 17:44 - 000000000 ____D C:\Users\Unai\AppData\Roaming\XnConvert
2020-09-09 15:52 - 2020-06-05 13:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Agisoft
2020-09-09 14:37 - 2020-06-11 20:32 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-09-09 14:37 - 2020-06-11 20:32 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-09-09 14:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-09-09 14:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-09-09 01:00 - 2019-09-19 22:23 - 000000000 ____D C:\Users\Unai\AppData\Local\Packages
2020-09-08 23:26 - 2019-09-22 00:22 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-09-07 23:28 - 2019-09-19 22:31 - 000000000 ____D C:\Users\Unai\AppData\Local\PlaceholderTileLogoFolder
2020-09-06 13:18 - 2020-07-29 00:49 - 000000000 ____D C:\Users\Unai\Desktop\Astrofotografia
2020-09-06 12:13 - 2020-02-07 19:59 - 000000000 ____D C:\Users\Unai
2020-09-04 19:26 - 2020-04-23 13:19 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-09-04 19:24 - 2019-12-20 14:28 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Photolemur 3
2020-09-02 18:10 - 2019-09-19 23:28 - 000000000 ____D C:\Users\Unai\AppData\Local\Adobe
2020-09-02 02:56 - 2019-09-19 23:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-09-02 02:54 - 2019-09-19 23:10 - 000000000 ____D C:\ProgramData\Package Cache
2020-09-02 02:48 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-09-02 02:41 - 2019-12-22 15:30 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Visual Studio Setup
2020-09-02 01:37 - 2020-02-07 19:41 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-09-02 01:35 - 2019-12-22 15:30 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2020-09-01 12:35 - 2020-07-30 20:45 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender
2020-09-01 12:35 - 2019-12-31 20:18 - 000000000 ____D C:\Users\Unai\blenderkit_data
2020-09-01 12:35 - 2019-09-22 01:50 - 000000000 ____D C:\Program Files\Blender Foundation
2020-08-31 20:59 - 2019-09-19 23:26 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-08-31 20:46 - 2020-07-28 21:57 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Stellarium
2020-08-30 20:50 - 2019-12-29 01:29 - 000000000 ____D C:\Program Files\Google
2020-08-30 20:50 - 2019-09-22 00:21 - 000000000 ____D C:\Users\Unai\AppData\Local\Google
2020-08-30 18:37 - 2020-07-28 13:58 - 000000000 ___HD C:\ProgramData\{C48834CF-2B88-4E70-879F-E99157B9F526}
2020-08-30 18:37 - 2020-07-28 13:57 - 000000000 ____D C:\Users\Unai\Documents\ASCOM
2020-08-30 18:37 - 2020-04-25 14:13 - 000000000 ____D C:\Users\Unai\AppData\Local\IIIQF
2020-08-29 13:35 - 2020-07-07 21:17 - 000106640 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2020-08-28 22:20 - 2020-07-29 00:48 - 000000000 ____D C:\Program Files\DeepSkyStacker (64 bit)
2020-08-28 22:09 - 2020-04-30 12:50 - 000000000 ____D C:\Program Files\xNormal
2020-08-28 22:06 - 2020-01-08 17:45 - 000000000 ____D C:\ProgramData\SketchUp
2020-08-28 22:05 - 2020-05-17 13:06 - 000000000 ____D C:\Users\Unai\AppData\Local\Razer
2020-08-28 22:05 - 2020-05-17 13:04 - 000000000 ____D C:\ProgramData\Razer
2020-08-28 21:59 - 2019-12-15 14:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-08-28 21:59 - 2019-12-15 14:11 - 000000000 ____D C:\Program Files\Java
2020-08-28 21:56 - 2020-06-21 19:37 - 000000000 ____D C:\Users\Unai\AppData\LocalLow\David OReilly
2020-08-28 21:52 - 2019-09-19 22:23 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Adobe
2020-08-28 15:32 - 2020-03-25 13:12 - 000000000 ____D C:\Users\Unai\AppData\Local\gtk-2.0
2020-08-28 15:32 - 2020-03-12 17:30 - 000000000 ____D C:\Users\Unai\AppData\Local\babl-0.1
2020-08-27 12:28 - 2019-09-22 21:22 - 000000000 ____D C:\Users\Unai\AppData\Local\Fateful_Productions
2020-08-27 02:05 - 2019-12-29 22:02 - 000000000 ____D C:\Users\Unai\Documents\My Games
2020-08-26 17:28 - 2020-03-14 18:12 - 000000000 ____D C:\Users\Unai\AppData\Roaming\.minecraft
2020-08-26 17:26 - 2019-09-22 15:00 - 000000000 ____D C:\Users\Unai\AppData\Roaming\.tlauncher
2020-08-26 13:01 - 2019-09-19 22:14 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-08-26 13:01 - 2019-09-19 22:14 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-08-26 13:00 - 2019-09-19 22:14 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-08-26 12:03 - 2019-12-07 23:58 - 000000000 ____D C:\Users\Unai\AppData\LocalLow\Cheesecake Dev
2020-08-24 14:09 - 2020-04-14 16:22 - 000003652 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-08-24 14:09 - 2020-04-14 16:22 - 000003528 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-08-19 13:32 - 2020-06-05 18:28 - 780538401 _____ C:\WINDOWS\MEMORY.DMP
2020-08-19 13:32 - 2020-06-05 18:28 - 000000000 ____D C:\WINDOWS\Minidump
2020-08-18 11:01 - 2019-09-19 23:19 - 000000000 ____D C:\Program Files (x86)\Microsoft Office

==================== Archivos en la raíz de algunos directorios ========

2020-08-22 17:26 - 2020-08-22 17:26 - 000000052 _____ () C:\Users\Unai\AppData\Roaming\.CLB
2020-08-22 17:26 - 2020-08-22 17:26 - 000000016 _____ () C:\Users\Unai\AppData\Roaming\.ICL
2020-08-22 17:26 - 2020-08-22 17:26 - 000000016 _____ () C:\Users\Unai\AppData\Roaming\.OBS
2020-04-20 21:37 - 2020-04-20 21:48 - 000009063 _____ () C:\Users\Unai\AppData\Roaming\ContactSheetII.log
2020-04-28 16:00 - 2020-04-28 16:00 - 000000128 ____H () C:\Users\Unai\AppData\Roaming\ecf00c38dc807e105d881c433a6b455dd2c606b6
2020-04-20 21:37 - 2020-04-20 21:48 - 000000715 _____ () C:\Users\Unai\AppData\Roaming\Hoja de contactos II.xml
2020-05-20 15:55 - 2020-05-20 15:55 - 000000364 _____ () C:\Users\Unai\AppData\Roaming\PureRef.ini
2020-08-20 19:00 - 2020-08-20 19:00 - 000000052 _____ () C:\Users\Unai\AppData\Roaming\_CLB.BAK
2020-08-20 19:00 - 2020-08-20 19:00 - 000000016 _____ () C:\Users\Unai\AppData\Roaming\_ICL.BAK
2020-08-20 19:00 - 2020-08-20 19:00 - 000000016 _____ () C:\Users\Unai\AppData\Roaming\_OBS.BAK
2020-06-04 20:51 - 2020-06-04 20:51 - 000000605 ___SH () C:\Users\Unai\AppData\Local\6w65fts3hvyxjkh27rv3e2vffcxrqra
2019-11-19 20:08 - 2019-11-19 20:08 - 001065984 _____ () C:\Users\Unai\AppData\Local\file__0.localstorage
2020-05-25 20:06 - 2020-06-06 14:09 - 000000000 _____ () C:\Users\Unai\AppData\Local\nsight-sys-agent.lock
2020-09-08 23:35 - 2020-09-08 23:35 - 000029300 _____ () C:\Users\Unai\AppData\Local\recently-used.xbel
2019-11-26 17:18 - 2020-06-04 13:30 - 000000015 _____ () C:\Users\Unai\AppData\Local\update_progress.txt

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #4
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 13-09-2020
Ejecutado por Unai (15-09-2020 01:28:07)
Ejecutado desde C:\Users\Unai\Desktop
Windows 10 Home Versión 2004 19041.508 (X64) (2020-02-07 18:08:06)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-2954361111-2295329619-4222815306-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2954361111-2295329619-4222815306-503 - Limited - Disabled)
Invitado (S-1-5-21-2954361111-2295329619-4222815306-501 - Limited - Disabled)
Unai (S-1-5-21-2954361111-2295329619-4222815306-1001 - Administrator - Enabled) => C:\Users\Unai
victor (S-1-5-21-2954361111-2295329619-4222815306-1002 - Administrator - Enabled)
WDAGUtilityAccount (S-1-5-21-2954361111-2295329619-4222815306-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

${{arpDisplayName}} (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cufft_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
3d-io Exr-IO 2.03.00 (HKLM-x32\...\3d-io Exr-IO) (Version: 2.03.00 - 3d-io GmbH)
4K Video Downloader 4.12 (HKLM\...\{E9B4998F-85C5-4694-B95F-2390B6E63756}) (Version: 4.12.5.3670 - Open Media LLC)
7-Zip 20.00 alpha (x64) (HKLM\...\7-Zip) (Version: 20.00 alpha - Igor Pavlov)
Actualización de NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Adobe After Effects 2020 (HKLM-x32\...\AEFT_17_1_1) (Version: 17.1.1 - Adobe Inc.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.433 - Adobe)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_2) (Version: 24.2 - Adobe Inc.)
Adobe Lightroom Classic (HKLM-x32\...\LTRM_9_3) (Version: 9.3 - Adobe Inc.)
Adobe Media Encoder 2020 (HKLM-x32\...\AME_14_3) (Version: 14.3 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2) (Version: 21.2.0.225 - Adobe Systems Incorporated)
Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_3) (Version: 14.3 - Adobe Inc.)
Advanced Renamer (HKLM-x32\...\Advanced Renamer_is1) (Version: 3.85 - Hulubulu Software)
Agisoft Delighter (HKLM\...\{EC589A28-8B8C-4D6A-A0D3-C8349B141B33}) (Version: 1.6.2 - Agisoft)
Agisoft Metashape Professional (HKLM\...\{4FE38A6A-9C60-4051-9EC8-722865197EFE}) (Version: 1.6.1 - Agisoft)
ASCOM Celestron Telescope and Focuser Driver version 6.1.7350 (HKLM-x32\...\{8cad8458-17ab-49ea-9c3a-b20007f3ad10}_is1) (Version: 6.1.7350 - Chris Rowland <chris.rowland@cherryfield.me.uk>)
ASCOM Platform 6.5 (HKLM\...\{8961E141-B307-4882-ABAD-77A3E76A40C1}) (Version: 6.5.0.3091 - ASCOM Initiative) Hidden
ASCOM Platform 6.5 (HKLM-x32\...\{8961E141-B307-4882-ABAD-77A3E76A40C1}) (Version: 6.5.0.3091 - ASCOM Initiative) Hidden
ASCOM Platform 6.5 (HKLM-x32\...\ASCOM Platform 6.5) (Version: 6.5.0.3091 - ASCOM Initiative)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Autostar Updater (HKLM-x32\...\Autostar Updater) (Version: - )
Backup and Sync from Google (HKLM\...\{01D33BEA-673C-439C-A7C7-DE5B236DB842}) (Version: 3.50.3166.0017 - Google, Inc.)
Blender (HKLM\...\{7D3DB565-6157-47EA-9D7D-E9B5B964E621}) (Version: 2.90.0 - Blender Foundation)
Blender (HKLM\...\{A239FF96-639F-4269-9673-E7ED60D5C74D}) (Version: 2.83.3 - Blender Foundation)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 85.1.13.86 - Los creadores de Brave)
Cartes du Ciel V4.3 (HKLM\...\{A261F28E-6053-4414-9B84-AA8FE5F47AD4}_is1) (Version: - )
CUBLAS Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cublas_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUBLAS Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cublas_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUDA Documentation (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_documentation_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUDA Profiler Tools (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvprof_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUDA Sanitizer API (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_sanitizer_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUDA Toolkit (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDAToolkit_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUDA Version (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDAVersion_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUDART Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cudart_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUFFT Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cufft_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
cuobjdump (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cuobjdump_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUPTI (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cupti_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CURAND Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_curand_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CURAND Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_curand_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUSOLVER Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cusolver_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUSOLVER Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cusolver_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUSPARSE Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cusparse_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUSPARSE Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cusparse_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
DeepSkyStacker (64 bit) 4.2.5 (64 bit - remove only) (HKLM-x32\...\DeepSkyStacker64) (Version: 4.2.5 - The DeepSkyStacker Team)
Demo Suite (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_demo_suite_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
Disassembler (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvdisasm_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
Discord (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.35 - NVIDIA Corporation) Hidden
ELAN Touchpad 15.6.8.2_X64_WHQL (HKLM\...\Elantech) (Version: 15.6.8.2 - ELAN Microelectronic Corp.)
Epic Games Launcher (HKLM-x32\...\{3A595C95-121D-4EB0-8D57-C7A309BA6C09}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESET Security (HKLM\...\{1CE8E9F0-4D99-4C80-B3CB-4A19C083B2B5}) (Version: 13.2.18.0 - ESET, spol. s r.o.)
Everything 1.4.1.969 (x64) (HKLM\...\Everything) (Version: 1.4.1.969 - David Carpenter)
FFmpeg (Windows) for Audacity versión 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - )
FITS Liberator 3.0.1 (HKLM-x32\...\FITS Liberator) (Version: 3.0.1 - ESO/ESA/NASA)
Fortran Examples (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_fortran_examples_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 10.0.0.35798 - Foxit Software Inc.)
fSpy 1.0.3 (only current user) (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\6c332f2e-0163-5c6e-93bd-836ed62606d6) (Version: 1.0.3 - Per Gantelius)
GIMP 2.10.20 (HKLM\...\GIMP-2_is1) (Version: 2.10.20 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.102 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
GPU Library Advisor (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_gpu_library_advisor_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
iMazing HEIC Converter 1.0.10.0 (HKLM\...\{FA58AFA9-B210-409C-88F1-2A90D577C170}_is1) (Version: 1.0.10.0 - DigiDNA)
InputMapper (HKLM-x32\...\{026D2025-A7FA-4F5C-AF8C-A6F7A9B917FC}) (Version: 1.6.10.19991 - DSDCS)
Intel Driver && Support Assistant (HKLM-x32\...\{4752D5B7-5943-4607-97E3-683A534A7660}) (Version: 20.8.30.6 - Intel) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{5C0B869E-82CA-48FB-92B6-4A476984611F}) (Version: 19.0.190 - Intel Corporation)
Intel(R) Computing Improvement Program (HKLM\...\{D98C2DF9-C731-4322-A5F0-D897300216EE}) (Version: 2.4.05718 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{11fd8837-78a3-461c-810a-8857f36bfa18}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{42b513d6-6d10-4f7d-b900-a1caf9318037}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.5146 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{011c7b89-9b3e-4b2a-8cbc-633ef3c1e10c}) (Version: 20.8.30.6 - Intel)
Java 8 Update 261 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
K-Lite Mega Codec Pack 15.6.1 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.6.1 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
MEMCHECK (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_memcheck_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.51 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.13029.20344 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\OneDriveSetup.exe) (Version: 20.143.0716.0003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{4014b6a8-d91a-42a0-a855-c6f1f84f36d6}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{38495195-4bc9-4fdf-ab9f-80cc22824d39}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29016 (HKLM-x32\...\{1aaa01ad-3069-4288-9c6f-37a140a8f6c7}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.7.3064.805 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MKVToolNix 48.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 48.0.0 - Moritz Bunkus)
Mozilla Firefox 80.0 (x64 es-ES) (HKLM\...\Mozilla Firefox 80.0 (x64 es-ES)) (Version: 80.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.2.1 - Mozilla)
Mozilla Thunderbird 78.2.1 (x86 es-ES) (HKLM-x32\...\Mozilla Thunderbird 78.2.1 (x86 es-ES)) (Version: 78.2.1 - Mozilla)
My Game Long Name (HKLM\...\UDK-50bf2c53-0d22-4834-bb7e-6320363094c6) (Version: - Epic Games, Inc.)
Nitro Pro (HKLM\...\{38C03A99-3C48-4172-A161-538B3750982B}) (Version: 12.9.0.474 - Nitro)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.9 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.6.0.9 - Duodian Technology Co. Ltd.)
NPP Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_npp_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NPP Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_npp_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
nvcc (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvcc_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVGRAPH Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvgraph_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVGRAPH Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvgraph_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVIDIA Controlador de gráficos 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation)
NVIDIA CUDA Development 10.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDADevelopment_10.1) (Version: 10.1 - NVIDIA Corporation)
NVIDIA CUDA Documentation 10.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDADocument_10.1) (Version: 10.1 - NVIDIA Corporation)
NVIDIA CUDA Runtime 10.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDARuntimes_10.1) (Version: 10.1 - NVIDIA Corporation)
NVIDIA CUDA Samples 10.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_samples_10.1) (Version: 10.1 - NVIDIA Corporation)
NVIDIA CUDA Visual Studio Integration 10.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_visual_studio_integration_10.1) (Version: 10.1 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Nsight Compute 2019.4.0 (HKLM\...\{A6F92647-E007-4C7F-8FDF-FB214E50E1F0}) (Version: 19.4.0.0 - NVIDIA Corporation)
NVIDIA Nsight Systems v2019.3.7 (HKLM\...\{1431BD9D-EA3A-4379-BDB1-4C99F59BD137}) (Version: 19.3.7.5 - NVIDIA Corporation)
NVIDIA Nsight Visual Studio Edition 2019.3.0.19200 (HKLM\...\{8DD91892-32FB-4035-B011-AD7948EFD302}) (Version: 19.3.0.19200 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Tools Extension SDK (NVTX) - 64 bit (HKLM\...\{B56D2F88-8865-40FD-B7AC-F074EE4D201D}) (Version: 1.00.00.00 - NVIDIA Corporation)
NVJPEG Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvjpeg_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVJPEG Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvjpeg_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVML Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvml_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
nvprune (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvprune_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVRTC Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvrtc_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVRTC Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvrtc_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVTX Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvtx_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project)
Occupancy Calculator (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_occupancy_calculator_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13029.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13029.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13029.20344 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.13029.20200 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenIV (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\OpenIV) (Version: 4.0.1401 - .black/OpenIV Team)
OpenRL Runtime 1.3.1000.14 x64 (HKLM\...\{250C8D22-1757-11E3-818E-1803734DBB4F}) (Version: 1.3.1000.14 - Caustic Graphics, Inc.)
Panel de control de NVIDIA 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.35 - NVIDIA Corporation) Hidden
Paquete de controladores de Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Paquete de controladores de Windows - Microsoft PS Vita Type B (02/22/2013 6.1.7600.16385) (HKLM\...\A0EC80B5719D4DA4CF40C9219D7CB9CCAD6DBA40) (Version: 02/22/2013 6.1.7600.16385 - Microsoft)
Paquete de controladores de Windows - Sony Computer Entertainment Inc. Wireless controller for PLAYSTATION(R)3 Driver Package (01/20/2012 1.4.0.0) (HKLM\...\D5410AE5FA467EF0F19558D5F60C991A79E11B51) (Version: 01/20/2012 1.4.0.0 - Sony Computer Entertainment Inc.)
PHD 2 version 2.6.9 (HKLM-x32\...\PHD 2_is1) (Version: 2.6.9 - )
Photolemur 3 (HKLM\...\{A2F8D51D-5FC4-4B0C-AF19-C580E95FDAFD}) (Version: 1.1.0.2443 - Skylum) Hidden
Photolemur 3 (HKLM-x32\...\{62128665-8632-420a-94af-12c1ea417f52}) (Version: 1.1.0.2443 - Skylum)
PIPP 2.5.9 (HKLM\...\PIPP) (Version: 2.5.9 - Chris Garry)
Print Server Utilities (HKLM-x32\...\{38697498-F4AA-4A8A-81F6-C09446AD020D}) (Version: 4.3.4.1 - Edimax Technology CO., Ltd.)
PyCharm Community Edition 2020.1 (HKLM-x32\...\PyCharm Community Edition 2020.1) (Version: 201.6668.115 - JetBrains s.r.o.)
Python 3.8.2 (64-bit) (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\{13ee6ab9-4dca-406c-bc3b-5d86391d39a1}) (Version: 3.8.2150.0 - Python Software Foundation)
Python 3.8.2 Add to Path (64-bit) (HKLM\...\{88AF4D20-BE9D-4CA6-8BD4-5DB380A41CC8}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Core Interpreter (64-bit) (HKLM\...\{AD923240-0ACE-45C9-8749-05BF77AAE101}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Development Libraries (64-bit) (HKLM\...\{BDFB7011-0AB2-440F-8F00-32AF7A9ED1ED}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Documentation (64-bit) (HKLM\...\{65B0F976-5151-427E-95B4-2320DC64F91E}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Executables (64-bit) (HKLM\...\{A36C1168-60E6-42E4-93DB-6BE8C6DD9DD6}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 pip Bootstrap (64-bit) (HKLM\...\{8EEE042B-6EAF-4171-BA6E-01319ED99DA8}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Standard Library (64-bit) (HKLM\...\{33F9B46C-EB19-4BB7-ABFA-F8C71B73E9A4}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Tcl/Tk Support (64-bit) (HKLM\...\{FCA1EB7D-2F62-4659-AA5F-42C37CE5D3CB}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Test Suite (64-bit) (HKLM\...\{F6DA05CF-67B5-47D0-ABD4-371C80BA0717}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Utility Scripts (64-bit) (HKLM\...\{52AB506A-EC3C-4060-9EBF-6A975994CB35}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{AF12A465-EA47-447D-B6BF-2A82CDBE2F0E}) (Version: 3.8.6994.0 - Python Software Foundation)
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Radeon ProRender for Blender (HKLM\...\{7FDCC995-EE4F-4F8F-A8C8-B9D1728D3D17}) (Version: 2.0.112 - AMD)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.27040 - Realtek Semiconductor Corp.)
RegiStax 6 (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\RegiStax 6) (Version: - )
RegiStax 6.1.0.8 update (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\RegiStax 6.1.0.8 update) (Version: - )
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.25.260 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.6 - Rockstar Games)
Runway 0.13.4 (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\d91bc86b-75f2-517f-8f84-456208a7dba4) (Version: 0.13.4 - Runway AI, Inc.)
Send Anywhere 20.3.131125 (HKLM-x32\...\20db1975-fda0-5740-b262-81be26ba22ab) (Version: 20.3.131125 - Estmob Inc.)
SiriL version 0.9.12 (HKLM-x32\...\{ADA3C347-68C3-4EAA-92B3-C1BDBD836EDB}_is1) (Version: 0.9.12 - Free-Astro)
SiriL version 0.99.4 (64-bit) (HKLM\...\{ADA3C347-68C3-4EAA-92B3-C1BDBD836EDB}_is1) (Version: 0.99.4 - Free-Astro)
Software Update Wizard (Redist) 4.5 (HKLM-x32\...\Software Update Wizard (Redist)) (Version: 4.5 - PowerProgrammer)
SpaceEngine versión 0.9.8.0 (HKLM-x32\...\{6E7A40FA-86CE-4844-A7DC-F8769F21A62F}_is1) (Version: 0.9.8.0 - SpaceEngine)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellarium 0.20.2 (HKLM\...\Stellarium_is1) (Version: 0.20.2 - Stellarium team)
Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: 6.2-24922 - Synology)
TAP-Windows 9.24.2 (HKLM\...\TAP-Windows) (Version: 9.24.2 - OpenVPN Technologies, Inc.)
Topaz Gigapixel AI (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\{b86a2732-97c3-40bf-8b25-33283f34c261}) (Version: 4.4.5 - Topaz Labs, LLC)
Trackmania (HKLM-x32\...\Uplay Install 5595) (Version: - Ubisoft)
Twitch (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 87.0 - Ubisoft)
Uso a distancia de tu PS4 (HKLM-x32\...\{5EF8E631-35B8-4A88-B874-8AAE0EB6B386}) (Version: 3.0.0.09250 - Sony Interactive Entertainment Inc.)
Ut Video Codec Suite (HKLM\...\utvideo_is1) (Version: 16.1.0 - UMEZAWA Takeshi)
Vector Magic (HKLM-x32\...\Vector Magic) (Version: 1.15 - Vector Magic, Inc.)
Visual Studio Build Tools 2019 (HKLM-x32\...\2e53059a) (Version: 16.7.30413.136 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
vs_FileTracker_Singleton (HKLM-x32\...\{EF1AD9BC-8273-4B78-ACB6-A35DF4CE4447}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WebM Media Foundation Components (HKLM-x32\...\webmmf) (Version: 1.0.1.2 - WebM Project)
WinDirStat 1.1.2 (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\WinDirStat) (Version: - )
Windows SDK AddOn (HKLM-x32\...\{E6F877A1-2F65-4BF0-87B6-A4071B7663D3}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Subsystem for Linux Update (HKLM\...\{9F858BB9-156F-4C4C-9295-0A06CA83D17C}) (Version: 4.19.104 - Microsoft Corporation)
WinJUPOS 11.1.6 (HKLM-x32\...\WinJUPOS 11.1.6_is1) (Version: 11.1.6 - Grischa Hahn, Germany)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
Wondershare FilmoraPro (HKLM\...\{C88C3846-DB46-43CE-9978-DD78887E2BBC}) (Version: 2.0.9811.57375 - Wondershare)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
XnConvert 1.83 (HKLM\...\XnConvert_is1) (Version: 1.83 - Gougelet Pierre-e)

Packages:
=========
Complemento de motor del medio de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-02] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-09-19] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-09-19] (Microsoft Corporation) [MS Ad]
Microsoft Bingo -> C:\Program Files\WindowsApps\Microsoft.MicrosoftBingo_2.6.10262.0_x86__8wekyb3d8bbwe [2019-12-14] (Microsoft Studios) [MS Ad]
Microsoft Jigsaw -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJigsaw_2.1.7200.0_x86__8wekyb3d8bbwe [2020-08-11] (Microsoft Studios) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.11.6020.0_x64__8wekyb3d8bbwe [2020-06-10] (Microsoft Studios) [MS Ad]
Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_3.0.8191.0_x86__8wekyb3d8bbwe [2020-09-02] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-20] (Microsoft Studios) [MS Ad]
Microsoft Sudoku -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSudoku_2.2.7240.0_x64__8wekyb3d8bbwe [2020-08-19] (Microsoft Studios) [MS Ad]
Microsoft Treasure Hunt -> C:\Program Files\WindowsApps\Microsoft.MicrosoftTreasureHunt_2.1.11080.0_x86__8wekyb3d8bbwe [2019-12-14] (Microsoft Studios) [MS Ad]
Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_3.6.10070.0_x64__8wekyb3d8bbwe [2019-12-14] (Microsoft Studios) [MS Ad]
Raw Image Extension -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_1.0.30761.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key -> Intel)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ningún archivo
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2020-03-04] (Notepad++ -> )
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro\12\NitroProShellExtensionShim.dll [2019-09-23] (Nitro Software, Inc. -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Ningún archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2020-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Ningún archivo
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\system32\xvidvfw.dll [310784 2019-12-28] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULRA] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULRG] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULY0] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULY2] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULH0] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULH2] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.UQY2] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.UQRG] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.UQRA] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULRA] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULRG] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULY0] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULY2] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULH0] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULH2] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.UQY2] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.UQRG] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.UQRA] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

2020-09-13 02:17 - 2020-09-13 02:17 - 000114176 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\_ctypes.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000172544 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\_elementtree.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 002250240 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\_hashlib.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000032256 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\_multiprocessing.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000046080 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\_psutil_windows.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000047616 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\_socket.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 002819584 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\_ssl.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000026112 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\_yappi.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000080896 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\bz2.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000016384 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\common.time34.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000007680 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\hashobjs_ext.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000301568 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\PIL._imaging.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000168448 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\pyexpat.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 001084416 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\pysqlite2._sqlite.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000548864 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\pythoncom27.dll
2020-09-13 02:17 - 2020-09-13 02:17 - 000137728 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\pywintypes27.dll
2020-09-13 02:17 - 2020-09-13 02:17 - 000010752 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\select.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000020992 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\thumbnails_ext.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000689664 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\unicodedata.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000119808 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\usb_ext.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000128512 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\win32api.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000438784 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\win32com.shell.shell.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000011776 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\win32crypt.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000023040 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\win32event.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000149504 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\win32file.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000223232 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\win32gui.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000048128 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\win32inet.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000029696 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\win32pdh.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000027648 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\win32pipe.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000044032 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\win32process.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000020480 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\win32profile.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000136192 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\win32security.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000026624 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\win32ts.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000034816 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\windows.conditional.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000038400 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\windows.connectivity.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000071680 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\windows.device_monitor.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000109056 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\windows.volumes.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000020480 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\windows.winwrap.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 001325056 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\wx._controls_.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 001489408 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\wx._core_.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 001007104 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\wx._gdi_.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000103424 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\wx._html2.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 000916992 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\wx._misc_.pyd
2020-09-13 02:17 - 2020-09-13 02:17 - 001039872 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\wx._windows_.pyd
2020-04-18 22:14 - 2020-02-06 15:00 - 000076800 _____ (Igor Pavlov) [Archivo no firmado] C:\Program Files\7-Zip\7-zip.dll
2020-09-13 02:17 - 2020-09-13 02:17 - 003043328 _____ (Python Software Foundation) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\python27.dll
2020-03-10 10:31 - 2020-03-10 10:31 - 001631744 _____ (Robert Simpson, et al.) [Archivo no firmado] C:\Program Files\Intel\SUR\QUEENCREEK\x64\SQLite.Interop.dll
2020-03-10 10:31 - 2020-03-10 10:31 - 001918464 _____ (SQLite Development Team) [Archivo no firmado] C:\Program Files\Intel\SUR\QUEENCREEK\sqlite3.DLL
2020-03-10 10:31 - 2020-03-10 10:31 - 001918464 _____ (SQLite Development Team) [Archivo no firmado] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
2020-09-13 02:17 - 2020-09-13 02:17 - 000202240 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\wxbase30u_net_vc90_x64.dll
2020-09-13 02:17 - 2020-09-13 02:17 - 002831872 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\wxbase30u_vc90_x64.dll
2020-09-13 02:17 - 2020-09-13 02:17 - 001654784 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\wxmsw30u_adv_vc90_x64.dll
2020-09-13 02:17 - 2020-09-13 02:17 - 006542336 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\wxmsw30u_core_vc90_x64.dll
2020-09-13 02:17 - 2020-09-13 02:17 - 000773632 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\wxmsw30u_html_vc90_x64.dll
2020-09-13 02:17 - 2020-09-13 02:17 - 000137216 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI114282\wxmsw30u_webview_vc90_x64.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\Windows:nlsPreferences [386]
AlternateDataStreams: C:\Users\Unai\Datos de programa:iSpring Solutions [128]
AlternateDataStreams: C:\Users\Unai\AppData\Roaming:iSpring Solutions [128]

==================== Modo Seguro (Lista blanca) ==================

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Lista blanca) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_261\bin\ssv.dll [2020-07-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-16] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-09] (Microsoft Corporation -> Microsoft Corporation)

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE trusted site: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\localhost -> localhost

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2019-12-07 11:14 - 2020-07-19 22:38 - 000001992 _____ C:\WINDOWS\system32\drivers\etc\hosts
109.94.209.70 fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 fitgirl-repack.com # Fake FitGirl site
109.94.209.70 fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 ww9.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repack.net # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.net # Fake FitGirl site
192.168.0.17 host.docker.internal
192.168.0.17 gateway.docker.internal
127.0.0.1 kubernetes.docker.internal

2020-06-22 21:06 - 2020-07-20 19:20 - 000000435 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
172.25.64.1 P-UNAI.mshome.net # 2025 7 6 19 17 20 51 269
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #5
==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64_win\compiler;C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64\compiler;C:\Program Files\NVIDIA GPU Computing Toolkit\CUDA\v10.1\bin;C:\Program Files\NVIDIA GPU Computing Toolkit\CUDA\v10.1\libnvvp;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\Nsight Compute 2019.4.0\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Users\Unai\AppData\Local\Microsoft\WindowsApps;C:\Program Files (x86)\FreeArc\bin;C:\adb;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\CMake\bin;C:\mingw\mingw64\bin;;C:\Program Files\Docker\Docker\resources\bin;C:\ProgramData\DockerDesktop\version-bin
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 80.58.61.254 - 80.58.61.250
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "RazerCortex"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_4AC4223D71D859AE87BA8F6AAC969BA7"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "AceStream"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "btweb"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "DesktopMining"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "Free Download Manager"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "BitTorrent"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "SendAnywhere"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "Snap Camera"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "Parsec.App.0"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "GlassWire"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{A2E03BE7-6238-4973-8E38-925CCEE6D272}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DD8CCA0A-7147-4393-907C-9D92039DF442}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{1976EEE1-7446-4DD1-B2BF-F493C37FFA65}C:\program files (x86)\send anywhere\send anywhere.exe] => (Allow) C:\program files (x86)\send anywhere\send anywhere.exe (Estmob Inc. -> Estmob Inc.)
FirewallRules: [TCP Query User{14300A1A-1474-4C48-A0DF-2A72E113320C}C:\program files (x86)\send anywhere\send anywhere.exe] => (Allow) C:\program files (x86)\send anywhere\send anywhere.exe (Estmob Inc. -> Estmob Inc.)
FirewallRules: [UDP Query User{8D295076-3841-4728-8D27-8150CE865A5D}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => Ningún archivo
FirewallRules: [TCP Query User{65C553F1-BAA3-4830-96E2-367461023FFC}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => Ningún archivo
FirewallRules: [{3C39406F-78D2-4B13-B783-C0A8B16021E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{85326346-AE2E-46D7-9783-42C8C661F207}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{4D536A3A-ADE3-421D-892A-DF45C6A46C09}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe => Ningún archivo
FirewallRules: [TCP Query User{8B36921B-ABFF-44EA-A35E-75C9859B2E34}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe => Ningún archivo
FirewallRules: [UDP Query User{5258A70D-C451-432A-808F-DC22CE2990DA}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> )
FirewallRules: [TCP Query User{F5F1B847-34C9-465B-AFEE-466B8469FEE5}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> )
FirewallRules: [UDP Query User{DA20CDBA-63A9-40C3-BD7C-64F606A251E5}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe => Ningún archivo
FirewallRules: [TCP Query User{480D0A5B-C796-4342-88A7-7DC7015C0B8D}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe => Ningún archivo
FirewallRules: [{AE6469C7-D24A-4551-BD4B-8AD252AF67DD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{00AA4D4D-D20F-41A8-BE70-F5F29EDB8C5B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AE182298-108E-4D6B-8F76-22909CED2F0E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{DDF2A567-2990-4F06-B0A5-87934F0FDD4E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{863369D7-E10E-44C2-A794-7A5F32A181B8}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => Ningún archivo
FirewallRules: [UDP Query User{9F04DDB8-B562-43ED-AC37-294E8576455F}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => Ningún archivo
FirewallRules: [{6F316924-4B83-4620-8E7C-A584AC0C8C68}] => (Allow) D:\Games\Grand Theft Auto V\GTA5.exe => Ningún archivo
FirewallRules: [{4736B798-E48E-4EED-8CB2-8B260C8906BD}] => (Allow) D:\Games\Grand Theft Auto V\GTA5.exe => Ningún archivo
FirewallRules: [{0FBD85D9-B644-400F-B3E3-C1D43EFEB89D}] => (Block) %ProgramFiles%\CCleaner\CCleaner64.exe => Ningún archivo
FirewallRules: [{F34D378A-8F97-4BD9-98D7-67063C48EC20}] => (Block) %ProgramFiles%\CCleaner\CCleaner64.exe => Ningún archivo
FirewallRules: [{09CE20EA-4D76-4140-B591-40F3206539C5}] => (Block) C:\Program Files\Topaz Labs\Topaz A.I. Gigapixel\Topaz A.I. Gigapixel.exe () [Archivo no firmado]
FirewallRules: [{6B1B6D39-0019-4827-B202-7A027B041CE1}] => (Block) C:\Program Files\Topaz Labs\Topaz A.I. Gigapixel\Topaz A.I. Gigapixel.exe () [Archivo no firmado]
FirewallRules: [{AB4CDDDC-ABB8-4B1E-B7B7-3A689561030A}] => (Block) %ProgramFiles%\Pano2VR6\pano2vr.exe => Ningún archivo
FirewallRules: [{E6BFB984-7B9E-4758-AEB2-F3EC650260A5}] => (Block) %ProgramFiles%\Pano2VR6\pano2vr.exe => Ningún archivo
FirewallRules: [TCP Query User{0D52CB2B-7D5B-481F-B65F-1B3E9D9248D6}C:\program files\jetbrains\pycharm community edition 2020.1\bin\pycharm64.exe] => (Allow) C:\program files\jetbrains\pycharm community edition 2020.1\bin\pycharm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [UDP Query User{8B054C92-D9B1-495C-A18C-4849380E83CF}C:\program files\jetbrains\pycharm community edition 2020.1\bin\pycharm64.exe] => (Allow) C:\program files\jetbrains\pycharm community edition 2020.1\bin\pycharm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [TCP Query User{25500307-6EB8-4A4D-953C-BA9EAC7C1545}C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [UDP Query User{CE5EF259-CFD1-4E62-BEDD-87B0E4280B28}C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [TCP Query User{78A43E61-99AE-496A-9EDA-84E5E8916F84}C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe => Ningún archivo
FirewallRules: [UDP Query User{D1E26095-B3F8-4618-A21C-A0198D01D4D6}C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe => Ningún archivo
FirewallRules: [TCP Query User{E00E256F-50FC-48F0-AAF8-706E6589F893}C:\program files\pylo\mcreator\jdk\bin\java.exe] => (Allow) C:\program files\pylo\mcreator\jdk\bin\java.exe => Ningún archivo
FirewallRules: [UDP Query User{0A5AD6A9-74C5-491A-916C-036E7BA6654C}C:\program files\pylo\mcreator\jdk\bin\java.exe] => (Allow) C:\program files\pylo\mcreator\jdk\bin\java.exe => Ningún archivo
FirewallRules: [TCP Query User{518731B2-ECB4-4D1B-A9CA-AF71186E0084}C:\users\unai\appdata\local\programs\blockbench\blockbench.exe] => (Allow) C:\users\unai\appdata\local\programs\blockbench\blockbench.exe => Ningún archivo
FirewallRules: [UDP Query User{BCC87B00-35A3-4623-813B-E53ADCBFC2CD}C:\users\unai\appdata\local\programs\blockbench\blockbench.exe] => (Allow) C:\users\unai\appdata\local\programs\blockbench\blockbench.exe => Ningún archivo
FirewallRules: [TCP Query User{A3B15CCF-5887-4ED8-9CC0-9FA0C8016D55}C:\users\unai\appdata\local\programs\runway\runway.exe] => (Allow) C:\users\unai\appdata\local\programs\runway\runway.exe (Runway AI, Inc. -> Runway AI, Inc.)
FirewallRules: [UDP Query User{08F39088-D161-4E5C-9AD7-DA471F005ED3}C:\users\unai\appdata\local\programs\runway\runway.exe] => (Allow) C:\users\unai\appdata\local\programs\runway\runway.exe (Runway AI, Inc. -> Runway AI, Inc.)
FirewallRules: [TCP Query User{5891F212-7E9C-4E4B-8B4F-545345E68A61}C:\program files\allegorithmic\substance designer\substance designer.exe] => (Allow) C:\program files\allegorithmic\substance designer\substance designer.exe => Ningún archivo
FirewallRules: [UDP Query User{5F4D208E-F13A-4871-8ACF-743CCF12B0B5}C:\program files\allegorithmic\substance designer\substance designer.exe] => (Allow) C:\program files\allegorithmic\substance designer\substance designer.exe => Ningún archivo
FirewallRules: [TCP Query User{3BC8E72A-0544-4A4A-B310-D5F8C6DC42FB}C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe] => (Allow) C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe => Ningún archivo
FirewallRules: [UDP Query User{E8210075-76A4-4457-A0B7-63BB256A5790}C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe] => (Allow) C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe => Ningún archivo
FirewallRules: [TCP Query User{D69D5100-E56D-44B8-80AF-345FB3D30EDB}D:\games\gtav\gta5.exe] => (Allow) D:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{237759CD-4BF1-4F41-9F7B-30D86B119E98}D:\games\gtav\gta5.exe] => (Allow) D:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{A15B19E7-230A-4E21-9DC5-E7DCA8053D8B}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{4931D4B4-07FB-4914-BF4D-B4C64E3068EA}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{04CDEF76-CBA9-44E5-9B28-0EB2800B81D0}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{13DF19EA-20A8-49A0-B867-6FB01ACFAB03}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [TCP Query User{DEA2D4E5-3F06-4F75-B9D8-CB7528DE8988}C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe => Ningún archivo
FirewallRules: [UDP Query User{44AB4280-A194-43BC-84C3-17ADA59C505F}C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe => Ningún archivo
FirewallRules: [TCP Query User{57CE4B2D-8191-4B29-A1AA-14D8D6824628}C:\program files (x86)\antichamber\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\antichamber\binaries\win32\udk.exe => Ningún archivo
FirewallRules: [UDP Query User{BFFCC00D-7890-4D96-87DA-74E99C4DDCD2}C:\program files (x86)\antichamber\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\antichamber\binaries\win32\udk.exe => Ningún archivo
FirewallRules: [TCP Query User{087B8F19-5B78-4CC8-9E30-7D298303D870}C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe] => (Allow) C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe => Ningún archivo
FirewallRules: [UDP Query User{7F091A7B-D095-443A-8C44-C07F53308910}C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe] => (Allow) C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe => Ningún archivo
FirewallRules: [{8F2D294B-C496-4DEC-9F13-603FFC1D2AEE}] => (Allow) C:\Program Files (x86)\Sony\PS4 Remote Play\RemotePlay.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [TCP Query User{20C37A0C-A15F-4FA3-B783-EB4296508B83}C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe] => (Allow) C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe => Ningún archivo
FirewallRules: [UDP Query User{993E60CB-7D7A-416C-8AA2-099D59FD8DB9}C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe] => (Allow) C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe => Ningún archivo
FirewallRules: [TCP Query User{A500E6B9-134C-47B3-947E-AACDEBCC02CE}C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe] => (Allow) C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe => Ningún archivo
FirewallRules: [UDP Query User{72965F9A-242D-4163-8668-1BA91A5FA0E4}C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe] => (Allow) C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe => Ningún archivo
FirewallRules: [TCP Query User{15742C18-7218-4132-9787-1DFB2E3819F8}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{BBCE6C5D-D570-400C-AFE8-1DF61B33F4D7}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{8BC2359D-A725-4A65-994A-C063F97013F2}C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe] => (Allow) C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe => Ningún archivo
FirewallRules: [UDP Query User{3F651170-1964-4A50-85A4-A005F90FD336}C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe] => (Allow) C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe => Ningún archivo
FirewallRules: [TCP Query User{F83B17B5-8AD9-469F-8998-910ABCDD991C}C:\program files\nvidia corporation\nvidia nsight systems 2019.3.7\target-windows\x86_64\nsight-sys-agent.exe] => (Allow) C:\program files\nvidia corporation\nvidia nsight systems 2019.3.7\target-windows\x86_64\nsight-sys-agent.exe (NVIDIA Corporation -> )
FirewallRules: [UDP Query User{442BC4C6-EA69-4904-8576-A4C352CA72B9}C:\program files\nvidia corporation\nvidia nsight systems 2019.3.7\target-windows\x86_64\nsight-sys-agent.exe] => (Allow) C:\program files\nvidia corporation\nvidia nsight systems 2019.3.7\target-windows\x86_64\nsight-sys-agent.exe (NVIDIA Corporation -> )
FirewallRules: [TCP Query User{18B23F93-0F79-4276-9177-1B7796DAA92E}D:\games\subnautica below zero\subnauticazero.exe] => (Allow) D:\games\subnautica below zero\subnauticazero.exe => Ningún archivo
FirewallRules: [UDP Query User{0C625F98-8AA3-4F00-8175-9A92E80D73C3}D:\games\subnautica below zero\subnauticazero.exe] => (Allow) D:\games\subnautica below zero\subnauticazero.exe => Ningún archivo
FirewallRules: [TCP Query User{978032F1-221B-4EAE-A4A3-628D9179047F}C:\games\the escapists 2\theescapists2.exe] => (Allow) C:\games\the escapists 2\theescapists2.exe => Ningún archivo
FirewallRules: [UDP Query User{A485A2BA-518F-4AEF-8CE4-1C2AC4913A32}C:\games\the escapists 2\theescapists2.exe] => (Allow) C:\games\the escapists 2\theescapists2.exe => Ningún archivo
FirewallRules: [{064AC7C7-B6E1-4EF7-861D-3BD92403BE51}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.)
FirewallRules: [{15C10421-4217-44F8-9540-FB90085A7B98}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> BigNox Corporation)
FirewallRules: [TCP Query User{702B12D9-B329-4091-AED7-5CA060AC52B1}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe => Ningún archivo
FirewallRules: [UDP Query User{DC4ADADA-B385-452D-A01C-3DE9CC43940B}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe => Ningún archivo
FirewallRules: [TCP Query User{4AEDFD50-6AB7-476B-A8B9-016466ADE5EF}D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe] => (Allow) D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe => Ningún archivo
FirewallRules: [UDP Query User{1D0A7060-4D0A-45D0-929A-4CBCC885B802}D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe] => (Allow) D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe => Ningún archivo
FirewallRules: [TCP Query User{9A679723-12B2-46B6-91A6-CDF2515085B2}D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe] => (Allow) D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe => Ningún archivo
FirewallRules: [UDP Query User{8CD5C656-71A2-4084-87C2-A6D20D0CB0C6}D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe] => (Allow) D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe => Ningún archivo
FirewallRules: [TCP Query User{7AEE47B3-EEB9-47E4-9F15-4DD9BC98D426}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe => Ningún archivo
FirewallRules: [UDP Query User{6DF02CA6-916C-47EC-80FE-E90A1062FC81}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe => Ningún archivo
FirewallRules: [TCP Query User{E18B9ADD-07DF-4B22-B72E-200E50C687F9}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{6AF87126-6691-46AD-B1B5-11CCE0412E91}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{CB7226F1-7296-4B16-B2E6-33BDE63332B9}C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [UDP Query User{0B8AE8F6-C7A1-4AC4-A5E7-8D172EB75F13}C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [TCP Query User{86B70E9F-4F11-4123-8A17-D9AE003E50F3}D:\games\gtav\gta5.exe] => (Allow) D:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{294A61C4-070F-4ABB-AE26-EEC4EDC7BAFB}D:\games\gtav\gta5.exe] => (Allow) D:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{51CB5C56-31D3-4E22-9C5D-DE663CD6A7E9}] => (Allow) LPort=13364
FirewallRules: [{BB436580-B7D3-4CC1-A876-A1F09FF82DDC}] => (Allow) LPort=13621
FirewallRules: [{D2D1DBAA-4D5F-4E2B-9B46-10364DF6AF35}] => (Allow) LPort=13107
FirewallRules: [{A875655E-811C-431D-9294-DA84A8686C45}] => (Allow) LPort=69
FirewallRules: [{C46A634C-0337-49D9-B227-4F2D4BDDE819}] => (Allow) D:\Games\TrackmaniaNext\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [{5CDBF5D8-5600-4394-8D78-02B537D3ED9A}] => (Allow) D:\Games\TrackmaniaNext\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [TCP Query User{F814DA14-07CC-41E9-BD71-EEA43F1F08B6}C:\program files (x86)\send anywhere\send anywhere.exe] => (Allow) C:\program files (x86)\send anywhere\send anywhere.exe (Estmob Inc. -> Estmob Inc.)
FirewallRules: [UDP Query User{2B499B3C-A3EC-4875-A705-9A16BD9B2AF2}C:\program files (x86)\send anywhere\send anywhere.exe] => (Allow) C:\program files (x86)\send anywhere\send anywhere.exe (Estmob Inc. -> Estmob Inc.)
FirewallRules: [TCP Query User{37875A56-BD9B-419B-B922-145D5E03F5E0}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{54B515C3-3719-4074-A085-FE8CA1C4BA80}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{619A4D61-331D-4505-9458-29DBE607631B}] => (Block) %ProgramFiles%\Topaz Labs LLC\Topaz Video Enhance AI\Topaz Video Enhance AI.exe => Ningún archivo
FirewallRules: [{BA1C05AE-556C-4E8B-B2D0-2F81FBFAD3B0}] => (Block) %ProgramFiles%\Topaz Labs LLC\Topaz Video Enhance AI\Topaz Video Enhance AI.exe => Ningún archivo
FirewallRules: [{D05A8DB9-906D-4DED-8323-8878E8D0D9E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe => Ningún archivo
FirewallRules: [{B23573A7-580F-40AD-9AEB-4DD17BF1E66B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe => Ningún archivo
FirewallRules: [{E027D222-D57E-474D-B745-CAF624DBD983}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngine\system\LaunchPad.exe => Ningún archivo
FirewallRules: [{E1F6BEE6-11CF-4226-BF64-ED3269A9EA1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngine\system\LaunchPad.exe => Ningún archivo
FirewallRules: [{97293614-458E-4397-9FC4-7209B997051B}] => (Allow) D:\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe (SpaceEngine) [Archivo no firmado]
FirewallRules: [{E3505013-D932-4AE5-84B0-4448A1B3800D}] => (Allow) D:\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe (SpaceEngine) [Archivo no firmado]
FirewallRules: [{8ADBF842-A4E3-4A52-9B41-2A5DE6B400CF}] => (Allow) D:\Steam\steamapps\common\SpaceEngine\system\LaunchPad.exe () [Archivo no firmado]
FirewallRules: [{C9B59FB8-3C03-4858-B35B-CC09268EEE64}] => (Allow) D:\Steam\steamapps\common\SpaceEngine\system\LaunchPad.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{CFE45F16-AE52-4D5D-B41D-78B78D695EC7}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe => Ningún archivo
FirewallRules: [UDP Query User{07156FD5-2756-4836-857A-8C9CFA914CD7}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe => Ningún archivo
FirewallRules: [TCP Query User{F7D9FAA6-8298-4FF8-8F51-2CEB5DD774E7}C:\users\unai\appdata\local\programs\runway\runway.exe] => (Allow) C:\users\unai\appdata\local\programs\runway\runway.exe (Runway AI, Inc. -> Runway AI, Inc.)
FirewallRules: [UDP Query User{305CB9AC-20DF-4C97-9DC2-0CB18FB70641}C:\users\unai\appdata\local\programs\runway\runway.exe] => (Allow) C:\users\unai\appdata\local\programs\runway\runway.exe (Runway AI, Inc. -> Runway AI, Inc.)
FirewallRules: [TCP Query User{46D239E3-83CC-49D1-8441-87BD1D51BA56}C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe] => (Allow) C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe => Ningún archivo
FirewallRules: [UDP Query User{39DE374E-899A-4FAF-9291-72B6A70EBD64}C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe] => (Allow) C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe => Ningún archivo
FirewallRules: [{EB997D69-A347-4B4F-8F36-2742DE90717B}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{D36EF1FD-B5BF-4E88-A695-EC73B7447D58}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{28E98919-343F-4975-8065-BC6049123609}D:\descargas\openspace-0.15.2\bin\openspace.exe] => (Allow) D:\descargas\openspace-0.15.2\bin\openspace.exe => Ningún archivo
FirewallRules: [UDP Query User{84CB2090-8FA0-4C7A-9B0D-B4086A908597}D:\descargas\openspace-0.15.2\bin\openspace.exe] => (Allow) D:\descargas\openspace-0.15.2\bin\openspace.exe => Ningún archivo
FirewallRules: [TCP Query User{3E233A1D-DF7C-437A-BBC3-578F0D0C5719}D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe] => (Allow) D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe => Ningún archivo
FirewallRules: [UDP Query User{813F353C-F126-4069-9392-999C127921DA}D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe] => (Allow) D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe => Ningún archivo
FirewallRules: [TCP Query User{8195AC5A-C574-4210-B47B-34045D25F06B}C:\program files\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_261\bin\javaw.exe
FirewallRules: [UDP Query User{CB9148E2-9CD1-468A-9D21-827AA97A79ED}C:\program files\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_261\bin\javaw.exe
FirewallRules: [{CD70CBC1-BE73-4745-82EB-78473CD31953}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7C81400F-3DB6-4D17-AA30-2F0EC0F7D8D2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D9DB0B1A-F873-47A5-9F0E-161B9F90BE6A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{093EAF2E-18C8-4BA0-B8EC-535F9493ABE8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F532DB19-2B2E-4BA0-951A-F65D5556CFC6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{7F40463A-72D3-41F1-8717-7F90CBD2DA8F}C:\program files\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_261\bin\javaw.exe
FirewallRules: [UDP Query User{F55434D0-5655-4484-8E45-EFEEBE9720BF}C:\program files\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_261\bin\javaw.exe
FirewallRules: [TCP Query User{41D7E904-F1C1-4924-B12F-687A1FDD9071}D:\games\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\games\microsoft flight simulator 2020\flightsimulator.exe => Ningún archivo
FirewallRules: [UDP Query User{13B23615-3893-4893-AB43-9DB190476EA5}D:\games\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\games\microsoft flight simulator 2020\flightsimulator.exe => Ningún archivo
FirewallRules: [TCP Query User{BFD05691-D562-4F5D-9592-07C2FDB5DB48}D:\games\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\games\microsoft flight simulator 2020\flightsimulator.exe => Ningún archivo
FirewallRules: [UDP Query User{3C7CF76F-84F2-408A-B34F-AE4D58F4B7CE}D:\games\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\games\microsoft flight simulator 2020\flightsimulator.exe => Ningún archivo
FirewallRules: [{8D1AE0EA-053A-48FD-B42C-E2C5414D3561}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{C0D2B734-DF7C-4593-B00C-CD7618A82D42}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{47AE5B1D-45B4-4BC7-8242-C1A6B0073690}] => (Allow) C:\Program Files (x86)\PHDGuiding2\phd2.exe () [Archivo no firmado]
FirewallRules: [{70A9EE6E-A11E-4419-A26F-199813B007FE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{0ED2BC1D-7B00-4495-82C8-10D74E6A8053}] => (Allow) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{57C551AA-2B57-48D3-94AF-CDE0E6805CF1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8B0C8545-7E6D-4B79-A1EE-8E9024F083B1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{70A3F7B1-D70D-4D26-94D1-9D739F3745E5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F604B9D3-CB25-4D7C-880E-21464B670DDB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{27F80D4D-6AE0-4933-95C8-A8A88AD30B0E}D:\games\volcanoids\volcanoids.exe] => (Allow) D:\games\volcanoids\volcanoids.exe => Ningún archivo
FirewallRules: [UDP Query User{325CF2DA-DF8D-4D12-92E4-E724DE16E779}D:\games\volcanoids\volcanoids.exe] => (Allow) D:\games\volcanoids\volcanoids.exe => Ningún archivo

==================== Puntos de Restauración =========================

09-09-2020 15:51:03 Installed Agisoft Metashape Professional
13-09-2020 01:22:27 Instalador de Módulos de Windows
13-09-2020 01:32:32 Instalador de Módulos de Windows
13-09-2020 01:34:23 Instalador de Módulos de Windows

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (09/15/2020 12:35:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SpaceEngine.exe, versión: 0.990.41.1824, marca de tiempo: 0x5f21f10e
Nombre del módulo con errores: ntdll.dll, versión: 10.0.19041.488, marca de tiempo: 0x70e69bad
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000045e16
Identificador del proceso con errores: 0x2be4
Hora de inicio de la aplicación con errores: 0x01d68adece0384e9
Ruta de acceso de la aplicación con errores: D:\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: bd9b141a-01e9-44ae-8cf6-9dc41df64b5f
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:

Error: (09/14/2020 11:59:13 PM) (Source: Software Protection Platform Service) (EventID: 1017) (User: )
Description: Error al instalar la prueba de compra. 0xC004E016
Pkey parcial=MDTBG
ACID=?
Error detallado[?]

Error: (09/14/2020 03:33:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: FactoryGame-Win64-Shipping.exe, versión: 4.22.3.0, marca de tiempo: 0x5ef21b52
Nombre del módulo con errores: ntdll.dll, versión: 10.0.19041.488, marca de tiempo: 0x70e69bad
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000045e16
Identificador del proceso con errores: 0x31a4
Hora de inicio de la aplicación con errores: 0x01d68a9b8831ece3
Ruta de acceso de la aplicación con errores: D:\Games\Satisfactory\FactoryGame\Binaries\Win64\FactoryGame-Win64-Shipping.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: aa4982f2-533b-4063-aa54-224634b09591
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:

Error: (09/14/2020 02:55:52 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SpaceEngine.exe, versión: 0.990.41.1824, marca de tiempo: 0x5f21f10e
Nombre del módulo con errores: ntdll.dll, versión: 10.0.19041.488, marca de tiempo: 0x70e69bad
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000045e16
Identificador del proceso con errores: 0x1e0c
Hora de inicio de la aplicación con errores: 0x01d68a272795756f
Ruta de acceso de la aplicación con errores: D:\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: 12b52e79-f4e9-4092-8561-3609894363af
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:

Error: (09/13/2020 10:41:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SpaceEngine.exe, versión: 0.990.41.1824, marca de tiempo: 0x5f21f10e
Nombre del módulo con errores: ntdll.dll, versión: 10.0.19041.488, marca de tiempo: 0x70e69bad
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000045e16
Identificador del proceso con errores: 0x3614
Hora de inicio de la aplicación con errores: 0x01d68a0d6e4c94e1
Ruta de acceso de la aplicación con errores: D:\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: 91770ae6-269e-46af-925f-1cfd843c4be2
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:

Error: (09/13/2020 10:33:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SpaceEngine.exe, versión: 0.990.41.1824, marca de tiempo: 0x5f21f10e
Nombre del módulo con errores: ntdll.dll, versión: 10.0.19041.488, marca de tiempo: 0x70e69bad
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000045e16
Identificador del proceso con errores: 0x31f0
Hora de inicio de la aplicación con errores: 0x01d68a05df495ddb
Ruta de acceso de la aplicación con errores: D:\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: 45ad7a4f-2c66-4f1a-8514-089ee303c543
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:

Error: (09/13/2020 09:04:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SpaceEngine.exe, versión: 0.990.41.1824, marca de tiempo: 0x5f21f10e
Nombre del módulo con errores: ntdll.dll, versión: 10.0.19041.488, marca de tiempo: 0x70e69bad
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000045e16
Identificador del proceso con errores: 0x36e8
Hora de inicio de la aplicación con errores: 0x01d689f860b37cee
Ruta de acceso de la aplicación con errores: D:\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: 54456a10-94be-4b01-8ddd-238abc56462f
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:

Error: (09/13/2020 03:09:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: SpaceEngine.exe, versión: 0.990.41.1824, marca de tiempo: 0x5f21f10e
Nombre del módulo con errores: ntdll.dll, versión: 10.0.19041.488, marca de tiempo: 0x70e69bad
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000000000045e16
Identificador del proceso con errores: 0x9b8
Hora de inicio de la aplicación con errores: 0x01d6896a1ac4d654
Ruta de acceso de la aplicación con errores: D:\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: 2f4d48a0-04c6-418e-bb5e-3dbae431dfd7
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:


Errores del sistema:
=============
Error: (09/15/2020 12:57:27 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error:
Se ha bloqueado la descarga de este controlador

Error: (09/15/2020 12:57:27 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Unai\AppData\Local\Temp\ehdrv.sys

Error: (09/15/2020 12:57:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error:
Se ha bloqueado la descarga de este controlador

Error: (09/15/2020 12:57:26 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Unai\AppData\Local\Temp\ehdrv.sys

Error: (09/15/2020 12:57:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error:
Se ha bloqueado la descarga de este controlador

Error: (09/15/2020 12:57:26 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Unai\AppData\Local\Temp\ehdrv.sys

Error: (09/15/2020 12:57:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error:
Se ha bloqueado la descarga de este controlador

Error: (09/15/2020 12:57:26 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Unai\AppData\Local\Temp\ehdrv.sys


Windows Defender:
===================================
Date: 2020-04-03 21:03:34.7180000Z
Description:
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
Nombre: HackTool:MSIL/AutoKMS
Id.: 2147711767
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\KMSELDI.exe; regkey:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1; uninstall:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: P-UNAI\Unai
Nombre de proceso: C:\Windows\explorer.exe
Versión de inteligencia de seguridad: AV: 1.313.696.0, AS: 1.313.696.0, NIS: 1.313.696.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-04-03 21:02:15.7730000Z
Description:
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
Nombre: HackTool:MSIL/AutoKMS
Id.: 2147711767
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\KMSELDI.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: P-UNAI\Unai
Nombre de proceso: C:\Windows\explorer.exe
Versión de inteligencia de seguridad: AV: 1.313.696.0, AS: 1.313.696.0, NIS: 1.313.696.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-04-03 20:55:23.8200000Z
Description:
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
Nombre: HackTool:MSIL/AutoKMS
Id.: 2147711767
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\Service_KMS.exe; process:_pid:4132,ProcessStart:132304130147704242; service:_Service KMSELDI
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Sistema
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files\KMSpico\Service_KMS.exe
Versión de inteligencia de seguridad: AV: 1.313.696.0, AS: 1.313.696.0, NIS: 1.313.696.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-04-03 20:54:48.4150000Z
Description:
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
Nombre: HackTool:Win64/AutoKMS
Id.: 2147723334
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Windows\SECOH-QAD.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: NT AUTHORITY\Servicio de red
Nombre de proceso: C:\Windows\System32\svchost.exe
Versión de inteligencia de seguridad: AV: 1.313.696.0, AS: 1.313.696.0, NIS: 1.313.696.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-04-03 20:53:47.5600000Z
Description:
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
Nombre: HackTool:Win64/AutoKMS
Id.: 2147723334
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Windows\SECOH-QAD.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: NT AUTHORITY\Servicio de red
Nombre de proceso: C:\Windows\System32\svchost.exe
Versión de inteligencia de seguridad: AV: 1.313.696.0, AS: 1.313.696.0, NIS: 1.313.696.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

CodeIntegrity:
===================================

Date: 2020-09-14 14:17:06.8740000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-14 14:17:06.8650000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-14 14:17:06.8530000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-14 14:17:06.8430000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-14 14:17:06.8200000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-14 14:17:04.3020000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-14 14:17:04.2690000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-14 14:17:04.2370000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Información de la memoria ===========================

BIOS: Phoenix Technologies Ltd. V2.18 06/21/2013
Placa base: Acer Aspire V5-571G
Procesador: Intel(R) Core(TM) i5-3337U CPU @ 1.80GHz
Porcentaje de memoria en uso: 65%
RAM física total: 7987.6 MB
RAM física disponible: 2783.84 MB
Virtual total: 15411.6 MB
Virtual disponible: 9224.1 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:232.25 GB) (Free:112.52 GB) NTFS
Drive d: () (Fixed) (Total:464.27 GB) (Free:293.67 GB) NTFS

\\?\Volume{03dabd73-8578-45c2-ba0f-344756d1044e}\ (Recuperación) (Fixed) (Total:0.52 GB) (Free:0.1 GB) NTFS
\\?\Volume{7fe4248a-b7b5-42d8-8f3f-c50fc5210513}\ (Recuperación) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{0a84978b-2aae-4261-b62f-791d83e3eb80}\ () (Fixed) (Total:0.94 GB) (Free:0.44 GB) NTFS
\\?\Volume{17419fab-3592-4980-a779-fbf3bcac8908}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{455f4fb7-20e7-4f44-8cb1-4cca9101628a}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: C6C23B8F)

Partition: GPT.

==========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: EA25150E)

Partition: GPT.

==================== Final de Addition.txt =======================
 

Broni

Posts: 55,589   +494
Please, observe following rules:
  • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
  • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
  • Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
  • Never run more than one scan at a time.
  • Keep updating me regarding your computer behavior, good, or bad.
  • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
  • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
  • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

=======================================

Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2
  • Close all the running programs
  • Double click on downloaded setup.exe file to install the program.
  • Click on Start Scan button.
  • Click on another Start Scan button.
  • Wait until the Status box shows Scan Finished
  • Click on Remove Selected.
  • Wait until the Status box shows Deleting Finished.
  • Click on Report and copy/paste the content of the Notepad into your next reply.
  • RKreport.txt could also be found on your desktop.
  • If more than one log is produced post all logs.
Please download Malwarebytes to your desktop.
  • Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
  • Then click Finish.
  • Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
  • If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
  • When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
  • Restart your computer when prompted to do so.
  • The Scan log is available throughout History ->Application logs. Please post it contents in your next reply.
Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8/10 users right-click and select Run As Administrator
  • The tool will start to update the database if one is required.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Logfile button.
  • A window will open which lists the logs of your scans.
  • Click on the Scan tab.
  • Double-click the most recent scan which will be at the top of the list....the log will appear.
  • Review the results...see note below
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).
  • To open a Cleaning log, launch AdwareClearer, click on the Logfile button, click on the Cleaning tab and double-click the log at the top of the list.
  • Copy and paste the contents of AdwCleaner[CX].txt in your next reply.
  • A copy of all logfiles are saved to C:\AdwCleaner.
-- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name or entry that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on and uncheck any items you want to keep.
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #7
RogueKiller Anti-Malware V14.7.3.0 (x64) [Sep 15 2020] (Free) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 10 (10.0.19041) 64 bits
Started in : Normal mode
User : Unai [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20200914_100019, Driver : Loaded
Mode : Standard Scan, Delete -- Date : 2020/09/15 15:31:03 (Duration : 00:12:59)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Delete ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
[PUP.Gen1 (Potentially Malicious)] HKEY_USERS\S-1-5-21-2954361111-2295329619-4222815306-1001\Software\Microsoft\Windows\CurrentVersion\Run|AceStream -- [%_Unai_appdata%\ACEStream\engine\ace_engine.exe] -> Deleted
[Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{518731B2-ECB4-4D1B-A9CA-AF71186E0084}C:\users\unai\appdata\local\programs\blockbench\blockbench.exe -- [%localappdata%\programs\blockbench\blockbench.exe] -> Deleted
[Suspicious.Path (Potentially Malicious)] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{BCC87B00-35A3-4623-813B-E53ADCBFC2CD}C:\users\unai\appdata\local\programs\blockbench\blockbench.exe -- [%localappdata%\programs\blockbench\blockbench.exe] -> Deleted
[PUP.HackTool (Potentially Malicious)] SECOH-QAD.exe -- %SystemRoot%\SECOH-QAD.exe -> Deleted
[PUP.HackTool (Potentially Malicious)] SECOH-QAD.dll -- %SystemRoot%\SECOH-QAD.dll -> Deleted
[PUP.HackTool (Potentially Malicious)] KMSpico -- %programdata%\Microsoft\Windows\Start Menu\Programs\KMSpico -> Deleted
=> Log KMSpico.lnk -- C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\KMSpico\LOGKMS~1.LNK -> Deleted
=> Uninstall KMSpico.lnk -- C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\KMSpico\UNINST~1.LNK -> Deleted
[PUP.HackTool (Potentially Malicious)] KMSpico -- %ProgramFiles%\KMSpico -> Deleted
=> AccessVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Access\ACCESS~1.REG -> Deleted
=> AccessVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Access\ACCESS~2.REG -> Deleted
=> AccessVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Access\ACCESS~3.REG -> Deleted
=> Access_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Access\ACCESS~1.XRM -> Deleted
=> Access_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Access\ACCESS~2.XRM -> Deleted
=> Access_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Access\ACCESS~3.XRM -> Deleted
=> Access_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Access\ACCESS~4.XRM -> Deleted
=> Access_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Access\ACFE37~1.XRM -> Deleted
=> Access -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Access -> Deleted
=> ExcelVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Excel\EXCELV~1.REG -> Deleted
=> ExcelVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Excel\EXCELV~2.REG -> Deleted
=> ExcelVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Excel\EXCELV~3.REG -> Deleted
=> Excel_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Excel\EXCEL_~1.XRM -> Deleted
=> Excel_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Excel\EXCEL_~2.XRM -> Deleted
=> Excel_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Excel\EXCEL_~3.XRM -> Deleted
=> Excel_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Excel\EXCEL_~4.XRM -> Deleted
=> Excel_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Excel\EX2451~1.XRM -> Deleted
=> Excel -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Excel -> Deleted
=> GrooveVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Groove\GROOVE~1.REG -> Deleted
=> GrooveVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Groove\GROOVE~2.REG -> Deleted
=> GrooveVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Groove\GROOVE~3.REG -> Deleted
=> Groove_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Groove\GROOVE~1.XRM -> Deleted
=> Groove_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Groove\GROOVE~2.XRM -> Deleted
=> Groove_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Groove\GROOVE~3.XRM -> Deleted
=> Groove_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Groove\GROOVE~4.XRM -> Deleted
=> Groove_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Groove\GR6021~1.XRM -> Deleted
=> Groove -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Groove -> Deleted
=> InfoPathVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\InfoPath\INFOPA~1.REG -> Deleted
=> InfoPathVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\InfoPath\INFOPA~2.REG -> Deleted
=> InfoPathVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\InfoPath\INFOPA~3.REG -> Deleted
=> InfoPath_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\InfoPath\INFOPA~1.XRM -> Deleted
=> InfoPath_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\InfoPath\INFOPA~2.XRM -> Deleted
=> InfoPath_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\InfoPath\INFOPA~3.XRM -> Deleted
=> InfoPath_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\InfoPath\INFOPA~4.XRM -> Deleted
=> InfoPath_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\InfoPath\IN1165~1.XRM -> Deleted
=> InfoPath -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\InfoPath -> Deleted
=> OneNoteVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\OneNote\ONENOT~1.REG -> Deleted
=> OneNoteVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\OneNote\ONENOT~2.REG -> Deleted
=> OneNoteVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\OneNote\ONENOT~3.REG -> Deleted
=> OneNote_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\OneNote\ONENOT~1.XRM -> Deleted
=> OneNote_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\OneNote\ONENOT~2.XRM -> Deleted
=> OneNote_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\OneNote\ONENOT~3.XRM -> Deleted
=> OneNote_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\OneNote\ONENOT~4.XRM -> Deleted
=> OneNote_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\OneNote\ON1933~1.XRM -> Deleted
=> OneNote -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\OneNote -> Deleted
=> OutlookVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Outlook\OUTLOO~1.REG -> Deleted
=> OutlookVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Outlook\OUTLOO~2.REG -> Deleted
=> OutlookVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Outlook\OUTLOO~3.REG -> Deleted
=> Outlook_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Outlook\OUTLOO~1.XRM -> Deleted
=> Outlook_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Outlook\OUTLOO~2.XRM -> Deleted
=> Outlook_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Outlook\OUTLOO~3.XRM -> Deleted
=> Outlook_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Outlook\OUTLOO~4.XRM -> Deleted
=> Outlook_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Outlook\OU2A27~1.XRM -> Deleted
=> Outlook -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Outlook -> Deleted
=> PowerPointVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\POWERP~1\POWERP~1.REG -> Deleted
=> PowerPointVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\POWERP~1\POWERP~2.REG -> Deleted
=> PowerPointVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\POWERP~1\POWERP~3.REG -> Deleted
=> PowerPoint_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\POWERP~1\POWERP~1.XRM -> Deleted
=> PowerPoint_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\POWERP~1\POWERP~2.XRM -> Deleted
=> PowerPoint_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\POWERP~1\POWERP~3.XRM -> Deleted
=> PowerPoint_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\POWERP~1\POWERP~4.XRM -> Deleted
=> PowerPoint_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\POWERP~1\POC4CE~1.XRM -> Deleted
=> PowerPoint -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\POWERP~1 -> Deleted
=> ProjectProVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~1\PROJEC~1.REG -> Deleted
=> ProjectProVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~1\PROJEC~2.REG -> Deleted
=> ProjectProVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~1\PROJEC~3.REG -> Deleted
=> ProjectPro_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~1\PROJEC~1.XRM -> Deleted
=> ProjectPro_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~1\PROJEC~2.XRM -> Deleted
=> ProjectPro_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~1\PROJEC~3.XRM -> Deleted
=> ProjectPro_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~1\PROJEC~4.XRM -> Deleted
=> ProjectPro_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~1\PRA5D8~1.XRM -> Deleted
=> ProjectPro -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~1 -> Deleted
=> ProjectStdVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~2\PROJEC~1.REG -> Deleted
=> ProjectStdVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~2\PROJEC~2.REG -> Deleted
=> ProjectStdVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~2\PROJEC~3.REG -> Deleted
=> ProjectStd_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~2\PROJEC~1.XRM -> Deleted
=> ProjectStd_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~2\PROJEC~2.XRM -> Deleted
=> ProjectStd_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~2\PROJEC~3.XRM -> Deleted
=> ProjectStd_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~2\PROJEC~4.XRM -> Deleted
=> ProjectStd_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~2\PRAB27~1.XRM -> Deleted
=> ProjectStd -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PROJEC~2 -> Deleted
=> ProPlusVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\ProPlus\PROPLU~1.REG -> Deleted
=> ProPlusVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\ProPlus\PROPLU~2.REG -> Deleted
=> ProPlusVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\ProPlus\PROPLU~3.REG -> Deleted
=> ProPlus_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\ProPlus\PROPLU~1.XRM -> Deleted
=> ProPlus_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\ProPlus\PROPLU~2.XRM -> Deleted
=> ProPlus_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\ProPlus\PROPLU~3.XRM -> Deleted
=> ProPlus_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\ProPlus\PROPLU~4.XRM -> Deleted
=> ProPlus_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\ProPlus\PRC183~1.XRM -> Deleted
=> ProPlus -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\ProPlus -> Deleted
=> PublisherVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PUBLIS~1\PUBLIS~1.REG -> Deleted
=> PublisherVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PUBLIS~1\PUBLIS~2.REG -> Deleted
=> PublisherVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PUBLIS~1\PUBLIS~3.REG -> Deleted
=> Publisher_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PUBLIS~1\PUBLIS~1.XRM -> Deleted
=> Publisher_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PUBLIS~1\PUBLIS~2.XRM -> Deleted
=> Publisher_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PUBLIS~1\PUBLIS~3.XRM -> Deleted
=> Publisher_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PUBLIS~1\PUBLIS~4.XRM -> Deleted
=> Publisher_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PUBLIS~1\PUF56D~1.XRM -> Deleted
=> Publisher -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\PUBLIS~1 -> Deleted
=> SmallBusBasicsVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\SMALLB~1\SMALLB~1.REG -> Deleted
=> SmallBusBasicsVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\SMALLB~1\SMALLB~2.REG -> Deleted
=> SmallBusBasicsVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\SMALLB~1\SMALLB~3.REG -> Deleted
=> SmallBusBasics_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\SMALLB~1\SMALLB~1.XRM -> Deleted
=> SmallBusBasics_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\SMALLB~1\SMALLB~2.XRM -> Deleted
=> SmallBusBasics_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\SMALLB~1\SMALLB~3.XRM -> Deleted
=> SmallBusBasics_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\SMALLB~1\SMALLB~4.XRM -> Deleted
=> SmallBusBasics_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\SMALLB~1\SMD564~1.XRM -> Deleted
=> SmallBusBasics -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\SMALLB~1 -> Deleted
=> StandardVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Standard\STANDA~1.REG -> Deleted
=> StandardVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Standard\STANDA~2.REG -> Deleted
=> StandardVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Standard\STANDA~3.REG -> Deleted
=> Standard_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Standard\STANDA~1.XRM -> Deleted
=> Standard_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Standard\STANDA~2.XRM -> Deleted
=> Standard_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Standard\STANDA~3.XRM -> Deleted
=> Standard_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Standard\STANDA~4.XRM -> Deleted
=> Standard_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Standard\STECED~1.XRM -> Deleted
=> Standard -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Standard -> Deleted
=> VisioPrem_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VISIOP~1.XRM -> Deleted
=> VisioPrem_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VISIOP~2.XRM -> Deleted
=> VisioPrem_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VISIOP~3.XRM -> Deleted
=> VisioPrem_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VISIOP~4.XRM -> Deleted
=> VisioPrem_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VI096A~1.XRM -> Deleted
=> VisioPro_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VI36AB~1.XRM -> Deleted
=> VisioPro_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VI26F5~1.XRM -> Deleted
=> VisioPro_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VI5845~1.XRM -> Deleted
=> VisioPro_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VI9B63~1.XRM -> Deleted
=> VisioPro_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VI0942~1.XRM -> Deleted
=> VisioStd_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VISIOS~1.XRM -> Deleted
=> VisioStd_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VISIOS~2.XRM -> Deleted
=> VisioStd_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VISIOS~3.XRM -> Deleted
=> VisioStd_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VISIOS~4.XRM -> Deleted
=> VisioStd_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VI9B28~1.XRM -> Deleted
=> VisioVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VISIOV~1.REG -> Deleted
=> VisioVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VISIOV~2.REG -> Deleted
=> VisioVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio\VISIOV~3.REG -> Deleted
=> Visio -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Visio -> Deleted
=> WordVLReg32.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Word\WORDVL~1.REG -> Deleted
=> WordVLReg64.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Word\WORDVL~2.REG -> Deleted
=> WordVLRegWOW.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Word\WORDVL~3.REG -> Deleted
=> Word_KMS_Client.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Word\WORD_K~1.XRM -> Deleted
=> Word_KMS_Client.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Word\WORD_K~2.XRM -> Deleted
=> Word_KMS_Client.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Word\WORD_K~3.XRM -> Deleted
=> Word_KMS_Client.RAC_Priv.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Word\WORD_K~4.XRM -> Deleted
=> Word_KMS_Client.RAC_Pub.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Word\WO0FDB~1.XRM -> Deleted
=> Word -- C:\PROGRA~1\KMSpico\cert\KMSCER~1\Word -> Deleted
=> kmscert2010 -- C:\PROGRA~1\KMSpico\cert\KMSCER~1 -> Deleted
=> AccessVL_KMS_Client_OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Access\ACCESS~1.XRM -> Deleted
=> AccessVL_KMS_Client_PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Access\ACCESS~2.XRM -> Deleted
=> AccessVL_KMS_Client_PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Access\ACCESS~3.XRM -> Deleted
=> Access -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Access -> Deleted
=> LicenseSetData._F7461D52_7C2B_43B2_8744_EA958E0BD09A.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Excel\LICENS~1.XRM -> Deleted
=> LicenseSetData._F7461D52_7C2B_43B2_8744_EA958E0BD09A.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Excel\LICENS~2.XRM -> Deleted
=> LicenseSetData._F7461D52_7C2B_43B2_8744_EA958E0BD09A.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Excel\LICENS~3.XRM -> Deleted
=> Excel -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Excel -> Deleted
=> LicenseSetData._A30B8040_D68A_423F_B0B5_9CE292EA5A8F.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\InfoPath\LICENS~1.XRM -> Deleted
=> LicenseSetData._A30B8040_D68A_423F_B0B5_9CE292EA5A8F.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\InfoPath\LICENS~2.XRM -> Deleted
=> LicenseSetData._A30B8040_D68A_423F_B0B5_9CE292EA5A8F.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\InfoPath\LICENS~3.XRM -> Deleted
=> InfoPath -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\InfoPath -> Deleted
=> Licenses.sl.ISSUANCE.CLIENT_BRIDGE_OFFICE.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\LICENS~1.XRM -> Deleted
=> Licenses.sl.ISSUANCE.CLIENT_ROOT.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\LICENS~2.XRM -> Deleted
=> Licenses.sl.ISSUANCE.CLIENT_ROOT_BRIDGE_TEST.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\LICENS~3.XRM -> Deleted
=> Licenses.sl.ISSUANCE.CLIENT_STIL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\LICENS~4.XRM -> Deleted
=> Licenses.sl.ISSUANCE.CLIENT_UL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\LIEC81~1.XRM -> Deleted
=> Licenses.sl.ISSUANCE.CLIENT_UL_OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\LIE91A~1.XRM -> Deleted
=> LicenseSetData._1B9F11E3_C85C_4E1B_BB29_879AD2C909E3.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Lync\LICENS~1.XRM -> Deleted
=> LicenseSetData._1B9F11E3_C85C_4E1B_BB29_879AD2C909E3.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Lync\LICENS~2.XRM -> Deleted
=> LicenseSetData._1B9F11E3_C85C_4E1B_BB29_879AD2C909E3.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Lync\LICENS~3.XRM -> Deleted
=> Lync -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Lync -> Deleted
=> LicenseSetData._EFE1F3E6_AEA2_4144_A208_32AA872B6545.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\OneNote\LICENS~1.XRM -> Deleted
=> LicenseSetData._EFE1F3E6_AEA2_4144_A208_32AA872B6545.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\OneNote\LICENS~2.XRM -> Deleted
=> LicenseSetData._EFE1F3E6_AEA2_4144_A208_32AA872B6545.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\OneNote\LICENS~3.XRM -> Deleted
=> OneNote -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\OneNote -> Deleted
=> LicenseSetData._771C3AFA_50C5_443F_B151_FF2546D863A0.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Outlook\LICENS~1.XRM -> Deleted
=> LicenseSetData._771C3AFA_50C5_443F_B151_FF2546D863A0.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Outlook\LICENS~2.XRM -> Deleted
=> LicenseSetData._771C3AFA_50C5_443F_B151_FF2546D863A0.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Outlook\LICENS~3.XRM -> Deleted
=> Outlook -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Outlook -> Deleted
=> pkeyconfig-office.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\PKEYCO~1.XRM -> Deleted
=> LicenseSetData._8C762649_97D1_4953_AD27_B7E2C25B972E.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\POWERP~1\LICENS~1.XRM -> Deleted
=> LicenseSetData._8C762649_97D1_4953_AD27_B7E2C25B972E.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\POWERP~1\LICENS~2.XRM -> Deleted
=> LicenseSetData._8C762649_97D1_4953_AD27_B7E2C25B972E.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\POWERP~1\LICENS~3.XRM -> Deleted
=> PowerPoint -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\POWERP~1 -> Deleted
=> LicenseSetData._4A5D124A_E620_44BA_B6FF_658961B33B9A.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\PROJEC~1\LICENS~1.XRM -> Deleted
=> LicenseSetData._4A5D124A_E620_44BA_B6FF_658961B33B9A.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\PROJEC~1\LICENS~2.XRM -> Deleted
=> LicenseSetData._4A5D124A_E620_44BA_B6FF_658961B33B9A.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\PROJEC~1\LICENS~3.XRM -> Deleted
=> ProjectPro -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\PROJEC~1 -> Deleted
=> LicenseSetData._427A28D1_D17C_4ABF_B717_32C780BA6F07.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\PROJEC~2\LICENS~1.XRM -> Deleted
=> LicenseSetData._427A28D1_D17C_4ABF_B717_32C780BA6F07.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\PROJEC~2\LICENS~2.XRM -> Deleted
=> LicenseSetData._427A28D1_D17C_4ABF_B717_32C780BA6F07.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\PROJEC~2\LICENS~3.XRM -> Deleted
=> ProjectStd -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\PROJEC~2 -> Deleted
=> LicenseSetData._B322DA9C_A2E2_4058_9E4E_F59A6970BD69.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\ProPlus\LICENS~1.XRM -> Deleted
=> LicenseSetData._B322DA9C_A2E2_4058_9E4E_F59A6970BD69.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\ProPlus\LICENS~2.XRM -> Deleted
=> LicenseSetData._B322DA9C_A2E2_4058_9E4E_F59A6970BD69.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\ProPlus\LICENS~3.XRM -> Deleted
=> proplus.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\ProPlus\proplus.reg -> Deleted
=> ProPlus -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\ProPlus -> Deleted
=> LicenseSetData._00C79FF1_6850_443D_BF61_71CDE0DE305F.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\PUBLIS~1\LICENS~1.XRM -> Deleted
=> LicenseSetData._00C79FF1_6850_443D_BF61_71CDE0DE305F.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\PUBLIS~1\LICENS~2.XRM -> Deleted
=> LicenseSetData._00C79FF1_6850_443D_BF61_71CDE0DE305F.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\PUBLIS~1\LICENS~3.XRM -> Deleted
=> Publisher -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\PUBLIS~1 -> Deleted
=> LicenseSetData._B13AFB38_CD79_4AE5_9F7F_EED058D750CA.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Standard\LICENS~1.XRM -> Deleted
=> LicenseSetData._B13AFB38_CD79_4AE5_9F7F_EED058D750CA.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Standard\LICENS~2.XRM -> Deleted
=> LicenseSetData._B13AFB38_CD79_4AE5_9F7F_EED058D750CA.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Standard\LICENS~3.XRM -> Deleted
=> Standard -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Standard -> Deleted
=> LicenseSetData._E13AC10E_75D0_4AFF_A0CD_764982CF541C.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\VisioPro\LICENS~1.XRM -> Deleted
=> LicenseSetData._E13AC10E_75D0_4AFF_A0CD_764982CF541C.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\VisioPro\LICENS~2.XRM -> Deleted
=> LicenseSetData._E13AC10E_75D0_4AFF_A0CD_764982CF541C.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\VisioPro\LICENS~3.XRM -> Deleted
=> visio.reg -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\VisioPro\visio.reg -> Deleted
=> VisioPro -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\VisioPro -> Deleted
=> LicenseSetData._AC4EFAF0_F81F_4F61_BDF7_EA32B02AB117.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\VisioStd\LICENS~1.XRM -> Deleted
=> LicenseSetData._AC4EFAF0_F81F_4F61_BDF7_EA32B02AB117.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\VisioStd\LICENS~2.XRM -> Deleted
=> LicenseSetData._AC4EFAF0_F81F_4F61_BDF7_EA32B02AB117.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\VisioStd\LICENS~3.XRM -> Deleted
=> VisioStd -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\VisioStd -> Deleted
=> LicenseSetData._D9F5B1C6_5386_495A_88F9_9AD6B41AC9B3.OOB.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Word\LICENS~1.XRM -> Deleted
=> LicenseSetData._D9F5B1C6_5386_495A_88F9_9AD6B41AC9B3.PL.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Word\LICENS~2.XRM -> Deleted
=> LicenseSetData._D9F5B1C6_5386_495A_88F9_9AD6B41AC9B3.PPDLIC.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Word\LICENS~3.XRM -> Deleted
=> Word -- C:\PROGRA~1\KMSpico\cert\KMSCER~2\Word -> Deleted
=> kmscert2013 -- C:\PROGRA~1\KMSpico\cert\KMSCER~2 -> Deleted
=> AccessVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Access\ACCESS~1.XRM -> Deleted
=> AccessVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Access\ACCESS~2.XRM -> Deleted
=> AccessVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Access\ACCESS~3.XRM -> Deleted
=> Access -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Access -> Deleted
=> client-issuance-bridge-office.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\CLIENT~1.XRM -> Deleted
=> client-issuance-root-bridge-test.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\CLIENT~2.XRM -> Deleted
=> client-issuance-root.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\CLIENT~3.XRM -> Deleted
=> client-issuance-stil.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\CLIENT~4.XRM -> Deleted
=> client-issuance-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\CL0367~1.XRM -> Deleted
=> client-issuance-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\CL38D2~1.XRM -> Deleted
=> ExcelVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Excel\EXCELV~1.XRM -> Deleted
=> ExcelVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Excel\EXCELV~2.XRM -> Deleted
=> ExcelVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Excel\EXCELV~3.XRM -> Deleted
=> Excel -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Excel -> Deleted
=> MondoVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Mondo\MONDOV~1.XRM -> Deleted
=> MondoVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Mondo\MONDOV~2.XRM -> Deleted
=> MondoVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Mondo\MONDOV~3.XRM -> Deleted
=> Mondo -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Mondo -> Deleted
=> OneNoteVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\OneNote\ONENOT~1.XRM -> Deleted
=> OneNoteVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\OneNote\ONENOT~2.XRM -> Deleted
=> OneNoteVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\OneNote\ONENOT~3.XRM -> Deleted
=> OneNote -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\OneNote -> Deleted
=> OutlookVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Outlook\OUTLOO~1.XRM -> Deleted
=> OutlookVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Outlook\OUTLOO~2.XRM -> Deleted
=> OutlookVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Outlook\OUTLOO~3.XRM -> Deleted
=> Outlook -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Outlook -> Deleted
=> pkeyconfig-office.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\PKEYCO~1.XRM -> Deleted
=> PowerPointVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\POWERP~1\POWERP~1.XRM -> Deleted
=> PowerPointVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\POWERP~1\POWERP~2.XRM -> Deleted
=> PowerPointVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\POWERP~1\POWERP~3.XRM -> Deleted
=> PowerPoint -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\POWERP~1 -> Deleted
=> ProjectProVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\PROJEC~1\PROJEC~1.XRM -> Deleted
=> ProjectProVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\PROJEC~1\PROJEC~2.XRM -> Deleted
=> ProjectProVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\PROJEC~1\PROJEC~3.XRM -> Deleted
=> ProjectPro -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\PROJEC~1 -> Deleted
=> ProjectStdVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\PROJEC~2\PROJEC~1.XRM -> Deleted
=> ProjectStdVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\PROJEC~2\PROJEC~2.XRM -> Deleted
=> ProjectStdVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\PROJEC~2\PROJEC~3.XRM -> Deleted
=> ProjectStd -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\PROJEC~2 -> Deleted
=> ProPlusVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\ProPlus\PROPLU~1.XRM -> Deleted
=> ProPlusVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\ProPlus\PROPLU~2.XRM -> Deleted
=> ProPlusVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\ProPlus\PROPLU~3.XRM -> Deleted
=> ProPlus -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\ProPlus -> Deleted
=> PublisherVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\PUBLIS~1\PUBLIS~1.XRM -> Deleted
=> PublisherVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\PUBLIS~1\PUBLIS~2.XRM -> Deleted
=> PublisherVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\PUBLIS~1\PUBLIS~3.XRM -> Deleted
=> Publisher -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\PUBLIS~1 -> Deleted
=> SkypeforBusinessVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\SKYPEF~1\SKYPEF~1.XRM -> Deleted
=> SkypeforBusinessVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\SKYPEF~1\SKYPEF~2.XRM -> Deleted
=> SkypeforBusinessVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\SKYPEF~1\SKYPEF~3.XRM -> Deleted
=> SkypeforBusiness -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\SKYPEF~1 -> Deleted
=> StandardVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Standard\STANDA~1.XRM -> Deleted
=> StandardVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Standard\STANDA~2.XRM -> Deleted
=> StandardVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Standard\STANDA~3.XRM -> Deleted
=> Standard -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Standard -> Deleted
=> VisioProVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\VisioPro\VISIOP~1.XRM -> Deleted
=> VisioProVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\VisioPro\VISIOP~2.XRM -> Deleted
=> VisioProVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\VisioPro\VISIOP~3.XRM -> Deleted
=> VisioPro -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\VisioPro -> Deleted
=> VisioStdVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\VisioStd\VISIOS~1.XRM -> Deleted
=> VisioStdVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\VisioStd\VISIOS~2.XRM -> Deleted
=> VisioStdVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\VisioStd\VISIOS~3.XRM -> Deleted
=> VisioStd -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\VisioStd -> Deleted
=> WordVL_KMS_Client-ppd.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Word\WORDVL~1.XRM -> Deleted
=> WordVL_KMS_Client-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Word\WORDVL~2.XRM -> Deleted
=> WordVL_KMS_Client-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Word\WORDVL~3.XRM -> Deleted
=> Word -- C:\PROGRA~1\KMSpico\cert\KMSCER~3\Word -> Deleted
=> kmscert2016 -- C:\PROGRA~1\KMSpico\cert\KMSCER~3 -> Deleted
=> Core-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\Core\CORE-V~1.XRM -> Deleted
=> Core-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\Core\CORE-V~2.XRM -> Deleted
=> Core -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\Core -> Deleted
=> Education-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\EDUCAT~1\EDUCAT~1.XRM -> Deleted
=> Education-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\EDUCAT~1\EDUCAT~2.XRM -> Deleted
=> Education -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\EDUCAT~1 -> Deleted
=> Enterprise-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\ENTERP~1\ENTERP~1.XRM -> Deleted
=> Enterprise-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\ENTERP~1\ENTERP~2.XRM -> Deleted
=> Enterprise -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\ENTERP~1 -> Deleted
=> EnterpriseS-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\ENTERP~2\ENTERP~1.XRM -> Deleted
=> EnterpriseS-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\ENTERP~2\ENTERP~2.XRM -> Deleted
=> EnterpriseS-Volume-GVLK-2-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\ENTERP~2\ENTERP~3.XRM -> Deleted
=> EnterpriseS-Volume-GVLK-2-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\ENTERP~2\ENTERP~4.XRM -> Deleted
=> EnterpriseS -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\ENTERP~2 -> Deleted
=> pkeyconfig.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\PKEYCO~1.XRM -> Deleted
=> Professional-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\PROFES~1\PROFES~1.XRM -> Deleted
=> Professional-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\PROFES~1\PROFES~2.XRM -> Deleted
=> Professional -- C:\PROGRA~1\KMSpico\cert\KMSCER~4\PROFES~1 -> Deleted
=> kmscertW10 -- C:\PROGRA~1\KMSpico\cert\KMSCER~4 -> Deleted
=> Security-Licensing-SLC-Component-SKU-Business-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\Business\SECURI~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Business-ul-phn.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\Business\SECURI~2.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Business-VL-BYPASS-RAC-private.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\Business\SECURI~3.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Business-VL-BYPASS-RAC-public.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\Business\SECURI~4.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Business-VL-BYPASS-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\Business\SE976B~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Business-VL-BYPASS-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\Business\SECC29~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Business-VL-KMS-pl.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\Business\SE6979~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Business-VL-KMS-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\Business\SE066B~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Business-VL-KMS-ul-phn.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\Business\SEBBA9~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Business-VL-KMS1-pl.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\Business\SE90FE~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Business-VL-KMS1-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\Business\SE6745~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Business-VL-KMS1-ul-phn.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\Business\SEA5CF~1.XRM -> Deleted
=> Business -- C:\PROGRA~1\KMSpico\cert\KM2891~1\Business -> Deleted
=> Security-Licensing-SLC-Component-SKU-BusinessN-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\BUSINE~1\SECURI~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-BusinessN-ul-phn.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\BUSINE~1\SECURI~2.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-BusinessN-VL-BYPASS-RAC-private.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\BUSINE~1\SECURI~3.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-BusinessN-VL-BYPASS-RAC-public.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\BUSINE~1\SECURI~4.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-BusinessN-VL-BYPASS-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\BUSINE~1\SE6BF4~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-BusinessN-VL-BYPASS-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\BUSINE~1\SE63F2~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-BusinessN-VL-KMS-pl.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\BUSINE~1\SE7CA8~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-BusinessN-VL-KMS-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\BUSINE~1\SE4E05~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-BusinessN-VL-KMS-ul-phn.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\BUSINE~1\SECEFF~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-BusinessN-VL-KMS1-pl.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\BUSINE~1\SE38F7~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-BusinessN-VL-KMS1-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\BUSINE~1\SE2A4A~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-BusinessN-VL-KMS1-ul-phn.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\BUSINE~1\SEE8D1~1.XRM -> Deleted
=> BusinessN -- C:\PROGRA~1\KMSpico\cert\KM2891~1\BUSINE~1 -> Deleted
=> Security-Licensing-SLC-Component-SKU-Enterprise-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\ENTERP~1\SECURI~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Enterprise-ul-phn.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\ENTERP~1\SECURI~2.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Enterprise-VL-BYPASS-RAC-private.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\ENTERP~1\SECURI~3.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Enterprise-VL-BYPASS-RAC-public.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\ENTERP~1\SECURI~4.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Enterprise-VL-BYPASS-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\ENTERP~1\SE7400~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Enterprise-VL-BYPASS-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\ENTERP~1\SE4689~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Enterprise-VL-KMS-pl.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\ENTERP~1\SE93CC~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Enterprise-VL-KMS-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\ENTERP~1\SE3572~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Enterprise-VL-KMS-ul-phn.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\ENTERP~1\SE836D~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Enterprise-VL-KMS1-pl.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\ENTERP~1\SE3F7F~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Enterprise-VL-KMS1-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\ENTERP~1\SE2A43~1.XRM -> Deleted
=> Security-Licensing-SLC-Component-SKU-Enterprise-VL-KMS1-ul-phn.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\ENTERP~1\SE783E~1.XRM -> Deleted
=> Enterprise -- C:\PROGRA~1\KMSpico\cert\KM2891~1\ENTERP~1 -> Deleted
=> pkeyconfig.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM2891~1\PKEYCO~1.XRM -> Deleted
=> kmscertW6 -- C:\PROGRA~1\KMSpico\cert\KM2891~1 -> Deleted
=> pkeyconfig-embedded.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\Embedded\PKEYCO~1.XRM -> Deleted
=> Security-SPP-Component-SKU-Embedded-pl.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\Embedded\SECURI~1.XRM -> Deleted
=> Security-SPP-Component-SKU-Embedded-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\Embedded\SECURI~2.XRM -> Deleted
=> Security-SPP-Component-SKU-Embedded-ul-phn.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\Embedded\SECURI~3.XRM -> Deleted
=> Security-SPP-Component-SKU-Embedded-VLBA-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\Embedded\SECURI~4.XRM -> Deleted
=> Security-SPP-Component-SKU-Embedded-VLBA-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\Embedded\SE7FF2~1.XRM -> Deleted
=> Embedded -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\Embedded -> Deleted
=> Enterprise -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\ENTERP~1 -> Deleted
=> pkeyconfig.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\PROFES~1\PKEYCO~1.XRM -> Deleted
=> Security-SPP-Component-SKU-Professional-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\PROFES~1\SECURI~1.XRM -> Deleted
=> Security-SPP-Component-SKU-Professional-ul-phn.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\PROFES~1\SECURI~2.XRM -> Deleted
=> Security-SPP-Component-SKU-Professional-VL-BYPASS-RAC-private.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\PROFES~1\SECURI~3.XRM -> Deleted
=> Security-SPP-Component-SKU-Professional-VL-BYPASS-RAC-public.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\PROFES~1\SECURI~4.XRM -> Deleted
=> Security-SPP-Component-SKU-Professional-VL-BYPASS-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\PROFES~1\SE1EF9~1.XRM -> Deleted
=> Security-SPP-Component-SKU-Professional-VL-BYPASS-ul.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\PROFES~1\SE5BB6~1.XRM -> Deleted
=> Security-SPP-Component-SKU-Professional-VLKMS1-pl.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\PROFES~1\SEDE7A~1.XRM -> Deleted
=> Security-SPP-Component-SKU-Professional-VLKMS1-ul-oob.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\PROFES~1\SE2B57~1.XRM -> Deleted
=> Security-SPP-Component-SKU-Professional-VLKMS1-ul-phn.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\PROFES~1\SE525A~1.XRM -> Deleted
=> Professional -- C:\PROGRA~1\KMSpico\cert\KM72AC~1\PROFES~1 -> Deleted
=> kmscertW7 -- C:\PROGRA~1\KMSpico\cert\KM72AC~1 -> Deleted
=> Core-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\Core\CORE-V~1.XRM -> Deleted
=> Core-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\Core\CORE-V~2.XRM -> Deleted
=> Core -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\Core -> Deleted
=> CoreN-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\CoreN\COREN-~1.XRM -> Deleted
=> CoreN-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\CoreN\COREN-~2.XRM -> Deleted
=> CoreN -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\CoreN -> Deleted
=> CoreSingleLanguage-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\CORESI~1\CORESI~1.XRM -> Deleted
=> CoreSingleLanguage-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\CORESI~1\CORESI~2.XRM -> Deleted
=> CoreSingleLanguage -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\CORESI~1 -> Deleted
=> Enterprise-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\ENTERP~1\ENTERP~1.XRM -> Deleted
=> Enterprise-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\ENTERP~1\ENTERP~2.XRM -> Deleted
=> Enterprise -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\ENTERP~1 -> Deleted
=> EnterpriseN-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\ENTERP~2\ENTERP~1.XRM -> Deleted
=> EnterpriseN-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\ENTERP~2\ENTERP~2.XRM -> Deleted
=> EnterpriseN -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\ENTERP~2 -> Deleted
=> pkeyconfig.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\PKEYCO~1.XRM -> Deleted
=> Professional-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\PROFES~1\PROFES~1.XRM -> Deleted
=> Professional-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\PROFES~1\PROFES~2.XRM -> Deleted
=> Professional -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\PROFES~1 -> Deleted
=> ProfessionalN-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\PROFES~2\PROFES~1.XRM -> Deleted
=> ProfessionalN-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\PROFES~2\PROFES~2.XRM -> Deleted
=> ProfessionalN -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\PROFES~2 -> Deleted
=> ProfessionalWMC-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\PROFES~3\PROFES~1.XRM -> Deleted
=> ProfessionalWMC-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\PROFES~3\PROFES~2.XRM -> Deleted
=> ProfessionalWMC -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1\PROFES~3 -> Deleted
=> kmscertW8 -- C:\PROGRA~1\KMSpico\cert\KM5C0B~1 -> Deleted
=> Core-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\Core\CORE-V~1.XRM -> Deleted
=> Core-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\Core\CORE-V~2.XRM -> Deleted
=> Core -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\Core -> Deleted
=> CoreConnectedSingleLanguage-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\CORECO~1\CORECO~1.XRM -> Deleted
=> CoreConnectedSingleLanguage-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\CORECO~1\CORECO~2.XRM -> Deleted
=> CoreConnectedSingleLanguage -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\CORECO~1 -> Deleted
=> EmbeddedIndustry-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\EMBEDD~1\EMBEDD~1.XRM -> Deleted
=> EmbeddedIndustry-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\EMBEDD~1\EMBEDD~2.XRM -> Deleted
=> EmbeddedIndustry -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\EMBEDD~1 -> Deleted
=> Enterprise-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\ENTERP~1\ENTERP~1.XRM -> Deleted
=> Enterprise-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\ENTERP~1\ENTERP~2.XRM -> Deleted
=> Enterprise -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\ENTERP~1 -> Deleted
=> pkeyconfig.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\PKEYCO~1.XRM -> Deleted
=> Professional-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\PROFES~1\PROFES~1.XRM -> Deleted
=> Professional-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\PROFES~1\PROFES~2.XRM -> Deleted
=> Professional -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\PROFES~1 -> Deleted
=> ProfessionalWMC-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\PROFES~2\PROFES~1.XRM -> Deleted
=> ProfessionalWMC-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\PROFES~2\PROFES~2.XRM -> Deleted
=> ProfessionalWMC -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\PROFES~2 -> Deleted
=> ServerDatacenter-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\SERVER~1\SERVER~1.XRM -> Deleted
=> ServerDatacenter-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\SERVER~1\SERVER~2.XRM -> Deleted
=> ServerDatacenter -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\SERVER~1 -> Deleted
=> ServerStandard-Volume-GVLK-1-ul-oob-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\SERVER~2\SERVER~1.XRM -> Deleted
=> ServerStandard-Volume-GVLK-1-ul-rtm.xrm-ms -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\SERVER~2\SERVER~2.XRM -> Deleted
=> ServerStandard -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1\SERVER~2 -> Deleted
=> kmscertW81 -- C:\PROGRA~1\KMSpico\cert\KM8E6A~1 -> Deleted
=> cert -- C:\PROGRA~1\KMSpico\cert -> Deleted
=> DevComponents.DotNetBar2.dll -- C:\PROGRA~1\KMSpico\DEVCOM~1.DLL -> Deleted
=> Cert.cmd -- C:\PROGRA~1\KMSpico\driver\Cert.cmd -> Deleted
=> certELDI.pfx -- C:\PROGRA~1\KMSpico\driver\certELDI.pfx -> Deleted
=> OpenVPN.cer -- C:\PROGRA~1\KMSpico\driver\OpenVPN.cer -> Deleted
=> tap-windows-9.21.0.exe -- C:\PROGRA~1\KMSpico\driver\TAP-WI~1.EXE -> Deleted
=> UnInstallDriver.cmd -- C:\PROGRA~1\KMSpico\driver\UNINST~1.CMD -> Deleted
=> driver -- C:\PROGRA~1\KMSpico\driver -> Deleted
=> Error.png -- C:\PROGRA~1\KMSpico\icons\Error.png -> Deleted
=> Information.png -- C:\PROGRA~1\KMSpico\icons\INFORM~1.PNG -> Deleted
=> Question.png -- C:\PROGRA~1\KMSpico\icons\Question.png -> Deleted
=> Warning.png -- C:\PROGRA~1\KMSpico\icons\Warning.png -> Deleted
=> icons -- C:\PROGRA~1\KMSpico\icons -> Deleted
=> AutoPico.log -- C:\PROGRA~1\KMSpico\logs\AutoPico.log -> Deleted
=> KMSELDI.log -- C:\PROGRA~1\KMSpico\logs\KMSELDI.log -> Deleted
=> Service_KMS.log -- C:\PROGRA~1\KMSpico\logs\SERVIC~1.LOG -> Deleted
=> logs -- C:\PROGRA~1\KMSpico\logs -> Deleted
=> AddExceptions_Defender.cmd -- C:\PROGRA~1\KMSpico\scripts\ADDEXC~1.CMD -> Deleted
=> DisableSmartScreen.reg -- C:\PROGRA~1\KMSpico\scripts\DISABL~1.REG -> Deleted
=> EnableSmartScreen.cmd -- C:\PROGRA~1\KMSpico\scripts\ENABLE~1.CMD -> Deleted
=> EnableSmartScreen.reg -- C:\PROGRA~1\KMSpico\scripts\ENABLE~1.REG -> Deleted
=> Log.cmd -- C:\PROGRA~1\KMSpico\scripts\Log.cmd -> Deleted
=> RemoveExceptionsWD.reg -- C:\PROGRA~1\KMSpico\scripts\REMOVE~1.REG -> Deleted
=> Restore_Watermark.cmd -- C:\PROGRA~1\KMSpico\scripts\RESTOR~1.CMD -> Deleted
=> UnInstall_Service.cmd -- C:\PROGRA~1\KMSpico\scripts\UNINST~1.CMD -> Deleted
=> scripts -- C:\PROGRA~1\KMSpico\scripts -> Deleted
=> affirmative.mp3 -- C:\PROGRA~1\KMSpico\sounds\AFFIRM~1.MP3 -> Deleted
=> begin.mp3 -- C:\PROGRA~1\KMSpico\sounds\begin.mp3 -> Deleted
=> complete.mp3 -- C:\PROGRA~1\KMSpico\sounds\complete.mp3 -> Deleted
=> diagnostic.mp3 -- C:\PROGRA~1\KMSpico\sounds\DIAGNO~1.MP3 -> Deleted
=> enterauthorizationcode.mp3 -- C:\PROGRA~1\KMSpico\sounds\ENTERA~1.MP3 -> Deleted
=> incomingtransmission.mp3 -- C:\PROGRA~1\KMSpico\sounds\INCOMI~1.MP3 -> Deleted
=> inputfailed.mp3 -- C:\PROGRA~1\KMSpico\sounds\INPUTF~1.MP3 -> Deleted
=> inputok.mp3 -- C:\PROGRA~1\KMSpico\sounds\inputok.mp3 -> Deleted
=> processing.mp3 -- C:\PROGRA~1\KMSpico\sounds\PROCES~1.MP3 -> Deleted
=> transfer.mp3 -- C:\PROGRA~1\KMSpico\sounds\transfer.mp3 -> Deleted
=> verified.mp3 -- C:\PROGRA~1\KMSpico\sounds\verified.mp3 -> Deleted
=> warning.mp3 -- C:\PROGRA~1\KMSpico\sounds\warning.mp3 -> Deleted
=> sounds -- C:\PROGRA~1\KMSpico\sounds -> Deleted
=> Keys.txt -- C:\PROGRA~1\KMSpico\TOKENS~1\Keys.txt -> Deleted
=> cache.dat -- C:\PROGRA~1\KMSpico\TOKENS~1\Windows\cache\cache.dat -> Deleted
=> cache -- C:\PROGRA~1\KMSpico\TOKENS~1\Windows\cache -> Deleted
=> data.dat -- C:\PROGRA~1\KMSpico\TOKENS~1\Windows\data.dat -> Deleted
=> pkeyconfig.xrm-ms -- C:\PROGRA~1\KMSpico\TOKENS~1\Windows\PKEYCO~1.XRM -> Deleted
=> tokens.dat -- C:\PROGRA~1\KMSpico\TOKENS~1\Windows\tokens.dat -> Deleted
=> Windows -- C:\PROGRA~1\KMSpico\TOKENS~1\Windows -> Deleted
=> TokensBackup -- C:\PROGRA~1\KMSpico\TOKENS~1 -> Deleted
=> unins000.dat -- C:\PROGRA~1\KMSpico\unins000.dat -> Deleted
=> unins000.exe -- C:\PROGRA~1\KMSpico\unins000.exe -> Deleted
=> UninsHs.exe -- C:\PROGRA~1\KMSpico\UninsHs.exe -> Deleted
=> Vestris.ResourceLib.dll -- C:\PROGRA~1\KMSpico\VESTRI~1.DLL -> Deleted
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #8
RogueKiller Anti-Malware V14.7.3.0 (x64) [Sep 15 2020] (Free) by Adlice Software
mail : https://adlice.com/contact/
Website : https://adlice.com/download/roguekiller/
Operating System : Windows 10 (10.0.19041) 64 bits
Started in : Normal mode
User : Unai [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Signatures : 20200914_100019, Driver : Loaded
Mode : Standard Scan, Scan -- Date : 2020/09/15 15:16:31 (Duration : 00:12:59)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Process Modules ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Services ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tasks ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
>>>>>> O4 - Run
[PUP.Gen1 (Potentially Malicious)] (X64) HKEY_USERS\S-1-5-21-2954361111-2295329619-4222815306-1001\Software\Microsoft\Windows\CurrentVersion\Run|AceStream -- C:\Users\Unai\AppData\Roaming\ACEStream\engine\ace_engine.exe (missing) -> Found
>>>>>> O87 - Firewall
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{518731B2-ECB4-4D1B-A9CA-AF71186E0084}C:\users\unai\appdata\local\programs\blockbench\blockbench.exe -- v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\users\unai\appdata\local\programs\blockbench\blockbench.exe|Name=blockbench.exe|Desc=blockbench.exe|Defer=User| (C:\users\unai\appdata\local\programs\blockbench\blockbench.exe) (missing) -> Found
[Suspicious.Path (Potentially Malicious)] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{BCC87B00-35A3-4623-813B-E53ADCBFC2CD}C:\users\unai\appdata\local\programs\blockbench\blockbench.exe -- v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\users\unai\appdata\local\programs\blockbench\blockbench.exe|Name=blockbench.exe|Desc=blockbench.exe|Defer=User| (C:\users\unai\appdata\local\programs\blockbench\blockbench.exe) (missing) -> Found

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Hosts File ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Files ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
[PUP.HackTool (Potentially Malicious)] (file) SECOH-QAD.exe -- C:\Windows\SECOH-QAD.exe -> Found
[PUP.HackTool (Potentially Malicious)] (file) SECOH-QAD.dll -- C:\Windows\SECOH-QAD.dll -> Found
[PUP.HackTool (Potentially Malicious)] (folder) KMSpico -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico -> Found
[PUP.HackTool (Potentially Malicious)] (folder) KMSpico -- C:\Program Files\KMSpico -> Found

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Web browsers ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #9
Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 9/15/20
Scan Time: 3:38 PM
Log File: b2dbdcbc-f758-11ea-9d9d-3065ec20c0dc.json

-Software Information-
Version: 4.2.0.82
Components Version: 1.0.1036
Update Package Version: 1.0.29871
License: Trial

-System Information-
OS: Windows 10 (Build 19041.508)
CPU: x64
File System: NTFS
User: P-UNAI\Unai

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 324599
Threats Detected: 15
Threats Quarantined: 15
Time Elapsed: 5 min, 23 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 14
HackTool.KewlButtonz, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{D4BBE4C0-BD72-4A33-817C-2E7E16DE20BC}, Quarantined, 15100, 277570, , , , , ,
HackTool.KewlButtonz, HKLM\SOFTWARE\CLASSES\KewlButtonz.KewlButtons, Quarantined, 15100, 277570, , , , , ,
HackTool.KewlButtonz, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{D4BBE4C0-BD72-4A33-817C-2E7E16DE20BC}, Quarantined, 15100, 277570, , , , , ,
HackTool.KewlButtonz, HKLM\SOFTWARE\CLASSES\TYPELIB\{D18BBD1F-82BB-4385-BED3-E9D31A3E361E}, Quarantined, 15100, 277570, , , , , ,
HackTool.KewlButtonz, HKLM\SOFTWARE\CLASSES\INTERFACE\{9DC243A5-EE33-4674-8563-89B48E779EB1}, Quarantined, 15100, 277570, , , , , ,
HackTool.KewlButtonz, HKLM\SOFTWARE\CLASSES\INTERFACE\{B3D14CB9-183B-4BC8-8CE4-CBA37A6FE8C6}, Quarantined, 15100, 277570, , , , , ,
HackTool.KewlButtonz, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{9DC243A5-EE33-4674-8563-89B48E779EB1}, Quarantined, 15100, 277570, , , , , ,
HackTool.KewlButtonz, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{B3D14CB9-183B-4BC8-8CE4-CBA37A6FE8C6}, Quarantined, 15100, 277570, , , , , ,
HackTool.KewlButtonz, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9DC243A5-EE33-4674-8563-89B48E779EB1}, Quarantined, 15100, 277570, , , , , ,
HackTool.KewlButtonz, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B3D14CB9-183B-4BC8-8CE4-CBA37A6FE8C6}, Quarantined, 15100, 277570, , , , , ,
HackTool.KewlButtonz, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{D18BBD1F-82BB-4385-BED3-E9D31A3E361E}, Quarantined, 15100, 277570, , , , , ,
HackTool.KewlButtonz, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{D18BBD1F-82BB-4385-BED3-E9D31A3E361E}, Quarantined, 15100, 277570, , , , , ,
HackTool.KewlButtonz, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{D4BBE4C0-BD72-4A33-817C-2E7E16DE20BC}\InprocServer32, Quarantined, 15100, 277570, , , , , ,
HackTool.KewlButtonz, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{D4BBE4C0-BD72-4A33-817C-2E7E16DE20BC}\InprocServer32, Quarantined, 15100, 277570, , , , , ,

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 1
HackTool.KewlButtonz, C:\WINDOWS\SYSWOW64\KEWLBUTTONZ.OCX, Quarantined, 15100, 277570, 1.0.29871, F71374E66BC96551F77013D5, dds, 00897882, 535C277BE14253AA0532D4253C1A6D53, 39CCA57E0305589D17B7848F3963BD1FFBF8447A2652BBE913E28C6822FB3F6D

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #10
# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-07-20.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-15-2020
# Duration: 00:00:04
# OS: Windows 10 Home
# Cleaned: 2
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\Unai\AppData\Roaming\IObit\Advanced SystemCare

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

Deleted nladljmabboanhihfkjacnnkgjhnokhj

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1497 octets] - [15/09/2020 15:49:31]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
 

Broni

Posts: 55,589   +494
Re-run Farbar Recovery Scan Tool (FRST/FRST64) you ran at the very beginning of this topic.

  • Double click to run it.
  • Press Scan button.
  • Scan will create two logs, FRST.txt and Addition.txt in the same directory the tool is run. Please copy and paste them to your reply.
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #12
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 13-09-2020
Ejecutado por Unai (administrador) sobre P-UNAI (Acer Aspire V5-571G) (15-09-2020 18:13:07)
Ejecutado desde C:\Users\Unai\Desktop
Perfiles cargados: Unai
Platform: Windows 10 Home Versión 2004 19041.508 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: "C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe" -- "%1"
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adlice -> ) C:\Program Files\RogueKiller\RogueKiller64.exe
(Adlice -> ) C:\Program Files\RogueKiller\RogueKillerSvc.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe <18>
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Data Perceptions -> Data Perceptions / PowerProgrammer) C:\Windows\SysWOW64\WebUpdateSvc4.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.8043.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.504_none_e781e76525fb2269\TiWorker.exe
(Nitro Software, Inc. -> Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(ONTINET COM SL -> ) C:\ProgramData\ESET\ESET Security\app\appOnt.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Synology Inc. -> ) C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(voidtools -> voidtools) C:\Program Files\Everything\Everything.exe <2>

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3366616 2020-03-24] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [185648 2020-08-29] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2237256 2020-03-13] (voidtools -> voidtools)
HKLM-x32\...\Run: [RazerCortex] => "C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncher.exe" -autorun
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710776 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [284520 2020-07-31] (IDSA Production signing key -> Intel)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [appOnt] => C:\ProgramData\ESET\ESET Security\app\appOnt.exe [1738760 2017-09-25] (ONTINET COM SL -> )
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [648328 2020-04-13] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [SendAnywhere] => C:\Program Files (x86)\Send Anywhere\Send Anywhere.exe [90231592 2020-03-13] (Estmob Inc. -> Estmob Inc.)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3395360 2020-09-04] (Valve -> Valve Corporation)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [Discord] => C:\Users\Unai\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32410000 2020-09-14] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [GoogleChromeAutoLaunch_4AC4223D71D859AE87BA8F6AAC969BA7] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [GoogleChromeAutoLaunch_9C985C124107B1F707CF43FDDD29FA5D] => C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe [2075816 2020-09-10] (Brave Software, Inc. -> Brave Software, Inc.)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [Docker Desktop] => C:\Program Files\Docker\Docker\Docker Desktop.exe
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [48594832 2020-06-15] (Google LLC -> )
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe [2075816 2020-09-10] (Brave Software, Inc. -> Brave Software, Inc.)
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\MountPoints2: {91940010-a749-11ea-a4ff-083e8ee92650} - "D:\CMADownloader.exe"
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Nitro PDF Port 12 Monitor: C:\Windows\system32\NxPrinterMonitor12.dll [222816 2019-01-29] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\...\Print\Monitors\PCL hpz3llhn: C:\Windows\system32\hpz3llhn.dll [44288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.102\Installer\chrmstp.exe [2020-09-08] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\85.1.13.86\Installer\chrmstp.exe [2020-09-10] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2020-04-12]
ShortcutTarget: Twitch.lnk -> C:\Users\Unai\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {01551E9A-DC0D-47AA-9536-12C11D171CC3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118616 2020-08-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {13BAD3C4-682B-4AD7-8493-FF51021F1682} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
Task: {20080CC0-7A5D-4A9C-870E-62FA6FDF6584} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819120 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {225F718F-377C-4594-9009-BBDC26449F97} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-12-25] (Google Inc -> Google LLC)
Task: {260A8048-8DC8-4F80-B596-670AE5DDAF5D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {26FF8B5D-9582-477E-8D7F-2C8105419496} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
Task: {43CF0CCD-DEDB-4DEF-9C7C-9EC8FDDCCBC5} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-07-08] () [Archivo no firmado]
Task: {556AB094-D25B-4FE6-8645-65FEA1A1FACE} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {57180C9F-9168-45EF-9F9E-2B4C07E3E419} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {6AD574B0-56F2-4264-9421-CB59F7D80D0E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {742F8082-C089-458A-93AF-F6B90A44AE75} - System32\Tasks\ExclusiveTool => C:\Program Files (x86)\DSDCS\InputMapper\ExclusiveModeTool.exe [19968 2016-10-04] (InputMapper) [Archivo no firmado]
Task: {899AF1A5-18D1-4CC7-9186-9D8D6B713B90} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157544 2020-07-15] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {9239A5EB-6A50-4375-B956-2F35CB55F410} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {957D89F5-48E7-4D1F-9F00-C147377FB69C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {99EF05B5-1D23-4AC2-A625-FE51BDE1EAAA} - System32\Tasks\ASCOM - Update Earth Rotation Data => C:\Program Files (x86)\ASCOM\Platform 6\Tools\EarthRotationUpdate.exe [22528 2020-07-16] (ASCOM) [Archivo no firmado]
Task: {9C010232-2664-4286-B6EB-FC6B66D8BB25} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819120 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F03DBD0-906F-4D21-9FB8-7C9A72CD5290} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A3DB7CF3-9C62-4874-8CA3-CD2507ACE9EC} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157544 2020-07-15] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {A86F26B4-9600-4636-AA2B-20AB0B8FA26E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B27DF3EB-3417-4D96-B352-9BF5461A6B80} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B29161CF-2ECD-4E55-9EFC-32C8BB6E4DC6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [660688 2020-08-31] (Mozilla Corporation -> Mozilla Foundation)
Task: {B5017BCB-4621-4A17-81FF-86DACE76DF45} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_433_Plugin.exe [1502264 2020-09-09] (Adobe Inc. -> Adobe)
Task: {BE5DC1E5-2DE5-4CA8-8555-45D908B27003} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118616 2020-08-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {BF99BC7A-1AAD-4B2E-BAE0-0F0F1C05BB5F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C952DE49-B31B-463A-B3CE-E62EE8E96B4C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D14043E3-64F8-43FE-B7D2-776ED44C5879} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4090800 2020-08-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D902FB8A-3338-445E-B4A8-677D72127269} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4090800 2020-08-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {DE3AC651-21DA-492A-89DE-C2B56A4B0004} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-09-09] (Adobe Inc. -> Adobe)
Task: {E7D87AE1-08C4-48DD-A895-11E60E2D7804} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-12-25] (Google Inc -> Google LLC)
Task: {F7DC4CEE-014E-4910-BBE4-EE6EDC84DB56} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)


==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Hosts: Hay más de una entrada en Hosts. Consulte la sección Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 80.58.61.254 80.58.61.250
Tcpip\..\Interfaces\{39870653-121f-4968-89c4-fdcde972d743}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{5847a533-d91b-4353-bcfe-4600fe97b88d}: [DhcpNameServer] 80.58.61.254 80.58.61.250
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricción <==== ATENCIÓN

Edge:
======
Edge Notifications: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001 -> hxxps://www.acer.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\Unai\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-09]
Edge Notifications: Default -> hxxps://www.acer.com

FireFox:
========
FF DefaultProfile: kn1a90l1.default
FF ProfilePath: C:\Users\Unai\AppData\Roaming\Mozilla\Firefox\Profiles\kn1a90l1.default [2020-01-08]
FF ProfilePath: C:\Users\Unai\AppData\Roaming\Mozilla\Firefox\Profiles\djm1fgd7.default-release-1598900435806 [2020-09-15]
FF HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Unai\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => no encontrado
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_433.dll [2020-09-09] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_433.dll [2020-09-09] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-07-15] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-07-15] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin HKU\S-1-5-21-2954361111-2295329619-4222815306-1001: @acestream.net/acestreamplugin,version=3.1.32 -> C:\Users\Unai\AppData\Roaming\ACEStream\player\npace_plugin.dll [Ningún archivo]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-09-15]

Chrome:
=======
CHR Profile: C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default [2020-09-13]
CHR DefaultSearchURL: Default -> hxxps://ssl.gstatic.com/apps-notify/drive_96_1x.png
CHR Extension: (Presentaciones) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-22]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2020-09-02]
CHR Extension: (Google Drive) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghbiahbpaijignceidepookljebhfak [2020-04-18]
CHR Extension: (Documentos) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-22]
CHR Extension: (Google Drive) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-09-22]
CHR Extension: (One-Click Video Downloader) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhepgcoaibmmehlmckhlmbdgcemhidcg [2020-05-14]
CHR Extension: (ColorZilla) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2020-04-14]
CHR Extension: (YouTube) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-09-22]
CHR Extension: (Export SVG with Style) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkjdcaddoplepioppogpckelchefhddi [2020-04-15]
CHR Extension: (AHA Music - Buscador de canciones para el navegador) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpacanjfikmhoddligfbehkpomnbgblf [2020-06-10]
CHR Extension: (Hojas de cálculo) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-09-22]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-09]
CHR Extension: (AdBlock: el mejor bloqueador de anuncios) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-09-09]
CHR Extension: (UnRAR and RAR Viewer) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\goeclnlkhfoejbhdebemhjljlmcbhfkp [2019-09-22]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-09-02]
CHR Extension: (Servicio cashback Letyshops) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\lphicbbhfmllgmomkkhjfkpbdlncafbn [2020-09-11]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-09-22]
CHR Extension: (Chrome Media Router) - C:\Users\Unai\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-09]
CHR HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]
CHR HKLM-x32\...\Chrome\Extension: [makcojoppodhcgmmchohadhpkicoafka]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-09-09] (Adobe Inc. -> Adobe)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157544 2020-07-15] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157544 2020-07-15] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10566536 2020-08-05] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-09-24] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-08-29] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-08-29] (ESET, spol. s r.o. -> ESET)
R2 Everything; C:\Program Files\Everything\Everything.exe [2237256 2020-03-13] (voidtools -> voidtools)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReaderUpdateService.exe [1995184 2020-04-29] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-10-07] (Mixbyte Inc -> Freemake)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7138296 2020-09-15] (Malwarebytes Inc -> Malwarebytes)
R2 nlsX86cc; C:\Windows\SysWOW64\NLSSRV32.EXE [70752 2019-01-29] (Nitro Software, Inc. -> Nalpeiron Ltd.)
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [69864 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
R2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13610040 2020-09-15] (Adlice -> )
S3 Rockstar Service; D:\Program Files (x86)\Launcher\RockstarService.exe [1711232 2020-07-04] (Rockstar Games, Inc. -> Rockstar Games)
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [253912 2019-10-30] (Synology Inc. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-01-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WebUpdate4; C:\WINDOWS\SysWOW64\WebUpdateSvc4.exe [293992 2013-03-07] (Data Perceptions -> Data Perceptions / PowerProgrammer)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-01-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 com.docker.service; "C:\Program Files\Docker\Docker\com.docker.service" [X]

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [158512 2020-08-29] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106640 2020-08-29] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15288 2020-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [195976 2020-08-29] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [116488 2020-08-29] (ESET, spol. s r.o. -> ESET)
S3 esihdrv; C:\Users\Unai\AppData\Local\Temp\esihdrv.sys [205464 2020-09-15] (ESET, spol. s r.o. -> ESET) <==== ATENCIÓN
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-09-15] (Malwarebytes Corporation -> Malwarebytes)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-03-24] (Martin Malik - REALiX -> REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [217608 2020-09-15] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197280 2020-09-15] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73880 2020-09-15] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-09-15] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [131232 2020-09-15] (Malwarebytes Inc -> Malwarebytes)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [262160 2019-08-11] (WDKTestCert charles-yeh,132058328970830801 -> Prolific Technology Inc.)
S3 SnapCameraVirtualDevice; C:\WINDOWS\System32\drivers\SnapCameraVirtualDevice.sys [2800232 2020-03-21] (Snap Inc. -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2020-09-15] (Adlice -> )
S3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2020-01-10] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-01-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-01-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-01-10] (Microsoft Windows -> Microsoft Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2020-06-04] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
U4 AppMgmt; no ImagePath
U4 CscService; no ImagePath
U4 napagent; no ImagePath
U4 PeerDistSvc; no ImagePath
S3 WinRing0_1_2_0; \??\C:\Users\Unai\Downloads\ThrottleStop 872\WinRing0x64.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-09-15 18:13 - 2020-09-15 18:13 - 000032618 _____ C:\Users\Unai\Desktop\FRST.txt
2020-09-15 18:04 - 2020-09-15 18:04 - 000000000 ____D C:\Users\Unai\AppData\LocalLow\IGDump
2020-09-15 15:53 - 2020-09-15 15:53 - 000001644 _____ C:\Users\Unai\Desktop\AdwCleaner[C00].txt
2020-09-15 15:52 - 2020-09-15 15:52 - 000197280 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-09-15 15:52 - 2020-09-15 15:52 - 000131232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-09-15 15:52 - 2020-09-15 15:52 - 000073880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-09-15 15:52 - 2020-09-15 15:52 - 000038032 _____ C:\WINDOWS\system32\Drivers\truesight.sys
2020-09-15 15:48 - 2020-09-15 15:51 - 000000000 ____D C:\AdwCleaner
2020-09-15 15:47 - 2020-09-15 15:48 - 008414384 _____ (Malwarebytes) C:\Users\Unai\Desktop\AdwCleaner.exe
2020-09-15 15:44 - 2020-09-15 15:44 - 000003380 _____ C:\Users\Unai\Desktop\MalwareLog.txt
2020-09-15 15:36 - 2020-09-15 15:36 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-09-15 15:36 - 2020-09-15 15:36 - 000217608 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-09-15 15:36 - 2020-09-15 15:36 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-09-15 15:36 - 2020-09-15 15:36 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-09-15 15:36 - 2020-09-15 15:36 - 000002041 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-09-15 15:36 - 2020-09-15 15:36 - 000002029 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-09-15 15:36 - 2020-09-15 15:36 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-09-15 15:36 - 2020-09-15 15:36 - 000000000 ____D C:\Program Files\Malwarebytes
2020-09-15 15:35 - 2020-09-15 15:36 - 002040904 _____ (Malwarebytes) C:\Users\Unai\Desktop\MBSetup.exe
2020-09-15 15:32 - 2020-09-15 15:32 - 000100582 _____ C:\Users\Unai\Desktop\RKremoval.txt
2020-09-15 15:32 - 2020-09-15 15:32 - 000005790 _____ C:\Users\Unai\Desktop\RKreport.txt
2020-09-15 15:15 - 2020-09-15 15:15 - 000000905 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2020-09-15 15:15 - 2020-09-15 15:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2020-09-15 15:15 - 2020-09-15 15:15 - 000000000 ____D C:\Program Files\RogueKiller
2020-09-15 15:14 - 2020-09-15 15:20 - 000000000 ____D C:\ProgramData\RogueKiller
2020-09-15 15:12 - 2020-09-15 15:13 - 040327848 _____ (Adlice Software ) C:\Users\Unai\Desktop\RogueKiller_setup.exe
2020-09-15 01:23 - 2020-09-15 01:23 - 002297856 _____ (Farbar) C:\Users\Unai\Desktop\FRST64.exe
2020-09-15 00:55 - 2020-09-15 01:01 - 000000148 _____ C:\Users\Unai\Desktop\text.txt
2020-09-15 00:50 - 2020-09-15 00:50 - 000000785 _____ C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-09-15 00:39 - 2020-09-15 18:13 - 000000000 ____D C:\FRST
2020-09-14 15:19 - 2020-09-14 15:19 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Goldberg SteamEmu Saves
2020-09-14 15:19 - 2020-09-14 15:19 - 000000000 ____D C:\Users\Unai\AppData\LocalLow\Volcanoid
2020-09-13 01:42 - 2020-09-13 01:42 - 004820992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 004274688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 003992576 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 003659264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 003547784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 002338184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 002136744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-09-13 01:42 - 2020-09-13 01:42 - 001541224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 001301584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 001260200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 001239040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 001183256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 001117344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 001048064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2020-09-13 01:42 - 2020-09-13 01:42 - 001014864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000966144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2020-09-13 01:42 - 2020-09-13 01:42 - 000946712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000749056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000680664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2020-09-13 01:42 - 2020-09-13 01:42 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFSR.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000665264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-09-13 01:42 - 2020-09-13 01:42 - 000538120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSE.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncutil.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DirectML.Debug.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOVER.exe
2020-09-13 01:42 - 2020-09-13 01:42 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2020-09-13 01:42 - 2020-09-13 01:42 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2020-09-13 01:42 - 2020-09-13 01:42 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSUTILITY.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSERES.dll
2020-09-13 01:42 - 2020-09-13 01:42 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootim.exe
2020-09-13 01:41 - 2020-09-13 01:42 - 024264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 032610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 031598936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 026272768 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 023441408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 019869696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 018766848 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 018075136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 014754304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 010847552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 010336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 008897200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 007633360 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 007611904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 006554432 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmchipset.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 006417408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 006357032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 005993968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 005820416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 005430480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 005056000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004892672 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004783344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004747776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004629328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 004523008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004304384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 004009064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003913728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003875840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003868672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003819528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003806720 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003505952 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003334656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003307520 _____ (Microsoft Corporation) C:\WINDOWS\system32\HostNetSvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 003224896 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmcompute.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 003082240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002991416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 002918736 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002851128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 002806152 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002772992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002757120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002749440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 002687488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002635640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002606592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002541056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002519512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002485560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 002452856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 002451456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002433024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002403800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmwp.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 002317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002306048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002265328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002206208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002178048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 002023704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001980728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001978656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001956032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001951232 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001868672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001866240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001856312 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001834496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001812368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001805192 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-09-13 01:41 - 2020-09-13 01:41 - 001777152 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001770040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001720832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001719096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001693208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001681408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001659904 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001654824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #13
2020-09-13 01:41 - 2020-09-13 01:41 - 001649664 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001640888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001617088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001557816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001542752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001538656 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001506608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vfpext.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 001494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001485824 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001472824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 001449792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001449472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001438432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001430528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001411072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001400208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-09-13 01:41 - 2020-09-13 01:41 - 001388544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001352232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001337344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001329664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001314608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001309504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-09-13 01:41 - 2020-09-13 01:41 - 001296384 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001279288 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001255744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001253376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 001209344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001209096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001198288 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001191592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001181200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001128544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 001126488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001115448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lxcore.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001068112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001061376 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001056768 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001044880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 001003320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000976680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000969216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000961192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000943408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000920896 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000913776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000907440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000894768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000890944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000887304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000869376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000857344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000843376 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000827912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000801544 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000794624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000775776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000763840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000759792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 000757192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000755576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000750976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000748360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000744240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000707584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000705560 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000702792 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000688960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000676680 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000671544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmcompute.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000659776 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmuidevices.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000647480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000643584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000639928 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000634680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000634240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000603464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000602184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000585696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000583608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000573752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000568120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000546464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000531448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000530440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000528352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\glmf32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UiaManager.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmusrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000502592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-09-13 01:41 - 2020-09-13 01:41 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000500968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000495848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000482304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000455480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000420920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000412688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000403768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glmf32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmvpci.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmsmb.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000377344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000374072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000373560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000367416 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000360024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000337768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000322376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msquic.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vfpctrl.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000303288 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000303168 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnputil.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000291640 _____ (Microsoft Corporation) C:\WINDOWS\system32\nvspinfo.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000286024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000260928 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmCrashDump.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000259888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000240136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000230392 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000230376 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VideoHandlers.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000217920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000213344 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000212760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsl.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000196768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2020-09-13 01:41 - 2020-09-13 01:41 - 000190792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxApplicabilityEngine.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000180024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000167880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000153400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000147256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000143104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000141008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000138936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000133736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000125016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000119608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000118072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000117056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000110504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000109992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000109384 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmwpevents.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000099640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlgpclnt.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000095032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000092952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000091448 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rassstp.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wslconfig.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000069752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000069728 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000069432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000068928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000064824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000061752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000059448 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagnosticdataquery.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000051000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VmsProxy.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.SystemId.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000042320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfctrs.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000039224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VmsProxyHNic.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\vfpapi.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfdisk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfos.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCShellCommonProxyStub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2020-09-13 01:41 - 2020-09-13 01:41 - 000021312 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragproxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2020-09-13 01:41 - 2020-09-13 01:41 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\midimap.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2020-09-13 01:41 - 2020-09-13 01:41 - 000017216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000009277 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-09-13 01:41 - 2020-09-13 01:41 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragres.dll
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #14
2020-09-13 01:41 - 2020-09-13 01:41 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-09-13 01:41 - 2020-09-13 01:41 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 009034752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 008006248 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 007979416 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 006197760 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 006193664 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 005870496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 005776544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 005729280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 004727296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 004592136 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 003815424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 003779384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 003749376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 003436544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 003303936 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 003181056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 003062784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002975744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002951680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 002647040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002631168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002587448 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002422784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002319216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002259968 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002248192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002131032 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002103704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 002102784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsudk.shellcommon.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001924608 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001905664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001825280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001766912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001701368 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001700352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001514496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001504768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 001498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001473024 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001426944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 001378568 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001337176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001277440 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001261056 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001257984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001145344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001140928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001114112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001094472 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001092392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001089344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001046528 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2020-09-13 01:40 - 2020-09-13 01:40 - 001030656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001028288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001027344 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001021952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 001008696 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000999744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000978760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000939448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000935936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000934912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000929792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000914216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000903992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2020-09-13 01:40 - 2020-09-13 01:40 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000809280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000799544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000753152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000725608 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000702776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UiaManager.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000635824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000602440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-09-13 01:40 - 2020-09-13 01:40 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000527880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2020-09-13 01:40 - 2020-09-13 01:40 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000472376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000454960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000437760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000428672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000420456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000418800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000393728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000361472 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_InputPersonalization.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000314688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000305472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000269624 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000255800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbusr.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000255296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000249664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000239432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000223040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000185672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000185664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000183112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000180040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000169456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000160064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000159048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000155952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000152376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadWamExtension.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000132928 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000132728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlgpclnt.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000116024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-09-13 01:40 - 2020-09-13 01:40 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000070976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.PlatformExtension.DevicePickerExperience.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000064008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.SystemId.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000060744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000056648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-09-13 01:40 - 2020-09-13 01:40 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2020-09-13 01:40 - 2020-09-13 01:40 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2020-09-13 01:40 - 2020-09-13 01:40 - 000030024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000029456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\midimap.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000025392 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspiper.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdiagnostics.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000019776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2020-09-13 01:40 - 2020-09-13 01:40 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-09-13 01:40 - 2020-09-13 01:40 - 000016704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys
2020-09-13 01:32 - 2020-08-25 05:42 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-09-13 01:32 - 2020-08-25 05:36 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-09-11 01:23 - 2020-09-11 14:31 - 000000000 ____D C:\Users\Unai\Desktop\TNO
2020-09-11 01:16 - 2020-09-11 01:16 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2954361111-2295329619-4222815306-1001
2020-09-11 01:16 - 2020-09-11 01:16 - 000002398 _____ C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-09-11 00:17 - 2020-09-11 00:17 - 000000802 _____ C:\Users\Public\Desktop\SpaceEngine 0.980.lnk
2020-09-11 00:17 - 2020-09-11 00:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpaceEngine
2020-09-11 00:15 - 2020-09-11 00:21 - 000000000 ____D C:\SpaceEngine
2020-09-09 16:16 - 2020-09-09 16:17 - 000000000 ____D C:\Users\Unai\Documents\Aster
2020-09-09 16:15 - 2020-09-09 16:17 - 000000000 ____D C:\Users\Unai\AppData\Local\Regard3D
2020-09-09 15:51 - 2020-09-09 15:51 - 000000000 ____D C:\Program Files\Agisoft
2020-09-09 02:07 - 2020-09-09 02:07 - 000000000 ____D C:\Users\Public\Documents\3d-io
2020-09-09 02:03 - 2020-09-09 02:03 - 000000000 ____D C:\ProgramData\3d-io
2020-09-09 01:40 - 2020-09-09 01:40 - 000002322 _____ C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\fSpy.lnk
2020-09-08 23:35 - 2020-09-08 23:35 - 000029300 _____ C:\Users\Unai\AppData\Local\recently-used.xbel
2020-09-06 12:35 - 2020-09-06 12:36 - 000000000 ____D C:\Users\Unai\AppData\Local\skychart
2020-09-06 12:35 - 2020-09-06 12:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cartes du Ciel
2020-09-06 12:34 - 2020-09-06 12:35 - 000000000 ____D C:\Program Files\Ciel
2020-09-03 19:25 - 2020-09-03 19:30 - 000048653 _____ C:\WINDOWS\SysWOW64\wuwuninst.exe
2020-09-03 19:25 - 2020-09-03 19:25 - 000000031 _____ C:\WINDOWS\WebUpdateSvc4.INI
2020-09-03 19:25 - 2020-09-03 19:25 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Meade
2020-09-03 19:25 - 2008-10-31 11:06 - 000000494 _____ C:\WINDOWS\SysWOW64\WebUpdateSvc4.LIC
2020-09-02 18:20 - 2020-09-02 18:20 - 000000000 ____D C:\Users\Unai\AppData\Local\siril
2020-09-02 18:18 - 2020-09-02 18:19 - 000000000 ____D C:\Program Files\SiriL
2020-09-02 18:10 - 2020-09-09 14:37 - 000004556 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-09-02 18:10 - 2020-09-09 14:37 - 000004388 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
2020-09-02 01:38 - 2020-09-02 02:04 - 000000000 ____D C:\Users\Unai\.cargo
2020-09-02 01:38 - 2020-09-02 01:39 - 000000000 ____D C:\Users\Unai\.rustup
2020-09-02 01:36 - 2020-09-02 01:36 - 000001363 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
2020-09-02 01:36 - 2020-09-02 01:36 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Microsoft Visual Studio
2020-09-01 12:35 - 2020-09-11 00:03 - 000001194 _____ C:\Users\Unai\Desktop\blender.lnk
2020-08-31 21:21 - 2020-08-31 21:21 - 000001294 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2020-08-31 21:21 - 2020-08-31 21:21 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Thunderbird
2020-08-31 21:21 - 2020-08-31 21:21 - 000000000 ____D C:\Users\Unai\AppData\Local\Thunderbird
2020-08-31 21:21 - 2020-08-31 21:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-08-31 20:59 - 2020-08-31 20:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-08-31 20:54 - 2020-09-08 14:08 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-08-31 19:42 - 2020-08-31 22:22 - 000000577 _____ C:\Users\Unai\Desktop\telescope.live.txt
2020-08-31 12:46 - 2020-09-11 00:03 - 000000000 ____D C:\Users\Unai\Desktop\pruebas final
2020-08-30 21:15 - 2020-09-15 15:53 - 000000000 ___RD C:\Users\Unai\Google Drive
2020-08-30 20:50 - 2020-08-30 20:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-08-30 18:39 - 2020-08-30 18:39 - 000000000 ____D C:\Users\Unai\AppData\Local\The ASCOM Initiative
2020-08-30 18:38 - 2020-08-30 18:38 - 000003974 _____ C:\WINDOWS\system32\Tasks\ASCOM - Update Earth Rotation Data
2020-08-30 18:38 - 2020-08-30 18:38 - 000000000 ____D C:\Program Files\Common Files\ASCOM
2020-08-30 18:37 - 2020-08-30 18:37 - 000000000 ____D C:\WINDOWS\Symbols
2020-08-30 18:37 - 2020-08-30 18:37 - 000000000 ____D C:\Program Files (x86)\ASCOM
2020-08-29 17:40 - 2020-08-29 17:40 - 000000000 ____D C:\Users\Unai\AppData\Roaming\hugin
2020-08-29 13:37 - 2020-09-08 23:29 - 000000000 ____D C:\Users\Unai\.dbus-keyrings
2020-08-29 13:37 - 2020-08-29 13:37 - 000000000 ____D C:\Users\Unai\AppData\Roaming\siril
2020-08-29 13:37 - 2020-08-29 13:37 - 000000000 ____D C:\Users\Unai\AppData\Local\gtk-3.0
2020-08-29 13:35 - 2020-08-29 13:35 - 000195976 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2020-08-29 13:35 - 2020-08-29 13:35 - 000158512 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2020-08-29 13:35 - 2020-08-29 13:35 - 000116488 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2020-08-29 13:30 - 2020-09-02 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiriL
2020-08-29 13:29 - 2020-08-29 13:30 - 000000000 ____D C:\Program Files (x86)\SiriL
2020-08-29 13:26 - 2020-08-29 13:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PHD Guiding 2
2020-08-29 13:26 - 2020-08-29 13:26 - 000000000 ____D C:\Program Files (x86)\PHDGuiding2
2020-08-29 02:17 - 2020-08-29 02:17 - 000000000 ____D C:\Users\Unai\AppData\Roaming\FITS Liberator
2020-08-29 02:11 - 2020-08-29 02:11 - 000001169 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FITS Liberator.lnk
2020-08-29 02:11 - 2020-08-29 02:11 - 000000000 ____D C:\Program Files (x86)\FITS Liberator
2020-08-28 22:20 - 2020-08-28 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DeepSkyStacker (64 bit)
2020-08-28 21:59 - 2020-07-16 17:06 - 000193704 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2020-08-28 21:51 - 2020-08-28 21:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2020-08-28 21:51 - 2020-08-28 21:51 - 000000000 ____D C:\Program Files\qBittorrent
2020-08-28 21:47 - 2020-08-28 21:47 - 000000000 ____D C:\Users\Unai\AppData\LocalLow\BitTorrent
2020-08-27 14:26 - 2020-08-27 14:27 - 000000000 ____D C:\Program Files\WinJUPOS 11.1.6
2020-08-27 14:26 - 2020-08-27 14:26 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinJUPOS 11.1.6
2020-08-27 03:01 - 2020-08-27 03:01 - 003023872 _____ (Fateful Productions) C:\Users\Unai\Downloads\CompactGUI.exe
2020-08-27 02:25 - 2020-08-27 02:55 - 000000000 ____D C:\Users\Unai\AppData\Local\FlightSimulator
2020-08-26 13:01 - 2020-08-26 13:01 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:01 - 2020-08-26 13:01 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:01 - 2020-06-23 16:20 - 002754024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2020-08-26 13:00 - 2020-08-26 13:00 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-08-26 13:00 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-08-26 13:00 - 2020-03-11 21:26 - 000067456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2020-08-26 13:00 - 2020-03-04 14:54 - 001804784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2020-08-26 13:00 - 2020-03-04 14:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2020-08-26 12:04 - 2020-08-27 02:09 - 000000000 ____D C:\Users\Unai\AppData\Roaming\HOODLUM
2020-08-22 20:02 - 2020-08-22 20:02 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2020-08-22 17:26 - 2020-08-22 17:26 - 000000052 _____ C:\Users\Unai\AppData\Roaming\.CLB
2020-08-22 17:26 - 2020-08-22 17:26 - 000000016 _____ C:\Users\Unai\AppData\Roaming\.OBS
2020-08-22 17:26 - 2020-08-22 17:26 - 000000016 _____ C:\Users\Unai\AppData\Roaming\.ICL
2020-08-20 19:00 - 2020-08-20 19:00 - 000000052 _____ C:\Users\Unai\AppData\Roaming\_CLB.BAK
2020-08-20 19:00 - 2020-08-20 19:00 - 000000016 _____ C:\Users\Unai\AppData\Roaming\_OBS.BAK
2020-08-20 19:00 - 2020-08-20 19:00 - 000000016 _____ C:\Users\Unai\AppData\Roaming\_ICL.BAK
2020-08-20 18:59 - 2020-08-28 00:11 - 000000000 ____D C:\Users\Unai\AppData\Roaming\WinJUPOS
2020-08-20 18:23 - 2020-08-20 18:26 - 000001228 _____ C:\Users\Unai\.PlanetarySystemStacker.ini
2020-08-20 18:22 - 2020-08-20 18:22 - 000000000 ____D C:\Users\Unai\.astropy
2020-08-19 13:32 - 2020-09-15 15:52 - 000008192 ___SH C:\DumpStack.log.tmp
2020-08-19 13:32 - 2020-08-19 13:33 - 001311340 _____ C:\WINDOWS\Minidump\081920-6984-01.dmp

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-09-15 18:01 - 2020-02-07 19:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-09-15 16:29 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-09-15 16:23 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-09-15 15:56 - 2020-02-07 20:07 - 001772930 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-09-15 15:56 - 2019-12-07 16:55 - 000789640 _____ C:\WINDOWS\system32\perfh00A.dat
2020-09-15 15:56 - 2019-12-07 16:55 - 000155992 _____ C:\WINDOWS\system32\perfc00A.dat
2020-09-15 15:54 - 2019-09-19 22:15 - 000000000 ____D C:\ProgramData\NVIDIA
2020-09-15 15:52 - 2020-02-07 20:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-09-15 15:52 - 2019-09-19 22:25 - 000000000 __SHD C:\Users\Unai\IntelGraphicsProfiles
2020-09-15 15:52 - 2019-09-19 22:06 - 000053284 _____ C:\WINDOWS\system32\wpbbin.exe
2020-09-15 15:51 - 2020-03-24 20:36 - 000000000 ____D C:\Users\Unai\AppData\Roaming\IObit
2020-09-15 15:51 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-09-15 15:44 - 2020-07-19 22:35 - 000000000 ____D C:\Users\Unai\AppData\Local\Everything
2020-09-15 15:44 - 2020-07-17 13:08 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Everything
2020-09-15 15:36 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-09-15 15:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-09-15 15:11 - 2019-05-31 03:34 - 000015288 _____ (ESET) C:\WINDOWS\system32\Drivers\eelam.sys
2020-09-15 00:50 - 2019-09-22 01:18 - 000000000 ____D C:\Users\Unai\AppData\Local\ESET
2020-09-15 00:35 - 2019-09-22 02:21 - 000000000 ____D C:\Users\Unai\AppData\Local\CrashDumps
2020-09-14 23:34 - 2020-01-30 21:33 - 000000000 ____D C:\Program Files (x86)\Steam
2020-09-14 14:45 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-09-13 16:38 - 2019-09-19 23:26 - 000000000 ____D C:\Users\Unai\AppData\LocalLow\Mozilla
2020-09-13 02:16 - 2020-04-08 16:27 - 000316024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-13 02:15 - 2020-07-19 22:36 - 000000000 ___SD C:\WINDOWS\system32\lxss
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-09-13 02:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-09-13 01:47 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-09-13 01:40 - 2020-02-07 20:04 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-09-13 01:25 - 2020-01-12 14:48 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Send Anywhere
2020-09-11 01:16 - 2019-09-19 22:27 - 000000000 ___RD C:\Users\Unai\OneDrive
2020-09-11 01:13 - 2019-09-19 22:23 - 000000000 ___RD C:\Users\Unai\3D Objects
2020-09-11 00:22 - 2019-10-04 22:59 - 000000000 ____D C:\Users\Unai\AppData\Roaming\vlc
2020-09-11 00:07 - 2020-07-17 13:01 - 000000000 ____D C:\Users\Unai\AppData\Roaming\obs-studio
2020-09-11 00:03 - 2020-06-10 19:02 - 000001080 _____ C:\Users\Unai\Desktop\Meshroom.lnk
2020-09-11 00:03 - 2020-05-04 12:53 - 000002466 _____ C:\Users\Unai\Desktop\Runway.lnk
2020-09-11 00:03 - 2020-04-20 11:41 - 000002155 _____ C:\Users\Unai\Desktop\JDownloader 2.lnk
2020-09-11 00:03 - 2020-04-04 16:06 - 000001303 _____ C:\Users\Unai\Desktop\OpenIV.lnk
2020-09-11 00:03 - 2019-09-22 02:03 - 000001990 _____ C:\Users\Unai\Desktop\WinDirStat.lnk
2020-09-10 23:57 - 2020-07-15 17:57 - 000002422 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2020-09-10 00:38 - 2020-04-14 16:23 - 000002423 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-09-09 16:24 - 2020-03-18 17:44 - 000000000 ____D C:\Users\Unai\AppData\Roaming\XnConvert
2020-09-09 15:52 - 2020-06-05 13:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Agisoft
2020-09-09 14:37 - 2020-06-11 20:32 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-09-09 14:37 - 2020-06-11 20:32 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-09-09 14:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-09-09 14:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-09-09 01:00 - 2019-09-19 22:23 - 000000000 ____D C:\Users\Unai\AppData\Local\Packages
2020-09-08 23:26 - 2019-09-22 00:22 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-09-07 23:28 - 2019-09-19 22:31 - 000000000 ____D C:\Users\Unai\AppData\Local\PlaceholderTileLogoFolder
2020-09-06 13:18 - 2020-07-29 00:49 - 000000000 ____D C:\Users\Unai\Desktop\Astrofotografia
2020-09-06 12:13 - 2020-02-07 19:59 - 000000000 ____D C:\Users\Unai
2020-09-04 19:26 - 2020-04-23 13:19 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-09-04 19:24 - 2019-12-20 14:28 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Photolemur 3
2020-09-02 18:10 - 2019-09-19 23:28 - 000000000 ____D C:\Users\Unai\AppData\Local\Adobe
2020-09-02 02:56 - 2019-09-19 23:26 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-09-02 02:54 - 2019-09-19 23:10 - 000000000 ____D C:\ProgramData\Package Cache
2020-09-02 02:48 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-09-02 02:41 - 2019-12-22 15:30 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Visual Studio Setup
2020-09-02 01:37 - 2020-02-07 19:41 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-09-02 01:35 - 2019-12-22 15:30 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2020-09-01 12:35 - 2020-07-30 20:45 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender
2020-09-01 12:35 - 2019-12-31 20:18 - 000000000 ____D C:\Users\Unai\blenderkit_data
2020-09-01 12:35 - 2019-09-22 01:50 - 000000000 ____D C:\Program Files\Blender Foundation
2020-08-31 20:59 - 2019-09-19 23:26 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-08-31 20:46 - 2020-07-28 21:57 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Stellarium
2020-08-30 20:50 - 2019-12-29 01:29 - 000000000 ____D C:\Program Files\Google
2020-08-30 20:50 - 2019-09-22 00:21 - 000000000 ____D C:\Users\Unai\AppData\Local\Google
2020-08-30 18:37 - 2020-07-28 13:58 - 000000000 ___HD C:\ProgramData\{C48834CF-2B88-4E70-879F-E99157B9F526}
2020-08-30 18:37 - 2020-07-28 13:57 - 000000000 ____D C:\Users\Unai\Documents\ASCOM
2020-08-30 18:37 - 2020-04-25 14:13 - 000000000 ____D C:\Users\Unai\AppData\Local\IIIQF
2020-08-29 13:35 - 2020-07-07 21:17 - 000106640 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2020-08-28 22:20 - 2020-07-29 00:48 - 000000000 ____D C:\Program Files\DeepSkyStacker (64 bit)
2020-08-28 22:09 - 2020-04-30 12:50 - 000000000 ____D C:\Program Files\xNormal
2020-08-28 22:06 - 2020-01-08 17:45 - 000000000 ____D C:\ProgramData\SketchUp
2020-08-28 22:05 - 2020-05-17 13:06 - 000000000 ____D C:\Users\Unai\AppData\Local\Razer
2020-08-28 22:05 - 2020-05-17 13:04 - 000000000 ____D C:\ProgramData\Razer
2020-08-28 21:59 - 2019-12-15 14:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-08-28 21:59 - 2019-12-15 14:11 - 000000000 ____D C:\Program Files\Java
2020-08-28 21:56 - 2020-06-21 19:37 - 000000000 ____D C:\Users\Unai\AppData\LocalLow\David OReilly
2020-08-28 21:52 - 2019-09-19 22:23 - 000000000 ____D C:\Users\Unai\AppData\Roaming\Adobe
2020-08-28 15:32 - 2020-03-25 13:12 - 000000000 ____D C:\Users\Unai\AppData\Local\gtk-2.0
2020-08-28 15:32 - 2020-03-12 17:30 - 000000000 ____D C:\Users\Unai\AppData\Local\babl-0.1
2020-08-27 12:28 - 2019-09-22 21:22 - 000000000 ____D C:\Users\Unai\AppData\Local\Fateful_Productions
2020-08-27 02:05 - 2019-12-29 22:02 - 000000000 ____D C:\Users\Unai\Documents\My Games
2020-08-26 17:28 - 2020-03-14 18:12 - 000000000 ____D C:\Users\Unai\AppData\Roaming\.minecraft
2020-08-26 17:26 - 2019-09-22 15:00 - 000000000 ____D C:\Users\Unai\AppData\Roaming\.tlauncher
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #15
2020-08-26 13:01 - 2019-09-19 22:14 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-08-26 13:01 - 2019-09-19 22:14 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-08-26 13:00 - 2019-09-19 22:14 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-08-26 12:03 - 2019-12-07 23:58 - 000000000 ____D C:\Users\Unai\AppData\LocalLow\Cheesecake Dev
2020-08-24 14:09 - 2020-04-14 16:22 - 000003652 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-08-24 14:09 - 2020-04-14 16:22 - 000003528 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-08-19 13:32 - 2020-06-05 18:28 - 780538401 _____ C:\WINDOWS\MEMORY.DMP
2020-08-19 13:32 - 2020-06-05 18:28 - 000000000 ____D C:\WINDOWS\Minidump
2020-08-18 11:01 - 2019-09-19 23:19 - 000000000 ____D C:\Program Files (x86)\Microsoft Office

==================== Archivos en la raíz de algunos directorios ========

2020-08-22 17:26 - 2020-08-22 17:26 - 000000052 _____ () C:\Users\Unai\AppData\Roaming\.CLB
2020-08-22 17:26 - 2020-08-22 17:26 - 000000016 _____ () C:\Users\Unai\AppData\Roaming\.ICL
2020-08-22 17:26 - 2020-08-22 17:26 - 000000016 _____ () C:\Users\Unai\AppData\Roaming\.OBS
2020-04-20 21:37 - 2020-04-20 21:48 - 000009063 _____ () C:\Users\Unai\AppData\Roaming\ContactSheetII.log
2020-04-28 16:00 - 2020-04-28 16:00 - 000000128 ____H () C:\Users\Unai\AppData\Roaming\ecf00c38dc807e105d881c433a6b455dd2c606b6
2020-04-20 21:37 - 2020-04-20 21:48 - 000000715 _____ () C:\Users\Unai\AppData\Roaming\Hoja de contactos II.xml
2020-05-20 15:55 - 2020-05-20 15:55 - 000000364 _____ () C:\Users\Unai\AppData\Roaming\PureRef.ini
2020-08-20 19:00 - 2020-08-20 19:00 - 000000052 _____ () C:\Users\Unai\AppData\Roaming\_CLB.BAK
2020-08-20 19:00 - 2020-08-20 19:00 - 000000016 _____ () C:\Users\Unai\AppData\Roaming\_ICL.BAK
2020-08-20 19:00 - 2020-08-20 19:00 - 000000016 _____ () C:\Users\Unai\AppData\Roaming\_OBS.BAK
2020-06-04 20:51 - 2020-06-04 20:51 - 000000605 ___SH () C:\Users\Unai\AppData\Local\6w65fts3hvyxjkh27rv3e2vffcxrqra
2019-11-19 20:08 - 2019-11-19 20:08 - 001065984 _____ () C:\Users\Unai\AppData\Local\file__0.localstorage
2020-05-25 20:06 - 2020-06-06 14:09 - 000000000 _____ () C:\Users\Unai\AppData\Local\nsight-sys-agent.lock
2020-09-08 23:35 - 2020-09-08 23:35 - 000029300 _____ () C:\Users\Unai\AppData\Local\recently-used.xbel
2019-11-26 17:18 - 2020-06-04 13:30 - 000000015 _____ () C:\Users\Unai\AppData\Local\update_progress.txt

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #16
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 13-09-2020
Ejecutado por Unai (15-09-2020 18:14:44)
Ejecutado desde C:\Users\Unai\Desktop
Windows 10 Home Versión 2004 19041.508 (X64) (2020-02-07 18:08:06)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-2954361111-2295329619-4222815306-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2954361111-2295329619-4222815306-503 - Limited - Disabled)
Invitado (S-1-5-21-2954361111-2295329619-4222815306-501 - Limited - Disabled)
Unai (S-1-5-21-2954361111-2295329619-4222815306-1001 - Administrator - Enabled) => C:\Users\Unai
victor (S-1-5-21-2954361111-2295329619-4222815306-1002 - Administrator - Enabled)
WDAGUtilityAccount (S-1-5-21-2954361111-2295329619-4222815306-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

${{arpDisplayName}} (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cufft_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
3d-io Exr-IO 2.03.00 (HKLM-x32\...\3d-io Exr-IO) (Version: 2.03.00 - 3d-io GmbH)
4K Video Downloader 4.12 (HKLM\...\{E9B4998F-85C5-4694-B95F-2390B6E63756}) (Version: 4.12.5.3670 - Open Media LLC)
7-Zip 20.00 alpha (x64) (HKLM\...\7-Zip) (Version: 20.00 alpha - Igor Pavlov)
Actualización de NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Adobe After Effects 2020 (HKLM-x32\...\AEFT_17_1_1) (Version: 17.1.1 - Adobe Inc.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.433 - Adobe)
Adobe Illustrator 2020 (HKLM-x32\...\ILST_24_2) (Version: 24.2 - Adobe Inc.)
Adobe Lightroom Classic (HKLM-x32\...\LTRM_9_3) (Version: 9.3 - Adobe Inc.)
Adobe Media Encoder 2020 (HKLM-x32\...\AME_14_3) (Version: 14.3 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2) (Version: 21.2.0.225 - Adobe Systems Incorporated)
Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_3) (Version: 14.3 - Adobe Inc.)
Advanced Renamer (HKLM-x32\...\Advanced Renamer_is1) (Version: 3.85 - Hulubulu Software)
Agisoft Delighter (HKLM\...\{EC589A28-8B8C-4D6A-A0D3-C8349B141B33}) (Version: 1.6.2 - Agisoft)
Agisoft Metashape Professional (HKLM\...\{4FE38A6A-9C60-4051-9EC8-722865197EFE}) (Version: 1.6.1 - Agisoft)
ASCOM Celestron Telescope and Focuser Driver version 6.1.7350 (HKLM-x32\...\{8cad8458-17ab-49ea-9c3a-b20007f3ad10}_is1) (Version: 6.1.7350 - Chris Rowland <chris.rowland@cherryfield.me.uk>)
ASCOM Platform 6.5 (HKLM\...\{8961E141-B307-4882-ABAD-77A3E76A40C1}) (Version: 6.5.0.3091 - ASCOM Initiative) Hidden
ASCOM Platform 6.5 (HKLM-x32\...\{8961E141-B307-4882-ABAD-77A3E76A40C1}) (Version: 6.5.0.3091 - ASCOM Initiative) Hidden
ASCOM Platform 6.5 (HKLM-x32\...\ASCOM Platform 6.5) (Version: 6.5.0.3091 - ASCOM Initiative)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Autostar Updater (HKLM-x32\...\Autostar Updater) (Version: - )
Backup and Sync from Google (HKLM\...\{01D33BEA-673C-439C-A7C7-DE5B236DB842}) (Version: 3.50.3166.0017 - Google, Inc.)
Blender (HKLM\...\{7D3DB565-6157-47EA-9D7D-E9B5B964E621}) (Version: 2.90.0 - Blender Foundation)
Blender (HKLM\...\{A239FF96-639F-4269-9673-E7ED60D5C74D}) (Version: 2.83.3 - Blender Foundation)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 85.1.13.86 - Los creadores de Brave)
Cartes du Ciel V4.3 (HKLM\...\{A261F28E-6053-4414-9B84-AA8FE5F47AD4}_is1) (Version: - )
CUBLAS Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cublas_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUBLAS Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cublas_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUDA Documentation (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_documentation_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUDA Profiler Tools (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvprof_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUDA Sanitizer API (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_sanitizer_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUDA Toolkit (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDAToolkit_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUDA Version (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDAVersion_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUDART Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cudart_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUFFT Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cufft_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
cuobjdump (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cuobjdump_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUPTI (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cupti_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CURAND Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_curand_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CURAND Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_curand_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUSOLVER Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cusolver_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUSOLVER Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cusolver_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUSPARSE Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cusparse_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
CUSPARSE Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_cusparse_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
DeepSkyStacker (64 bit) 4.2.5 (64 bit - remove only) (HKLM-x32\...\DeepSkyStacker64) (Version: 4.2.5 - The DeepSkyStacker Team)
Demo Suite (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_demo_suite_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
Disassembler (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvdisasm_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
Discord (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.35 - NVIDIA Corporation) Hidden
ELAN Touchpad 15.6.8.2_X64_WHQL (HKLM\...\Elantech) (Version: 15.6.8.2 - ELAN Microelectronic Corp.)
Epic Games Launcher (HKLM-x32\...\{3A595C95-121D-4EB0-8D57-C7A309BA6C09}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESET Security (HKLM\...\{1CE8E9F0-4D99-4C80-B3CB-4A19C083B2B5}) (Version: 13.2.18.0 - ESET, spol. s r.o.)
Everything 1.4.1.969 (x64) (HKLM\...\Everything) (Version: 1.4.1.969 - David Carpenter)
FFmpeg (Windows) for Audacity versión 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - )
FITS Liberator 3.0.1 (HKLM-x32\...\FITS Liberator) (Version: 3.0.1 - ESO/ESA/NASA)
Fortran Examples (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_fortran_examples_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 10.0.0.35798 - Foxit Software Inc.)
fSpy 1.0.3 (only current user) (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\6c332f2e-0163-5c6e-93bd-836ed62606d6) (Version: 1.0.3 - Per Gantelius)
GIMP 2.10.20 (HKLM\...\GIMP-2_is1) (Version: 2.10.20 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.102 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
GPU Library Advisor (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_gpu_library_advisor_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
iMazing HEIC Converter 1.0.10.0 (HKLM\...\{FA58AFA9-B210-409C-88F1-2A90D577C170}_is1) (Version: 1.0.10.0 - DigiDNA)
InputMapper (HKLM-x32\...\{026D2025-A7FA-4F5C-AF8C-A6F7A9B917FC}) (Version: 1.6.10.19991 - DSDCS)
Intel Driver && Support Assistant (HKLM-x32\...\{4752D5B7-5943-4607-97E3-683A534A7660}) (Version: 20.8.30.6 - Intel) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{5C0B869E-82CA-48FB-92B6-4A476984611F}) (Version: 19.0.190 - Intel Corporation)
Intel(R) Computing Improvement Program (HKLM\...\{D98C2DF9-C731-4322-A5F0-D897300216EE}) (Version: 2.4.05718 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{11fd8837-78a3-461c-810a-8857f36bfa18}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{42b513d6-6d10-4f7d-b900-a1caf9318037}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.5146 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{011c7b89-9b3e-4b2a-8cbc-633ef3c1e10c}) (Version: 20.8.30.6 - Intel)
Java 8 Update 261 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
K-Lite Mega Codec Pack 15.6.1 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.6.1 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.2.0.82 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.0.82 - Malwarebytes)
MEMCHECK (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_memcheck_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.51 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - )
Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.13029.20344 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\OneDriveSetup.exe) (Version: 20.143.0716.0003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{4014b6a8-d91a-42a0-a855-c6f1f84f36d6}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{38495195-4bc9-4fdf-ab9f-80cc22824d39}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29016 (HKLM-x32\...\{1aaa01ad-3069-4288-9c6f-37a140a8f6c7}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.7.3064.805 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MKVToolNix 48.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 48.0.0 - Moritz Bunkus)
Mozilla Firefox 80.0 (x64 es-ES) (HKLM\...\Mozilla Firefox 80.0 (x64 es-ES)) (Version: 80.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.2.1 - Mozilla)
Mozilla Thunderbird 78.2.1 (x86 es-ES) (HKLM-x32\...\Mozilla Thunderbird 78.2.1 (x86 es-ES)) (Version: 78.2.1 - Mozilla)
My Game Long Name (HKLM\...\UDK-50bf2c53-0d22-4834-bb7e-6320363094c6) (Version: - Epic Games, Inc.)
Nitro Pro (HKLM\...\{38C03A99-3C48-4172-A161-538B3750982B}) (Version: 12.9.0.474 - Nitro)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.9 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.6.0.9 - Duodian Technology Co. Ltd.)
NPP Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_npp_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NPP Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_npp_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
nvcc (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvcc_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVGRAPH Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvgraph_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVGRAPH Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvgraph_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVIDIA Controlador de gráficos 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation)
NVIDIA CUDA Development 10.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDADevelopment_10.1) (Version: 10.1 - NVIDIA Corporation)
NVIDIA CUDA Documentation 10.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDADocument_10.1) (Version: 10.1 - NVIDIA Corporation)
NVIDIA CUDA Runtime 10.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDARuntimes_10.1) (Version: 10.1 - NVIDIA Corporation)
NVIDIA CUDA Samples 10.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_samples_10.1) (Version: 10.1 - NVIDIA Corporation)
NVIDIA CUDA Visual Studio Integration 10.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_visual_studio_integration_10.1) (Version: 10.1 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Nsight Compute 2019.4.0 (HKLM\...\{A6F92647-E007-4C7F-8FDF-FB214E50E1F0}) (Version: 19.4.0.0 - NVIDIA Corporation)
NVIDIA Nsight Systems v2019.3.7 (HKLM\...\{1431BD9D-EA3A-4379-BDB1-4C99F59BD137}) (Version: 19.3.7.5 - NVIDIA Corporation)
NVIDIA Nsight Visual Studio Edition 2019.3.0.19200 (HKLM\...\{8DD91892-32FB-4035-B011-AD7948EFD302}) (Version: 19.3.0.19200 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Tools Extension SDK (NVTX) - 64 bit (HKLM\...\{B56D2F88-8865-40FD-B7AC-F074EE4D201D}) (Version: 1.00.00.00 - NVIDIA Corporation)
NVJPEG Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvjpeg_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVJPEG Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvjpeg_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVML Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvml_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
nvprune (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvprune_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVRTC Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvrtc_dev_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVRTC Runtime (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvrtc_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
NVTX Development (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nvtx_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project)
Occupancy Calculator (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_occupancy_calculator_10.1) (Version: 10.1 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13029.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13029.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13029.20344 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.13029.20200 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenIV (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\OpenIV) (Version: 4.0.1401 - .black/OpenIV Team)
OpenRL Runtime 1.3.1000.14 x64 (HKLM\...\{250C8D22-1757-11E3-818E-1803734DBB4F}) (Version: 1.3.1000.14 - Caustic Graphics, Inc.)
Panel de control de NVIDIA 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.35 - NVIDIA Corporation) Hidden
Paquete de controladores de Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Paquete de controladores de Windows - Microsoft PS Vita Type B (02/22/2013 6.1.7600.16385) (HKLM\...\A0EC80B5719D4DA4CF40C9219D7CB9CCAD6DBA40) (Version: 02/22/2013 6.1.7600.16385 - Microsoft)
Paquete de controladores de Windows - Sony Computer Entertainment Inc. Wireless controller for PLAYSTATION(R)3 Driver Package (01/20/2012 1.4.0.0) (HKLM\...\D5410AE5FA467EF0F19558D5F60C991A79E11B51) (Version: 01/20/2012 1.4.0.0 - Sony Computer Entertainment Inc.)
PHD 2 version 2.6.9 (HKLM-x32\...\PHD 2_is1) (Version: 2.6.9 - )
Photolemur 3 (HKLM\...\{A2F8D51D-5FC4-4B0C-AF19-C580E95FDAFD}) (Version: 1.1.0.2443 - Skylum) Hidden
Photolemur 3 (HKLM-x32\...\{62128665-8632-420a-94af-12c1ea417f52}) (Version: 1.1.0.2443 - Skylum)
PIPP 2.5.9 (HKLM\...\PIPP) (Version: 2.5.9 - Chris Garry)
Print Server Utilities (HKLM-x32\...\{38697498-F4AA-4A8A-81F6-C09446AD020D}) (Version: 4.3.4.1 - Edimax Technology CO., Ltd.)
PyCharm Community Edition 2020.1 (HKLM-x32\...\PyCharm Community Edition 2020.1) (Version: 201.6668.115 - JetBrains s.r.o.)
Python 3.8.2 (64-bit) (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\{13ee6ab9-4dca-406c-bc3b-5d86391d39a1}) (Version: 3.8.2150.0 - Python Software Foundation)
Python 3.8.2 Add to Path (64-bit) (HKLM\...\{88AF4D20-BE9D-4CA6-8BD4-5DB380A41CC8}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Core Interpreter (64-bit) (HKLM\...\{AD923240-0ACE-45C9-8749-05BF77AAE101}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Development Libraries (64-bit) (HKLM\...\{BDFB7011-0AB2-440F-8F00-32AF7A9ED1ED}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Documentation (64-bit) (HKLM\...\{65B0F976-5151-427E-95B4-2320DC64F91E}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Executables (64-bit) (HKLM\...\{A36C1168-60E6-42E4-93DB-6BE8C6DD9DD6}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 pip Bootstrap (64-bit) (HKLM\...\{8EEE042B-6EAF-4171-BA6E-01319ED99DA8}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Standard Library (64-bit) (HKLM\...\{33F9B46C-EB19-4BB7-ABFA-F8C71B73E9A4}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Tcl/Tk Support (64-bit) (HKLM\...\{FCA1EB7D-2F62-4659-AA5F-42C37CE5D3CB}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Test Suite (64-bit) (HKLM\...\{F6DA05CF-67B5-47D0-ABD4-371C80BA0717}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Utility Scripts (64-bit) (HKLM\...\{52AB506A-EC3C-4060-9EBF-6A975994CB35}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{AF12A465-EA47-447D-B6BF-2A82CDBE2F0E}) (Version: 3.8.6994.0 - Python Software Foundation)
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Radeon ProRender for Blender (HKLM\...\{7FDCC995-EE4F-4F8F-A8C8-B9D1728D3D17}) (Version: 2.0.112 - AMD)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.27040 - Realtek Semiconductor Corp.)
RegiStax 6 (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\RegiStax 6) (Version: - )
RegiStax 6.1.0.8 update (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\RegiStax 6.1.0.8 update) (Version: - )
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.25.260 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.6 - Rockstar Games)
RogueKiller versión 14.7.3.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.7.3.0 - Adlice Software)
Runway 0.13.4 (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\d91bc86b-75f2-517f-8f84-456208a7dba4) (Version: 0.13.4 - Runway AI, Inc.)
Send Anywhere 20.3.131125 (HKLM-x32\...\20db1975-fda0-5740-b262-81be26ba22ab) (Version: 20.3.131125 - Estmob Inc.)
SiriL version 0.9.12 (HKLM-x32\...\{ADA3C347-68C3-4EAA-92B3-C1BDBD836EDB}_is1) (Version: 0.9.12 - Free-Astro)
SiriL version 0.99.4 (64-bit) (HKLM\...\{ADA3C347-68C3-4EAA-92B3-C1BDBD836EDB}_is1) (Version: 0.99.4 - Free-Astro)
Software Update Wizard (Redist) 4.5 (HKLM-x32\...\Software Update Wizard (Redist)) (Version: 4.5 - PowerProgrammer)
SpaceEngine versión 0.9.8.0 (HKLM-x32\...\{6E7A40FA-86CE-4844-A7DC-F8769F21A62F}_is1) (Version: 0.9.8.0 - SpaceEngine)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellarium 0.20.2 (HKLM\...\Stellarium_is1) (Version: 0.20.2 - Stellarium team)
Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: 6.2-24922 - Synology)
TAP-Windows 9.24.2 (HKLM\...\TAP-Windows) (Version: 9.24.2 - OpenVPN Technologies, Inc.)
Topaz Gigapixel AI (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\{b86a2732-97c3-40bf-8b25-33283f34c261}) (Version: 4.4.5 - Topaz Labs, LLC)
Trackmania (HKLM-x32\...\Uplay Install 5595) (Version: - Ubisoft)
Twitch (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 87.0 - Ubisoft)
Uso a distancia de tu PS4 (HKLM-x32\...\{5EF8E631-35B8-4A88-B874-8AAE0EB6B386}) (Version: 3.0.0.09250 - Sony Interactive Entertainment Inc.)
Ut Video Codec Suite (HKLM\...\utvideo_is1) (Version: 16.1.0 - UMEZAWA Takeshi)
Vector Magic (HKLM-x32\...\Vector Magic) (Version: 1.15 - Vector Magic, Inc.)
Visual Studio Build Tools 2019 (HKLM-x32\...\2e53059a) (Version: 16.7.30413.136 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
vs_FileTracker_Singleton (HKLM-x32\...\{EF1AD9BC-8273-4B78-ACB6-A35DF4CE4447}) (Version: 16.7.30309 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WebM Media Foundation Components (HKLM-x32\...\webmmf) (Version: 1.0.1.2 - WebM Project)
WinDirStat 1.1.2 (HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\WinDirStat) (Version: - )
Windows SDK AddOn (HKLM-x32\...\{E6F877A1-2F65-4BF0-87B6-A4071B7663D3}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Subsystem for Linux Update (HKLM\...\{9F858BB9-156F-4C4C-9295-0A06CA83D17C}) (Version: 4.19.104 - Microsoft Corporation)
WinJUPOS 11.1.6 (HKLM-x32\...\WinJUPOS 11.1.6_is1) (Version: 11.1.6 - Grischa Hahn, Germany)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
Wondershare FilmoraPro (HKLM\...\{C88C3846-DB46-43CE-9978-DD78887E2BBC}) (Version: 2.0.9811.57375 - Wondershare)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
XnConvert 1.83 (HKLM\...\XnConvert_is1) (Version: 1.83 - Gougelet Pierre-e)

Packages:
=========
Complemento de motor del medio de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-02] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-09-19] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-09-19] (Microsoft Corporation) [MS Ad]
Microsoft Bingo -> C:\Program Files\WindowsApps\Microsoft.MicrosoftBingo_2.6.10262.0_x86__8wekyb3d8bbwe [2019-12-14] (Microsoft Studios) [MS Ad]
Microsoft Jigsaw -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJigsaw_2.1.7200.0_x86__8wekyb3d8bbwe [2020-08-11] (Microsoft Studios) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.11.6020.0_x64__8wekyb3d8bbwe [2020-06-10] (Microsoft Studios) [MS Ad]
Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_3.0.8191.0_x86__8wekyb3d8bbwe [2020-09-02] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-20] (Microsoft Studios) [MS Ad]
Microsoft Sudoku -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSudoku_2.2.7240.0_x64__8wekyb3d8bbwe [2020-08-19] (Microsoft Studios) [MS Ad]
Microsoft Treasure Hunt -> C:\Program Files\WindowsApps\Microsoft.MicrosoftTreasureHunt_2.1.11080.0_x86__8wekyb3d8bbwe [2019-12-14] (Microsoft Studios) [MS Ad]
Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_3.6.10070.0_x64__8wekyb3d8bbwe [2019-12-14] (Microsoft Studios) [MS Ad]
Raw Image Extension -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_1.0.30761.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key -> Intel)
CustomCLSID: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2020-06-15] (Google LLC -> Google)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ningún archivo
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2020-03-04] (Notepad++ -> )
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro\12\NitroProShellExtensionShim.dll [2019-09-23] (Nitro Software, Inc. -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-09-15] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Ningún archivo
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2020-06-15] (Google LLC -> Google)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Ningún archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2020-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-08-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-09-15] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Ningún archivo
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\system32\xvidvfw.dll [310784 2019-12-28] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULRA] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULRG] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULY0] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULY2] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULH0] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULH2] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.UQY2] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.UQRG] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.UQRA] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [Archivo no firmado]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULRA] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULRG] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULY0] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULY2] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULH0] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.ULH2] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.UQY2] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.UQRG] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]
HKLM\...\Drivers32: [VIDC.UQRA] => C:\WINDOWS\system32\utv_vcm.dll [132608 2016-05-03] () [Archivo no firmado]

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

2017-11-29 09:25 - 2017-11-29 09:25 - 000147968 ____N () [Archivo no firmado] C:\Program Files (x86)\Send Anywhere\context_handler\x64\snda_context_handler.dll
2020-09-15 15:53 - 2020-09-15 15:53 - 000114176 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\_ctypes.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000172544 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\_elementtree.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 002250240 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\_hashlib.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000032256 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\_multiprocessing.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000046080 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\_psutil_windows.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000047616 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\_socket.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 002819584 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\_ssl.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000026112 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\_yappi.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000080896 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\bz2.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000016384 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\common.time34.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000007680 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\hashobjs_ext.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000301568 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\PIL._imaging.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000168448 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\pyexpat.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 001084416 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\pysqlite2._sqlite.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000548864 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\pythoncom27.dll
2020-09-15 15:53 - 2020-09-15 15:53 - 000137728 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\pywintypes27.dll
2020-09-15 15:53 - 2020-09-15 15:53 - 000010752 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\select.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000020992 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\thumbnails_ext.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000689664 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\unicodedata.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000119808 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\usb_ext.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000128512 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\win32api.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000438784 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\win32com.shell.shell.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000011776 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\win32crypt.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000023040 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\win32event.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000149504 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\win32file.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000223232 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\win32gui.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000048128 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\win32inet.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000029696 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\win32pdh.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000027648 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\win32pipe.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000044032 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\win32process.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000020480 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\win32profile.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000136192 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\win32security.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000026624 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\win32ts.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000034816 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\windows.conditional.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000038400 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\windows.connectivity.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000071680 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\windows.device_monitor.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000109056 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\windows.volumes.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000020480 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\windows.winwrap.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 001325056 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\wx._controls_.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 001489408 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\wx._core_.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 001007104 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\wx._gdi_.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000103424 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\wx._html2.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 000916992 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\wx._misc_.pyd
2020-09-15 15:53 - 2020-09-15 15:53 - 001039872 _____ () [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\wx._windows_.pyd
2020-04-18 22:14 - 2020-02-06 15:00 - 000076800 _____ (Igor Pavlov) [Archivo no firmado] C:\Program Files\7-Zip\7-zip.dll
2020-09-15 15:53 - 2020-09-15 15:53 - 003043328 _____ (Python Software Foundation) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\python27.dll
2020-03-10 10:31 - 2020-03-10 10:31 - 001918464 _____ (SQLite Development Team) [Archivo no firmado] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
2020-09-15 15:53 - 2020-09-15 15:53 - 000202240 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\wxbase30u_net_vc90_x64.dll
2020-09-15 15:53 - 2020-09-15 15:53 - 002831872 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\wxbase30u_vc90_x64.dll
2020-09-15 15:53 - 2020-09-15 15:53 - 001654784 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\wxmsw30u_adv_vc90_x64.dll
2020-09-15 15:53 - 2020-09-15 15:53 - 006542336 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\wxmsw30u_core_vc90_x64.dll
2020-09-15 15:53 - 2020-09-15 15:53 - 000773632 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\wxmsw30u_html_vc90_x64.dll
2020-09-15 15:53 - 2020-09-15 15:53 - 000137216 _____ (wxWidgets development team) [Archivo no firmado] C:\Users\Unai\AppData\Local\Temp\_MEI121602\wxmsw30u_webview_vc90_x64.dll

==================== Alternate Data Streams (Lista blanca) ========

(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)

AlternateDataStreams: C:\Windows:nlsPreferences [386]
AlternateDataStreams: C:\Users\Unai\Datos de programa:iSpring Solutions [128]
AlternateDataStreams: C:\Users\Unai\AppData\Roaming:iSpring Solutions [128]

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer (Lista blanca) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_261\bin\ssv.dll [2020-07-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-16] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-09] (Microsoft Corporation -> Microsoft Corporation)

(Si una entrada es incluida en el fixlist, será eliminada del registro.)

IE trusted site: HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\localhost -> localhost

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2019-12-07 11:14 - 2020-07-19 22:38 - 000001992 _____ C:\WINDOWS\system32\drivers\etc\hosts
109.94.209.70 fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 fitgirl-repack.com # Fake FitGirl site
109.94.209.70 fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 ww9.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repack.net # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.net # Fake FitGirl site
192.168.0.17 host.docker.internal
192.168.0.17 gateway.docker.internal
127.0.0.1 kubernetes.docker.internal

2020-06-22 21:06 - 2020-07-20 19:20 - 000000435 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
172.25.64.1 P-UNAI.mshome.net # 2025 7 6 19 17 20 51 269
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #17
==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64_win\compiler;C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64\compiler;C:\Program Files\NVIDIA GPU Computing Toolkit\CUDA\v10.1\bin;C:\Program Files\NVIDIA GPU Computing Toolkit\CUDA\v10.1\libnvvp;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\Nsight Compute 2019.4.0\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Users\Unai\AppData\Local\Microsoft\WindowsApps;C:\Program Files (x86)\FreeArc\bin;C:\adb;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\CMake\bin;C:\mingw\mingw64\bin;;C:\Program Files\Docker\Docker\resources\bin;C:\ProgramData\DockerDesktop\version-bin
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 80.58.61.254 - 80.58.61.250
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "RazerCortex"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_4AC4223D71D859AE87BA8F6AAC969BA7"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "AceStream"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "btweb"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "DesktopMining"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "Free Download Manager"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "BitTorrent"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "SendAnywhere"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "Snap Camera"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "Parsec.App.0"
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\StartupApproved\Run: => "GlassWire"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{A2E03BE7-6238-4973-8E38-925CCEE6D272}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DD8CCA0A-7147-4393-907C-9D92039DF442}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{1976EEE1-7446-4DD1-B2BF-F493C37FFA65}C:\program files (x86)\send anywhere\send anywhere.exe] => (Allow) C:\program files (x86)\send anywhere\send anywhere.exe (Estmob Inc. -> Estmob Inc.)
FirewallRules: [TCP Query User{14300A1A-1474-4C48-A0DF-2A72E113320C}C:\program files (x86)\send anywhere\send anywhere.exe] => (Allow) C:\program files (x86)\send anywhere\send anywhere.exe (Estmob Inc. -> Estmob Inc.)
FirewallRules: [UDP Query User{8D295076-3841-4728-8D27-8150CE865A5D}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => Ningún archivo
FirewallRules: [TCP Query User{65C553F1-BAA3-4830-96E2-367461023FFC}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => Ningún archivo
FirewallRules: [{3C39406F-78D2-4B13-B783-C0A8B16021E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{85326346-AE2E-46D7-9783-42C8C661F207}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{4D536A3A-ADE3-421D-892A-DF45C6A46C09}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe => Ningún archivo
FirewallRules: [TCP Query User{8B36921B-ABFF-44EA-A35E-75C9859B2E34}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe => Ningún archivo
FirewallRules: [UDP Query User{5258A70D-C451-432A-808F-DC22CE2990DA}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> )
FirewallRules: [TCP Query User{F5F1B847-34C9-465B-AFEE-466B8469FEE5}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> )
FirewallRules: [UDP Query User{DA20CDBA-63A9-40C3-BD7C-64F606A251E5}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe => Ningún archivo
FirewallRules: [TCP Query User{480D0A5B-C796-4342-88A7-7DC7015C0B8D}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe => Ningún archivo
FirewallRules: [{AE6469C7-D24A-4551-BD4B-8AD252AF67DD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{00AA4D4D-D20F-41A8-BE70-F5F29EDB8C5B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AE182298-108E-4D6B-8F76-22909CED2F0E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{DDF2A567-2990-4F06-B0A5-87934F0FDD4E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{863369D7-E10E-44C2-A794-7A5F32A181B8}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => Ningún archivo
FirewallRules: [UDP Query User{9F04DDB8-B562-43ED-AC37-294E8576455F}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => Ningún archivo
FirewallRules: [{6F316924-4B83-4620-8E7C-A584AC0C8C68}] => (Allow) D:\Games\Grand Theft Auto V\GTA5.exe => Ningún archivo
FirewallRules: [{4736B798-E48E-4EED-8CB2-8B260C8906BD}] => (Allow) D:\Games\Grand Theft Auto V\GTA5.exe => Ningún archivo
FirewallRules: [{0FBD85D9-B644-400F-B3E3-C1D43EFEB89D}] => (Block) %ProgramFiles%\CCleaner\CCleaner64.exe => Ningún archivo
FirewallRules: [{F34D378A-8F97-4BD9-98D7-67063C48EC20}] => (Block) %ProgramFiles%\CCleaner\CCleaner64.exe => Ningún archivo
FirewallRules: [{09CE20EA-4D76-4140-B591-40F3206539C5}] => (Block) C:\Program Files\Topaz Labs\Topaz A.I. Gigapixel\Topaz A.I. Gigapixel.exe () [Archivo no firmado]
FirewallRules: [{6B1B6D39-0019-4827-B202-7A027B041CE1}] => (Block) C:\Program Files\Topaz Labs\Topaz A.I. Gigapixel\Topaz A.I. Gigapixel.exe () [Archivo no firmado]
FirewallRules: [{AB4CDDDC-ABB8-4B1E-B7B7-3A689561030A}] => (Block) %ProgramFiles%\Pano2VR6\pano2vr.exe => Ningún archivo
FirewallRules: [{E6BFB984-7B9E-4758-AEB2-F3EC650260A5}] => (Block) %ProgramFiles%\Pano2VR6\pano2vr.exe => Ningún archivo
FirewallRules: [TCP Query User{0D52CB2B-7D5B-481F-B65F-1B3E9D9248D6}C:\program files\jetbrains\pycharm community edition 2020.1\bin\pycharm64.exe] => (Allow) C:\program files\jetbrains\pycharm community edition 2020.1\bin\pycharm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [UDP Query User{8B054C92-D9B1-495C-A18C-4849380E83CF}C:\program files\jetbrains\pycharm community edition 2020.1\bin\pycharm64.exe] => (Allow) C:\program files\jetbrains\pycharm community edition 2020.1\bin\pycharm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.)
FirewallRules: [TCP Query User{25500307-6EB8-4A4D-953C-BA9EAC7C1545}C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [UDP Query User{CE5EF259-CFD1-4E62-BEDD-87B0E4280B28}C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [TCP Query User{78A43E61-99AE-496A-9EDA-84E5E8916F84}C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe => Ningún archivo
FirewallRules: [UDP Query User{D1E26095-B3F8-4618-A21C-A0198D01D4D6}C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe => Ningún archivo
FirewallRules: [TCP Query User{E00E256F-50FC-48F0-AAF8-706E6589F893}C:\program files\pylo\mcreator\jdk\bin\java.exe] => (Allow) C:\program files\pylo\mcreator\jdk\bin\java.exe => Ningún archivo
FirewallRules: [UDP Query User{0A5AD6A9-74C5-491A-916C-036E7BA6654C}C:\program files\pylo\mcreator\jdk\bin\java.exe] => (Allow) C:\program files\pylo\mcreator\jdk\bin\java.exe => Ningún archivo
FirewallRules: [TCP Query User{A3B15CCF-5887-4ED8-9CC0-9FA0C8016D55}C:\users\unai\appdata\local\programs\runway\runway.exe] => (Allow) C:\users\unai\appdata\local\programs\runway\runway.exe (Runway AI, Inc. -> Runway AI, Inc.)
FirewallRules: [UDP Query User{08F39088-D161-4E5C-9AD7-DA471F005ED3}C:\users\unai\appdata\local\programs\runway\runway.exe] => (Allow) C:\users\unai\appdata\local\programs\runway\runway.exe (Runway AI, Inc. -> Runway AI, Inc.)
FirewallRules: [TCP Query User{5891F212-7E9C-4E4B-8B4F-545345E68A61}C:\program files\allegorithmic\substance designer\substance designer.exe] => (Allow) C:\program files\allegorithmic\substance designer\substance designer.exe => Ningún archivo
FirewallRules: [UDP Query User{5F4D208E-F13A-4871-8ACF-743CCF12B0B5}C:\program files\allegorithmic\substance designer\substance designer.exe] => (Allow) C:\program files\allegorithmic\substance designer\substance designer.exe => Ningún archivo
FirewallRules: [TCP Query User{3BC8E72A-0544-4A4A-B310-D5F8C6DC42FB}C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe] => (Allow) C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe => Ningún archivo
FirewallRules: [UDP Query User{E8210075-76A4-4457-A0B7-63BB256A5790}C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe] => (Allow) C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe => Ningún archivo
FirewallRules: [TCP Query User{D69D5100-E56D-44B8-80AF-345FB3D30EDB}D:\games\gtav\gta5.exe] => (Allow) D:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{237759CD-4BF1-4F41-9F7B-30D86B119E98}D:\games\gtav\gta5.exe] => (Allow) D:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{A15B19E7-230A-4E21-9DC5-E7DCA8053D8B}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{4931D4B4-07FB-4914-BF4D-B4C64E3068EA}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{04CDEF76-CBA9-44E5-9B28-0EB2800B81D0}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{13DF19EA-20A8-49A0-B867-6FB01ACFAB03}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [TCP Query User{DEA2D4E5-3F06-4F75-B9D8-CB7528DE8988}C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe => Ningún archivo
FirewallRules: [UDP Query User{44AB4280-A194-43BC-84C3-17ADA59C505F}C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe => Ningún archivo
FirewallRules: [TCP Query User{57CE4B2D-8191-4B29-A1AA-14D8D6824628}C:\program files (x86)\antichamber\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\antichamber\binaries\win32\udk.exe => Ningún archivo
FirewallRules: [UDP Query User{BFFCC00D-7890-4D96-87DA-74E99C4DDCD2}C:\program files (x86)\antichamber\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\antichamber\binaries\win32\udk.exe => Ningún archivo
FirewallRules: [TCP Query User{087B8F19-5B78-4CC8-9E30-7D298303D870}C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe] => (Allow) C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe => Ningún archivo
FirewallRules: [UDP Query User{7F091A7B-D095-443A-8C44-C07F53308910}C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe] => (Allow) C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe => Ningún archivo
FirewallRules: [{8F2D294B-C496-4DEC-9F13-603FFC1D2AEE}] => (Allow) C:\Program Files (x86)\Sony\PS4 Remote Play\RemotePlay.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [TCP Query User{20C37A0C-A15F-4FA3-B783-EB4296508B83}C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe] => (Allow) C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe => Ningún archivo
FirewallRules: [UDP Query User{993E60CB-7D7A-416C-8AA2-099D59FD8DB9}C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe] => (Allow) C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe => Ningún archivo
FirewallRules: [TCP Query User{A500E6B9-134C-47B3-947E-AACDEBCC02CE}C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe] => (Allow) C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe => Ningún archivo
FirewallRules: [UDP Query User{72965F9A-242D-4163-8668-1BA91A5FA0E4}C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe] => (Allow) C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe => Ningún archivo
FirewallRules: [TCP Query User{15742C18-7218-4132-9787-1DFB2E3819F8}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{BBCE6C5D-D570-400C-AFE8-1DF61B33F4D7}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{8BC2359D-A725-4A65-994A-C063F97013F2}C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe] => (Allow) C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe => Ningún archivo
FirewallRules: [UDP Query User{3F651170-1964-4A50-85A4-A005F90FD336}C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe] => (Allow) C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe => Ningún archivo
FirewallRules: [TCP Query User{F83B17B5-8AD9-469F-8998-910ABCDD991C}C:\program files\nvidia corporation\nvidia nsight systems 2019.3.7\target-windows\x86_64\nsight-sys-agent.exe] => (Allow) C:\program files\nvidia corporation\nvidia nsight systems 2019.3.7\target-windows\x86_64\nsight-sys-agent.exe (NVIDIA Corporation -> )
FirewallRules: [UDP Query User{442BC4C6-EA69-4904-8576-A4C352CA72B9}C:\program files\nvidia corporation\nvidia nsight systems 2019.3.7\target-windows\x86_64\nsight-sys-agent.exe] => (Allow) C:\program files\nvidia corporation\nvidia nsight systems 2019.3.7\target-windows\x86_64\nsight-sys-agent.exe (NVIDIA Corporation -> )
FirewallRules: [TCP Query User{18B23F93-0F79-4276-9177-1B7796DAA92E}D:\games\subnautica below zero\subnauticazero.exe] => (Allow) D:\games\subnautica below zero\subnauticazero.exe => Ningún archivo
FirewallRules: [UDP Query User{0C625F98-8AA3-4F00-8175-9A92E80D73C3}D:\games\subnautica below zero\subnauticazero.exe] => (Allow) D:\games\subnautica below zero\subnauticazero.exe => Ningún archivo
FirewallRules: [TCP Query User{978032F1-221B-4EAE-A4A3-628D9179047F}C:\games\the escapists 2\theescapists2.exe] => (Allow) C:\games\the escapists 2\theescapists2.exe => Ningún archivo
FirewallRules: [UDP Query User{A485A2BA-518F-4AEF-8CE4-1C2AC4913A32}C:\games\the escapists 2\theescapists2.exe] => (Allow) C:\games\the escapists 2\theescapists2.exe => Ningún archivo
FirewallRules: [{064AC7C7-B6E1-4EF7-861D-3BD92403BE51}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.)
FirewallRules: [{15C10421-4217-44F8-9540-FB90085A7B98}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> BigNox Corporation)
FirewallRules: [TCP Query User{702B12D9-B329-4091-AED7-5CA060AC52B1}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe => Ningún archivo
FirewallRules: [UDP Query User{DC4ADADA-B385-452D-A01C-3DE9CC43940B}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe => Ningún archivo
FirewallRules: [TCP Query User{4AEDFD50-6AB7-476B-A8B9-016466ADE5EF}D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe] => (Allow) D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe => Ningún archivo
FirewallRules: [UDP Query User{1D0A7060-4D0A-45D0-929A-4CBCC885B802}D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe] => (Allow) D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe => Ningún archivo
FirewallRules: [TCP Query User{9A679723-12B2-46B6-91A6-CDF2515085B2}D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe] => (Allow) D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe => Ningún archivo
FirewallRules: [UDP Query User{8CD5C656-71A2-4084-87C2-A6D20D0CB0C6}D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe] => (Allow) D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe => Ningún archivo
FirewallRules: [TCP Query User{7AEE47B3-EEB9-47E4-9F15-4DD9BC98D426}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe => Ningún archivo
FirewallRules: [UDP Query User{6DF02CA6-916C-47EC-80FE-E90A1062FC81}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe => Ningún archivo
FirewallRules: [TCP Query User{E18B9ADD-07DF-4B22-B72E-200E50C687F9}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{6AF87126-6691-46AD-B1B5-11CCE0412E91}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{CB7226F1-7296-4B16-B2E6-33BDE63332B9}C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [UDP Query User{0B8AE8F6-C7A1-4AC4-A5E7-8D172EB75F13}C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\unai\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [TCP Query User{86B70E9F-4F11-4123-8A17-D9AE003E50F3}D:\games\gtav\gta5.exe] => (Allow) D:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{294A61C4-070F-4ABB-AE26-EEC4EDC7BAFB}D:\games\gtav\gta5.exe] => (Allow) D:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{51CB5C56-31D3-4E22-9C5D-DE663CD6A7E9}] => (Allow) LPort=13364
FirewallRules: [{BB436580-B7D3-4CC1-A876-A1F09FF82DDC}] => (Allow) LPort=13621
FirewallRules: [{D2D1DBAA-4D5F-4E2B-9B46-10364DF6AF35}] => (Allow) LPort=13107
FirewallRules: [{A875655E-811C-431D-9294-DA84A8686C45}] => (Allow) LPort=69
FirewallRules: [{C46A634C-0337-49D9-B227-4F2D4BDDE819}] => (Allow) D:\Games\TrackmaniaNext\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [{5CDBF5D8-5600-4394-8D78-02B537D3ED9A}] => (Allow) D:\Games\TrackmaniaNext\trackmania.exe (NADEO SASU -> Nadeo)
FirewallRules: [TCP Query User{F814DA14-07CC-41E9-BD71-EEA43F1F08B6}C:\program files (x86)\send anywhere\send anywhere.exe] => (Allow) C:\program files (x86)\send anywhere\send anywhere.exe (Estmob Inc. -> Estmob Inc.)
FirewallRules: [UDP Query User{2B499B3C-A3EC-4875-A705-9A16BD9B2AF2}C:\program files (x86)\send anywhere\send anywhere.exe] => (Allow) C:\program files (x86)\send anywhere\send anywhere.exe (Estmob Inc. -> Estmob Inc.)
FirewallRules: [TCP Query User{37875A56-BD9B-419B-B922-145D5E03F5E0}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{54B515C3-3719-4074-A085-FE8CA1C4BA80}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{619A4D61-331D-4505-9458-29DBE607631B}] => (Block) %ProgramFiles%\Topaz Labs LLC\Topaz Video Enhance AI\Topaz Video Enhance AI.exe => Ningún archivo
FirewallRules: [{BA1C05AE-556C-4E8B-B2D0-2F81FBFAD3B0}] => (Block) %ProgramFiles%\Topaz Labs LLC\Topaz Video Enhance AI\Topaz Video Enhance AI.exe => Ningún archivo
FirewallRules: [{D05A8DB9-906D-4DED-8323-8878E8D0D9E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe => Ningún archivo
FirewallRules: [{B23573A7-580F-40AD-9AEB-4DD17BF1E66B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe => Ningún archivo
FirewallRules: [{E027D222-D57E-474D-B745-CAF624DBD983}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngine\system\LaunchPad.exe => Ningún archivo
FirewallRules: [{E1F6BEE6-11CF-4226-BF64-ED3269A9EA1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngine\system\LaunchPad.exe => Ningún archivo
FirewallRules: [{97293614-458E-4397-9FC4-7209B997051B}] => (Allow) D:\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe (SpaceEngine) [Archivo no firmado]
FirewallRules: [{E3505013-D932-4AE5-84B0-4448A1B3800D}] => (Allow) D:\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe (SpaceEngine) [Archivo no firmado]
FirewallRules: [{8ADBF842-A4E3-4A52-9B41-2A5DE6B400CF}] => (Allow) D:\Steam\steamapps\common\SpaceEngine\system\LaunchPad.exe () [Archivo no firmado]
FirewallRules: [{C9B59FB8-3C03-4858-B35B-CC09268EEE64}] => (Allow) D:\Steam\steamapps\common\SpaceEngine\system\LaunchPad.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{CFE45F16-AE52-4D5D-B41D-78B78D695EC7}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe => Ningún archivo
FirewallRules: [UDP Query User{07156FD5-2756-4836-857A-8C9CFA914CD7}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe => Ningún archivo
FirewallRules: [TCP Query User{F7D9FAA6-8298-4FF8-8F51-2CEB5DD774E7}C:\users\unai\appdata\local\programs\runway\runway.exe] => (Allow) C:\users\unai\appdata\local\programs\runway\runway.exe (Runway AI, Inc. -> Runway AI, Inc.)
FirewallRules: [UDP Query User{305CB9AC-20DF-4C97-9DC2-0CB18FB70641}C:\users\unai\appdata\local\programs\runway\runway.exe] => (Allow) C:\users\unai\appdata\local\programs\runway\runway.exe (Runway AI, Inc. -> Runway AI, Inc.)
FirewallRules: [TCP Query User{46D239E3-83CC-49D1-8441-87BD1D51BA56}C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe] => (Allow) C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe => Ningún archivo
FirewallRules: [UDP Query User{39DE374E-899A-4FAF-9291-72B6A70EBD64}C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe] => (Allow) C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe => Ningún archivo
FirewallRules: [{EB997D69-A347-4B4F-8F36-2742DE90717B}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{D36EF1FD-B5BF-4E88-A695-EC73B7447D58}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{28E98919-343F-4975-8065-BC6049123609}D:\descargas\openspace-0.15.2\bin\openspace.exe] => (Allow) D:\descargas\openspace-0.15.2\bin\openspace.exe => Ningún archivo
FirewallRules: [UDP Query User{84CB2090-8FA0-4C7A-9B0D-B4086A908597}D:\descargas\openspace-0.15.2\bin\openspace.exe] => (Allow) D:\descargas\openspace-0.15.2\bin\openspace.exe => Ningún archivo
FirewallRules: [TCP Query User{3E233A1D-DF7C-437A-BBC3-578F0D0C5719}D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe] => (Allow) D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe => Ningún archivo
FirewallRules: [UDP Query User{813F353C-F126-4069-9392-999C127921DA}D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe] => (Allow) D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe => Ningún archivo
FirewallRules: [TCP Query User{8195AC5A-C574-4210-B47B-34045D25F06B}C:\program files\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_261\bin\javaw.exe
FirewallRules: [UDP Query User{CB9148E2-9CD1-468A-9D21-827AA97A79ED}C:\program files\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_261\bin\javaw.exe
FirewallRules: [{CD70CBC1-BE73-4745-82EB-78473CD31953}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7C81400F-3DB6-4D17-AA30-2F0EC0F7D8D2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D9DB0B1A-F873-47A5-9F0E-161B9F90BE6A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{093EAF2E-18C8-4BA0-B8EC-535F9493ABE8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F532DB19-2B2E-4BA0-951A-F65D5556CFC6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{7F40463A-72D3-41F1-8717-7F90CBD2DA8F}C:\program files\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_261\bin\javaw.exe
FirewallRules: [UDP Query User{F55434D0-5655-4484-8E45-EFEEBE9720BF}C:\program files\java\jre1.8.0_261\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_261\bin\javaw.exe
FirewallRules: [TCP Query User{41D7E904-F1C1-4924-B12F-687A1FDD9071}D:\games\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\games\microsoft flight simulator 2020\flightsimulator.exe => Ningún archivo
FirewallRules: [UDP Query User{13B23615-3893-4893-AB43-9DB190476EA5}D:\games\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\games\microsoft flight simulator 2020\flightsimulator.exe => Ningún archivo
FirewallRules: [TCP Query User{BFD05691-D562-4F5D-9592-07C2FDB5DB48}D:\games\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\games\microsoft flight simulator 2020\flightsimulator.exe => Ningún archivo
FirewallRules: [UDP Query User{3C7CF76F-84F2-408A-B34F-AE4D58F4B7CE}D:\games\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\games\microsoft flight simulator 2020\flightsimulator.exe => Ningún archivo
FirewallRules: [{8D1AE0EA-053A-48FD-B42C-E2C5414D3561}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{C0D2B734-DF7C-4593-B00C-CD7618A82D42}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{47AE5B1D-45B4-4BC7-8242-C1A6B0073690}] => (Allow) C:\Program Files (x86)\PHDGuiding2\phd2.exe () [Archivo no firmado]
FirewallRules: [{70A9EE6E-A11E-4419-A26F-199813B007FE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{0ED2BC1D-7B00-4495-82C8-10D74E6A8053}] => (Allow) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{57C551AA-2B57-48D3-94AF-CDE0E6805CF1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8B0C8545-7E6D-4B79-A1EE-8E9024F083B1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{70A3F7B1-D70D-4D26-94D1-9D739F3745E5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F604B9D3-CB25-4D7C-880E-21464B670DDB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{27F80D4D-6AE0-4933-95C8-A8A88AD30B0E}D:\games\volcanoids\volcanoids.exe] => (Allow) D:\games\volcanoids\volcanoids.exe => Ningún archivo
FirewallRules: [UDP Query User{325CF2DA-DF8D-4D12-92E4-E724DE16E779}D:\games\volcanoids\volcanoids.exe] => (Allow) D:\games\volcanoids\volcanoids.exe => Ningún archivo

==================== Puntos de Restauración =========================

09-09-2020 15:51:03 Installed Agisoft Metashape Professional
13-09-2020 01:22:27 Instalador de Módulos de Windows
13-09-2020 01:32:32 Instalador de Módulos de Windows
13-09-2020 01:34:23 Instalador de Módulos de Windows

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (09/15/2020 03:56:25 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: P-UNAI)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (09/15/2020 03:52:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: FreemakeUtilsService.exe, versión: 1.0.0.0, marca de tiempo: 0x5d9b4efd
Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.19041.488, marca de tiempo: 0x42f14898
Código de excepción: 0xe0434352
Desplazamiento de errores: 0x00129962
Identificador del proceso con errores: 0x10a8
Hora de inicio de la aplicación con errores: 0x01d68b676860bce3
Ruta de acceso de la aplicación con errores: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNELBASE.dll
Identificador del informe: b96be340-0835-4aa3-a529-f806681db44c
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:

Error: (09/15/2020 03:52:10 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplicación: FreemakeUtilsService.exe
Versión de Framework: v4.0.30319
Descripción: el proceso terminó debido a una excepción no controlada.
Información de la excepción: System.IO.FileNotFoundException
en FreemakeUtilsService.Program.Main(System.String[])

Error: (09/15/2020 03:51:45 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.

Error: (09/15/2020 03:51:45 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]

Error: (09/15/2020 03:49:52 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: P-UNAI)
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (09/15/2020 03:45:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: FreemakeUtilsService.exe, versión: 1.0.0.0, marca de tiempo: 0x5d9b4efd
Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.19041.488, marca de tiempo: 0x42f14898
Código de excepción: 0xe0434352
Desplazamiento de errores: 0x00129962
Identificador del proceso con errores: 0x1040
Hora de inicio de la aplicación con errores: 0x01d68b667b9bc122
Ruta de acceso de la aplicación con errores: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNELBASE.dll
Identificador del informe: f03b8586-a8dc-4923-a992-8a0950b1f5f5
Nombre completo del paquete con errores:
Identificador de aplicación relativa del paquete con errores:

Error: (09/15/2020 03:45:33 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplicación: FreemakeUtilsService.exe
Versión de Framework: v4.0.30319
Descripción: el proceso terminó debido a una excepción no controlada.
Información de la excepción: System.IO.FileNotFoundException
en FreemakeUtilsService.Program.Main(System.String[])


Errores del sistema:
=============
Error: (09/15/2020 03:52:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Freemake Improver no pudo iniciarse debido al siguiente error:
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (09/15/2020 03:52:22 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (45000 ms) para la conexión con el servicio Freemake Improver.

Error: (09/15/2020 03:52:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio com.docker.service no pudo iniciarse debido al siguiente error:
El sistema no puede encontrar el archivo especificado.

Error: (09/15/2020 03:51:46 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.

Ruta de acceso del módulo: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (09/15/2020 03:51:46 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.

Ruta de acceso del módulo: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (09/15/2020 03:51:33 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.

Ruta de acceso del módulo: C:\WINDOWS\System32\bcmihvsrv64.dll

Error: (09/15/2020 03:51:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) SUR QC Software Asset Manager se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (09/15/2020 03:51:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Energy Server Service queencreek se terminó de manera inesperada. Esto ha sucedido 1 veces.


Windows Defender:
===================================
Date: 2020-04-03 21:03:34.7180000Z
Description:
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
Nombre: HackTool:MSIL/AutoKMS
Id.: 2147711767
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\KMSELDI.exe; regkey:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1; uninstall:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: P-UNAI\Unai
Nombre de proceso: C:\Windows\explorer.exe
Versión de inteligencia de seguridad: AV: 1.313.696.0, AS: 1.313.696.0, NIS: 1.313.696.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-04-03 21:02:15.7730000Z
Description:
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
Nombre: HackTool:MSIL/AutoKMS
Id.: 2147711767
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\KMSELDI.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: P-UNAI\Unai
Nombre de proceso: C:\Windows\explorer.exe
Versión de inteligencia de seguridad: AV: 1.313.696.0, AS: 1.313.696.0, NIS: 1.313.696.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-04-03 20:55:23.8200000Z
Description:
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
Nombre: HackTool:MSIL/AutoKMS
Id.: 2147711767
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Program Files\KMSpico\Service_KMS.exe; process:_pid:4132,ProcessStart:132304130147704242; service:_Service KMSELDI
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Sistema
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Program Files\KMSpico\Service_KMS.exe
Versión de inteligencia de seguridad: AV: 1.313.696.0, AS: 1.313.696.0, NIS: 1.313.696.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-04-03 20:54:48.4150000Z
Description:
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
Nombre: HackTool:Win64/AutoKMS
Id.: 2147723334
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Windows\SECOH-QAD.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: NT AUTHORITY\Servicio de red
Nombre de proceso: C:\Windows\System32\svchost.exe
Versión de inteligencia de seguridad: AV: 1.313.696.0, AS: 1.313.696.0, NIS: 1.313.696.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-04-03 20:53:47.5600000Z
Description:
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
Nombre: HackTool:Win64/AutoKMS
Id.: 2147723334
Gravedad: Alta
Categoría: Herramienta
Ruta de acceso: file:_C:\Windows\SECOH-QAD.exe
Origen de detección: Equipo local
Tipo de detección: Concreto
Origen de detección: Protección en tiempo real
Usuario: NT AUTHORITY\Servicio de red
Nombre de proceso: C:\Windows\System32\svchost.exe
Versión de inteligencia de seguridad: AV: 1.313.696.0, AS: 1.313.696.0, NIS: 1.313.696.0
Versión de motor: AM: 1.1.16900.4, NIS: 1.1.16900.4

CodeIntegrity:
===================================

Date: 2020-09-15 15:54:30.5350000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-15 15:54:29.2410000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-15 15:54:28.7180000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-15 15:54:28.5290000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-15 15:54:28.5030000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-15 15:54:23.1860000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-15 15:54:23.1480000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-09-15 15:54:23.0340000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Información de la memoria ===========================

BIOS: Phoenix Technologies Ltd. V2.18 06/21/2013
Placa base: Acer Aspire V5-571G
Procesador: Intel(R) Core(TM) i5-3337U CPU @ 1.80GHz
Porcentaje de memoria en uso: 63%
RAM física total: 7987.6 MB
RAM física disponible: 2950.51 MB
Virtual total: 15411.6 MB
Virtual disponible: 10498.17 MB

==================== Unidades ================================

Drive c: () (Fixed) (Total:232.25 GB) (Free:111.16 GB) NTFS
Drive d: () (Fixed) (Total:464.27 GB) (Free:293.67 GB) NTFS

\\?\Volume{03dabd73-8578-45c2-ba0f-344756d1044e}\ (Recuperación) (Fixed) (Total:0.52 GB) (Free:0.1 GB) NTFS
\\?\Volume{7fe4248a-b7b5-42d8-8f3f-c50fc5210513}\ (Recuperación) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{0a84978b-2aae-4261-b62f-791d83e3eb80}\ () (Fixed) (Total:0.94 GB) (Free:0.44 GB) NTFS
\\?\Volume{17419fab-3592-4980-a779-fbf3bcac8908}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{455f4fb7-20e7-4f44-8cb1-4cca9101628a}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: C6C23B8F)

Partition: GPT.

==========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: EA25150E)

Partition: GPT.

==================== Final de Addition.txt =======================
 

Broni

Posts: 55,589   +494
Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST(FRST64) and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
 

Attachments

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #19
Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 13-09-2020
Ejecutado por Unai (16-09-2020 15:05:56) Run:1
Ejecutado desde C:\Users\Unai\Desktop
Perfiles cargados: Unai
Modo de Inicio: Normal
==============================================

fixlist contenido:
*****************
HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\...\MountPoints2: {91940010-a749-11ea-a4ff-083e8ee92650} - "D:\CMADownloader.exe"
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restricción <==== ATENCIÓN
S2 com.docker.service; "C:\Program Files\Docker\Docker\com.docker.service" [X]
S3 esihdrv; C:\Users\Unai\AppData\Local\Temp\esihdrv.sys [205464 2020-09-15] (ESET, spol. s r.o. -> ESET) <==== ATENCIÓN
U4 AppMgmt; no ImagePath
U4 CscService; no ImagePath
U4 napagent; no ImagePath
U4 PeerDistSvc; no ImagePath
S3 WinRing0_1_2_0; \??\C:\Users\Unai\Downloads\ThrottleStop 872\WinRing0x64.sys [X]
2020-08-22 17:26 - 2020-08-22 17:26 - 000000052 _____ () C:\Users\Unai\AppData\Roaming\.CLB
2020-08-22 17:26 - 2020-08-22 17:26 - 000000016 _____ () C:\Users\Unai\AppData\Roaming\.ICL
2020-08-22 17:26 - 2020-08-22 17:26 - 000000016 _____ () C:\Users\Unai\AppData\Roaming\.OBS
2020-04-20 21:37 - 2020-04-20 21:48 - 000009063 _____ () C:\Users\Unai\AppData\Roaming\ContactSheetII.log
2020-04-28 16:00 - 2020-04-28 16:00 - 000000128 ____H () C:\Users\Unai\AppData\Roaming\ecf00c38dc807e105d881c433a6b455dd2c606b6
2020-04-20 21:37 - 2020-04-20 21:48 - 000000715 _____ () C:\Users\Unai\AppData\Roaming\Hoja de contactos II.xml
2020-05-20 15:55 - 2020-05-20 15:55 - 000000364 _____ () C:\Users\Unai\AppData\Roaming\PureRef.ini
2020-08-20 19:00 - 2020-08-20 19:00 - 000000052 _____ () C:\Users\Unai\AppData\Roaming\_CLB.BAK
2020-08-20 19:00 - 2020-08-20 19:00 - 000000016 _____ () C:\Users\Unai\AppData\Roaming\_ICL.BAK
2020-08-20 19:00 - 2020-08-20 19:00 - 000000016 _____ () C:\Users\Unai\AppData\Roaming\_OBS.BAK
2020-06-04 20:51 - 2020-06-04 20:51 - 000000605 ___SH () C:\Users\Unai\AppData\Local\6w65fts3hvyxjkh27rv3e2vffcxrqra
2019-11-19 20:08 - 2019-11-19 20:08 - 001065984 _____ () C:\Users\Unai\AppData\Local\file__0.localstorage
2020-05-25 20:06 - 2020-06-06 14:09 - 000000000 _____ () C:\Users\Unai\AppData\Local\nsight-sys-agent.lock
2020-09-08 23:35 - 2020-09-08 23:35 - 000029300 _____ () C:\Users\Unai\AppData\Local\recently-used.xbel
2019-11-26 17:18 - 2020-06-04 13:30 - 000000015 _____ () C:\Users\Unai\AppData\Local\update_progress.txt
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Ningún archivo
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Ningún archivo
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Ningún archivo
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Ningún archivo
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Ningún archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Ningún archivo
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Ningún archivo
AlternateDataStreams: C:\Windows:nlsPreferences [386]
AlternateDataStreams: C:\Users\Unai\Datos de programa:iSpring Solutions [128]
AlternateDataStreams: C:\Users\Unai\AppData\Roaming:iSpring Solutions [128]
FirewallRules: [UDP Query User{8D295076-3841-4728-8D27-8150CE865A5D}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => Ningún archivo
FirewallRules: [TCP Query User{65C553F1-BAA3-4830-96E2-367461023FFC}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe => Ningún archivo
FirewallRules: [UDP Query User{4D536A3A-ADE3-421D-892A-DF45C6A46C09}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe => Ningún archivo
FirewallRules: [TCP Query User{8B36921B-ABFF-44EA-A35E-75C9859B2E34}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe => Ningún archivo
FirewallRules: [UDP Query User{DA20CDBA-63A9-40C3-BD7C-64F606A251E5}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe => Ningún archivo
FirewallRules: [TCP Query User{480D0A5B-C796-4342-88A7-7DC7015C0B8D}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe] => (Allow) C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe => Ningún archivo
FirewallRules: [TCP Query User{863369D7-E10E-44C2-A794-7A5F32A181B8}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => Ningún archivo
FirewallRules: [UDP Query User{9F04DDB8-B562-43ED-AC37-294E8576455F}C:\program files\java\jre1.8.0_241\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_241\bin\javaw.exe => Ningún archivo
FirewallRules: [{6F316924-4B83-4620-8E7C-A584AC0C8C68}] => (Allow) D:\Games\Grand Theft Auto V\GTA5.exe => Ningún archivo
FirewallRules: [{4736B798-E48E-4EED-8CB2-8B260C8906BD}] => (Allow) D:\Games\Grand Theft Auto V\GTA5.exe => Ningún archivo
FirewallRules: [{0FBD85D9-B644-400F-B3E3-C1D43EFEB89D}] => (Block) %ProgramFiles%\CCleaner\CCleaner64.exe => Ningún archivo
FirewallRules: [{F34D378A-8F97-4BD9-98D7-67063C48EC20}] => (Block) %ProgramFiles%\CCleaner\CCleaner64.exe => Ningún archivo
FirewallRules: [{AB4CDDDC-ABB8-4B1E-B7B7-3A689561030A}] => (Block) %ProgramFiles%\Pano2VR6\pano2vr.exe => Ningún archivo
FirewallRules: [{E6BFB984-7B9E-4758-AEB2-F3EC650260A5}] => (Block) %ProgramFiles%\Pano2VR6\pano2vr.exe => Ningún archivo
FirewallRules: [TCP Query User{78A43E61-99AE-496A-9EDA-84E5E8916F84}C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe => Ningún archivo
FirewallRules: [UDP Query User{D1E26095-B3F8-4618-A21C-A0198D01D4D6}C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe => Ningún archivo
FirewallRules: [TCP Query User{E00E256F-50FC-48F0-AAF8-706E6589F893}C:\program files\pylo\mcreator\jdk\bin\java.exe] => (Allow) C:\program files\pylo\mcreator\jdk\bin\java.exe => Ningún archivo
FirewallRules: [UDP Query User{0A5AD6A9-74C5-491A-916C-036E7BA6654C}C:\program files\pylo\mcreator\jdk\bin\java.exe] => (Allow) C:\program files\pylo\mcreator\jdk\bin\java.exe => Ningún archivo
FirewallRules: [TCP Query User{5891F212-7E9C-4E4B-8B4F-545345E68A61}C:\program files\allegorithmic\substance designer\substance designer.exe] => (Allow) C:\program files\allegorithmic\substance designer\substance designer.exe => Ningún archivo
FirewallRules: [UDP Query User{5F4D208E-F13A-4871-8ACF-743CCF12B0B5}C:\program files\allegorithmic\substance designer\substance designer.exe] => (Allow) C:\program files\allegorithmic\substance designer\substance designer.exe => Ningún archivo
FirewallRules: [TCP Query User{3BC8E72A-0544-4A4A-B310-D5F8C6DC42FB}C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe] => (Allow) C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe => Ningún archivo
FirewallRules: [UDP Query User{E8210075-76A4-4457-A0B7-63BB256A5790}C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe] => (Allow) C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe => Ningún archivo
FirewallRules: [TCP Query User{DEA2D4E5-3F06-4F75-B9D8-CB7528DE8988}C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe => Ningún archivo
FirewallRules: [UDP Query User{44AB4280-A194-43BC-84C3-17ADA59C505F}C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe => Ningún archivo
FirewallRules: [TCP Query User{57CE4B2D-8191-4B29-A1AA-14D8D6824628}C:\program files (x86)\antichamber\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\antichamber\binaries\win32\udk.exe => Ningún archivo
FirewallRules: [UDP Query User{BFFCC00D-7890-4D96-87DA-74E99C4DDCD2}C:\program files (x86)\antichamber\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\antichamber\binaries\win32\udk.exe => Ningún archivo
FirewallRules: [TCP Query User{087B8F19-5B78-4CC8-9E30-7D298303D870}C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe] => (Allow) C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe => Ningún archivo
FirewallRules: [UDP Query User{7F091A7B-D095-443A-8C44-C07F53308910}C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe] => (Allow) C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe => Ningún archivo
FirewallRules: [TCP Query User{20C37A0C-A15F-4FA3-B783-EB4296508B83}C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe] => (Allow) C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe => Ningún archivo
FirewallRules: [UDP Query User{993E60CB-7D7A-416C-8AA2-099D59FD8DB9}C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe] => (Allow) C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe => Ningún archivo
FirewallRules: [TCP Query User{A500E6B9-134C-47B3-947E-AACDEBCC02CE}C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe] => (Allow) C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe => Ningún archivo
FirewallRules: [UDP Query User{72965F9A-242D-4163-8668-1BA91A5FA0E4}C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe] => (Allow) C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe => Ningún archivo
FirewallRules: [TCP Query User{8BC2359D-A725-4A65-994A-C063F97013F2}C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe] => (Allow) C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe => Ningún archivo
FirewallRules: [UDP Query User{3F651170-1964-4A50-85A4-A005F90FD336}C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe] => (Allow) C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe => Ningún archivo
FirewallRules: [TCP Query User{18B23F93-0F79-4276-9177-1B7796DAA92E}D:\games\subnautica below zero\subnauticazero.exe] => (Allow) D:\games\subnautica below zero\subnauticazero.exe => Ningún archivo
FirewallRules: [UDP Query User{0C625F98-8AA3-4F00-8175-9A92E80D73C3}D:\games\subnautica below zero\subnauticazero.exe] => (Allow) D:\games\subnautica below zero\subnauticazero.exe => Ningún archivo
FirewallRules: [TCP Query User{978032F1-221B-4EAE-A4A3-628D9179047F}C:\games\the escapists 2\theescapists2.exe] => (Allow) C:\games\the escapists 2\theescapists2.exe => Ningún archivo
FirewallRules: [UDP Query User{A485A2BA-518F-4AEF-8CE4-1C2AC4913A32}C:\games\the escapists 2\theescapists2.exe] => (Allow) C:\games\the escapists 2\theescapists2.exe => Ningún archivo
FirewallRules: [TCP Query User{702B12D9-B329-4091-AED7-5CA060AC52B1}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe => Ningún archivo
FirewallRules: [UDP Query User{DC4ADADA-B385-452D-A01C-3DE9CC43940B}C:\program files\qcma\qcma.exe] => (Allow) C:\program files\qcma\qcma.exe => Ningún archivo
FirewallRules: [TCP Query User{4AEDFD50-6AB7-476B-A8B9-016466ADE5EF}D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe] => (Allow) D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe => Ningún archivo
FirewallRules: [UDP Query User{1D0A7060-4D0A-45D0-929A-4CBCC885B802}D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe] => (Allow) D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe => Ningún archivo
FirewallRules: [TCP Query User{9A679723-12B2-46B6-91A6-CDF2515085B2}D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe] => (Allow) D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe => Ningún archivo
FirewallRules: [UDP Query User{8CD5C656-71A2-4084-87C2-A6D20D0CB0C6}D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe] => (Allow) D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe => Ningún archivo
FirewallRules: [TCP Query User{7AEE47B3-EEB9-47E4-9F15-4DD9BC98D426}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe => Ningún archivo
FirewallRules: [UDP Query User{6DF02CA6-916C-47EC-80FE-E90A1062FC81}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe => Ningún archivo
FirewallRules: [{619A4D61-331D-4505-9458-29DBE607631B}] => (Block) %ProgramFiles%\Topaz Labs LLC\Topaz Video Enhance AI\Topaz Video Enhance AI.exe => Ningún archivo
FirewallRules: [{BA1C05AE-556C-4E8B-B2D0-2F81FBFAD3B0}] => (Block) %ProgramFiles%\Topaz Labs LLC\Topaz Video Enhance AI\Topaz Video Enhance AI.exe => Ningún archivo
FirewallRules: [{D05A8DB9-906D-4DED-8323-8878E8D0D9E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe => Ningún archivo
FirewallRules: [{B23573A7-580F-40AD-9AEB-4DD17BF1E66B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngine\system\SpaceEngine.exe => Ningún archivo
FirewallRules: [{E027D222-D57E-474D-B745-CAF624DBD983}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngine\system\LaunchPad.exe => Ningún archivo
FirewallRules: [{E1F6BEE6-11CF-4226-BF64-ED3269A9EA1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngine\system\LaunchPad.exe => Ningún archivo
FirewallRules: [TCP Query User{CFE45F16-AE52-4D5D-B41D-78B78D695EC7}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe => Ningún archivo
FirewallRules: [UDP Query User{07156FD5-2756-4836-857A-8C9CFA914CD7}C:\program files\java\jre1.8.0_251\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_251\bin\javaw.exe => Ningún archivo
FirewallRules: [TCP Query User{46D239E3-83CC-49D1-8441-87BD1D51BA56}C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe] => (Allow) C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe => Ningún archivo
FirewallRules: [UDP Query User{39DE374E-899A-4FAF-9291-72B6A70EBD64}C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe] => (Allow) C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe => Ningún archivo
FirewallRules: [TCP Query User{28E98919-343F-4975-8065-BC6049123609}D:\descargas\openspace-0.15.2\bin\openspace.exe] => (Allow) D:\descargas\openspace-0.15.2\bin\openspace.exe => Ningún archivo
FirewallRules: [UDP Query User{84CB2090-8FA0-4C7A-9B0D-B4086A908597}D:\descargas\openspace-0.15.2\bin\openspace.exe] => (Allow) D:\descargas\openspace-0.15.2\bin\openspace.exe => Ningún archivo
FirewallRules: [TCP Query User{3E233A1D-DF7C-437A-BBC3-578F0D0C5719}D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe] => (Allow) D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe => Ningún archivo
FirewallRules: [UDP Query User{813F353C-F126-4069-9392-999C127921DA}D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe] => (Allow) D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe => Ningún archivo
FirewallRules: [TCP Query User{41D7E904-F1C1-4924-B12F-687A1FDD9071}D:\games\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\games\microsoft flight simulator 2020\flightsimulator.exe => Ningún archivo
FirewallRules: [UDP Query User{13B23615-3893-4893-AB43-9DB190476EA5}D:\games\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\games\microsoft flight simulator 2020\flightsimulator.exe => Ningún archivo
FirewallRules: [TCP Query User{BFD05691-D562-4F5D-9592-07C2FDB5DB48}D:\games\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\games\microsoft flight simulator 2020\flightsimulator.exe => Ningún archivo
FirewallRules: [UDP Query User{3C7CF76F-84F2-408A-B34F-AE4D58F4B7CE}D:\games\microsoft flight simulator 2020\flightsimulator.exe] => (Allow) D:\games\microsoft flight simulator 2020\flightsimulator.exe => Ningún archivo
FirewallRules: [TCP Query User{27F80D4D-6AE0-4933-95C8-A8A88AD30B0E}D:\games\volcanoids\volcanoids.exe] => (Allow) D:\games\volcanoids\volcanoids.exe => Ningún archivo
FirewallRules: [UDP Query User{325CF2DA-DF8D-4D12-92E4-E724DE16E779}D:\games\volcanoids\volcanoids.exe] => (Allow) D:\games\volcanoids\volcanoids.exe => Ningún archivo


*****************

HKU\S-1-5-21-2954361111-2295329619-4222815306-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{91940010-a749-11ea-a4ff-083e8ee92650} => eliminado correctamente
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => eliminado correctamente
HKLM\System\CurrentControlSet\Services\com.docker.service => eliminado correctamente
com.docker.service => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\esihdrv => eliminado correctamente
esihdrv => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\AppMgmt => eliminado correctamente
AppMgmt => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\CscService => eliminado correctamente
CscService => servicio eliminado correctamente
"HKLM\System\CurrentControlSet\Services\napagent" => eliminado correctamente
napagent => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\PeerDistSvc => eliminado correctamente
PeerDistSvc => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\WinRing0_1_2_0 => eliminado correctamente
WinRing0_1_2_0 => servicio eliminado correctamente
C:\Users\Unai\AppData\Roaming\.CLB => movido correctamente
C:\Users\Unai\AppData\Roaming\.ICL => movido correctamente
C:\Users\Unai\AppData\Roaming\.OBS => movido correctamente
C:\Users\Unai\AppData\Roaming\ContactSheetII.log => movido correctamente
C:\Users\Unai\AppData\Roaming\ecf00c38dc807e105d881c433a6b455dd2c606b6 => movido correctamente
C:\Users\Unai\AppData\Roaming\Hoja de contactos II.xml => movido correctamente
C:\Users\Unai\AppData\Roaming\PureRef.ini => movido correctamente
C:\Users\Unai\AppData\Roaming\_CLB.BAK => movido correctamente
C:\Users\Unai\AppData\Roaming\_ICL.BAK => movido correctamente
C:\Users\Unai\AppData\Roaming\_OBS.BAK => movido correctamente
C:\Users\Unai\AppData\Local\6w65fts3hvyxjkh27rv3e2vffcxrqra => movido correctamente
C:\Users\Unai\AppData\Local\file__0.localstorage => movido correctamente
C:\Users\Unai\AppData\Local\nsight-sys-agent.lock => movido correctamente
C:\Users\Unai\AppData\Local\recently-used.xbel => movido correctamente
C:\Users\Unai\AppData\Local\update_progress.txt => movido correctamente
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Pending) => invalid subkey removed.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced) => invalid subkey removed.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing) => invalid subkey removed.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Pending) => invalid subkey removed.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced) => invalid subkey removed.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing) => invalid subkey removed.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => eliminado correctamente
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => eliminado correctamente
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\MEGA (Context menu) => eliminado correctamente
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\MEGA (Context menu) => eliminado correctamente
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\MEGA (Context menu) => eliminado correctamente
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => eliminado correctamente
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MEGA (Context menu) => eliminado correctamente
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => eliminado correctamente
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => eliminado correctamente
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => eliminado correctamente
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => eliminado correctamente
C:\Windows => ":nlsPreferences" ADS eliminado correctamente
C:\Users\Unai\Datos de programa => ":iSpring Solutions" ADS eliminado correctamente
"C:\Users\Unai\AppData\Roaming" => ":iSpring Solutions" ADS no encontrado.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8D295076-3841-4728-8D27-8150CE865A5D}C:\program files\java\jre1.8.0_231\bin\javaw.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{65C553F1-BAA3-4830-96E2-367461023FFC}C:\program files\java\jre1.8.0_231\bin\javaw.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{4D536A3A-ADE3-421D-892A-DF45C6A46C09}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8B36921B-ABFF-44EA-A35E-75C9859B2E34}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DA20CDBA-63A9-40C3-BD7C-64F606A251E5}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{480D0A5B-C796-4342-88A7-7DC7015C0B8D}C:\users\unai\appdata\roaming\bittorrent\btfs\btfs.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{863369D7-E10E-44C2-A794-7A5F32A181B8}C:\program files\java\jre1.8.0_241\bin\javaw.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9F04DDB8-B562-43ED-AC37-294E8576455F}C:\program files\java\jre1.8.0_241\bin\javaw.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F316924-4B83-4620-8E7C-A584AC0C8C68}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4736B798-E48E-4EED-8CB2-8B260C8906BD}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0FBD85D9-B644-400F-B3E3-C1D43EFEB89D}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F34D378A-8F97-4BD9-98D7-67063C48EC20}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AB4CDDDC-ABB8-4B1E-B7B7-3A689561030A}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E6BFB984-7B9E-4758-AEB2-F3EC650260A5}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{78A43E61-99AE-496A-9EDA-84E5E8916F84}C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D1E26095-B3F8-4618-A21C-A0198D01D4D6}C:\program files (x86)\common files\oracle\java\javapath_target_540456437\java.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E00E256F-50FC-48F0-AAF8-706E6589F893}C:\program files\pylo\mcreator\jdk\bin\java.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0A5AD6A9-74C5-491A-916C-036E7BA6654C}C:\program files\pylo\mcreator\jdk\bin\java.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5891F212-7E9C-4E4B-8B4F-545345E68A61}C:\program files\allegorithmic\substance designer\substance designer.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5F4D208E-F13A-4871-8ACF-743CCF12B0B5}C:\program files\allegorithmic\substance designer\substance designer.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3BC8E72A-0544-4A4A-B310-D5F8C6DC42FB}C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E8210075-76A4-4457-A0B7-63BB256A5790}C:\program files\allegorithmic\bitmap2material\3\bin64\bitmap2material.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DEA2D4E5-3F06-4F75-B9D8-CB7528DE8988}C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{44AB4280-A194-43BC-84C3-17ADA59C505F}C:\users\unai\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{57CE4B2D-8191-4B29-A1AA-14D8D6824628}C:\program files (x86)\antichamber\binaries\win32\udk.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{BFFCC00D-7890-4D96-87DA-74E99C4DDCD2}C:\program files (x86)\antichamber\binaries\win32\udk.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{087B8F19-5B78-4CC8-9E30-7D298303D870}C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7F091A7B-D095-443A-8C44-C07F53308910}C:\games\q.u.b.e. directors cut\binaries\win32\qubegame.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{20C37A0C-A15F-4FA3-B783-EB4296508B83}C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{993E60CB-7D7A-416C-8AA2-099D59FD8DB9}C:\games\ue_4.25\engine\binaries\win64\ue4editor.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A500E6B9-134C-47B3-947E-AACDEBCC02CE}C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{72965F9A-242D-4163-8668-1BA91A5FA0E4}C:\games\ue_4.25\engine\binaries\win64\crashreportclienteditor.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8BC2359D-A725-4A65-994A-C063F97013F2}C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{3F651170-1964-4A50-85A4-A005F90FD336}C:\games\ue_4.25\engine\binaries\dotnet\swarmagent.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{18B23F93-0F79-4276-9177-1B7796DAA92E}D:\games\subnautica below zero\subnauticazero.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0C625F98-8AA3-4F00-8175-9A92E80D73C3}D:\games\subnautica below zero\subnauticazero.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{978032F1-221B-4EAE-A4A3-628D9179047F}C:\games\the escapists 2\theescapists2.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A485A2BA-518F-4AEF-8CE4-1C2AC4913A32}C:\games\the escapists 2\theescapists2.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{702B12D9-B329-4091-AED7-5CA060AC52B1}C:\program files\qcma\qcma.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DC4ADADA-B385-452D-A01C-3DE9CC43940B}C:\program files\qcma\qcma.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4AEDFD50-6AB7-476B-A8B9-016466ADE5EF}D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1D0A7060-4D0A-45D0-929A-4CBCC885B802}D:\games\portal 2 complete\portal 2 complete\portal stories mel\portal2.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9A679723-12B2-46B6-91A6-CDF2515085B2}D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8CD5C656-71A2-4084-87C2-A6D20D0CB0C6}D:\games\portal 2 complete\portal 2 complete\portal 2\portal2.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{7AEE47B3-EEB9-47E4-9F15-4DD9BC98D426}C:\program files\java\jre1.8.0_251\bin\javaw.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6DF02CA6-916C-47EC-80FE-E90A1062FC81}C:\program files\java\jre1.8.0_251\bin\javaw.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{619A4D61-331D-4505-9458-29DBE607631B}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BA1C05AE-556C-4E8B-B2D0-2F81FBFAD3B0}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D05A8DB9-906D-4DED-8323-8878E8D0D9E9}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B23573A7-580F-40AD-9AEB-4DD17BF1E66B}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E027D222-D57E-474D-B745-CAF624DBD983}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E1F6BEE6-11CF-4226-BF64-ED3269A9EA1C}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CFE45F16-AE52-4D5D-B41D-78B78D695EC7}C:\program files\java\jre1.8.0_251\bin\javaw.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{07156FD5-2756-4836-857A-8C9CFA914CD7}C:\program files\java\jre1.8.0_251\bin\javaw.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{46D239E3-83CC-49D1-8441-87BD1D51BA56}C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{39DE374E-899A-4FAF-9291-72B6A70EBD64}C:\users\unai\downloads\mdung3_v1.3.2.0.4307136\minecraft_server.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{28E98919-343F-4975-8065-BC6049123609}D:\descargas\openspace-0.15.2\bin\openspace.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{84CB2090-8FA0-4C7A-9B0D-B4086A908597}D:\descargas\openspace-0.15.2\bin\openspace.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3E233A1D-DF7C-437A-BBC3-578F0D0C5719}D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{813F353C-F126-4069-9392-999C127921DA}D:\descargas\openspace-0.15.2\modules\webgui\ext\nodejs\node.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{41D7E904-F1C1-4924-B12F-687A1FDD9071}D:\games\microsoft flight simulator 2020\flightsimulator.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{13B23615-3893-4893-AB43-9DB190476EA5}D:\games\microsoft flight simulator 2020\flightsimulator.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BFD05691-D562-4F5D-9592-07C2FDB5DB48}D:\games\microsoft flight simulator 2020\flightsimulator.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{3C7CF76F-84F2-408A-B34F-AE4D58F4B7CE}D:\games\microsoft flight simulator 2020\flightsimulator.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{27F80D4D-6AE0-4933-95C8-A8A88AD30B0E}D:\games\volcanoids\volcanoids.exe" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{325CF2DA-DF8D-4D12-92E4-E724DE16E779}D:\games\volcanoids\volcanoids.exe" => eliminado correctamente

==== Final de Fixlog 15:06:01 ====
 

Broni

Posts: 55,589   +494
Last scans...

Download Security Check from here or here and save it to your Desktop.
  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.
NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run


Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
Make sure the following options are checked:
  • Internet Services
  • Windows Firewall
  • System Restore
  • Security Center
  • Windows Update
  • Windows Defender
  • Other Services

Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.


Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
  • Double click on TFC.exe to run the program.
  • Click on Start button to begin cleaning process.
  • TFC will close all running programs, and it may ask you to restart computer.


Download Sophos Free Virus Removal Tool and save it to your desktop.
  • Double click the icon and select Run
  • Click Next
  • Select I accept the terms in this license agreement, then click Next twice
  • Click Install
  • Click Finish to launch the program
  • Once the virus database has been updated click Start Scanning
  • If any threats are found click Details, then View log file... (bottom left hand corner)
  • Copy and paste the results in your reply
  • Close the Notepad document, close the Threat Details screen, then click Start cleanup
  • Click Exit to close the program
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #21
Results of screen317's Security Check version 1.014 --- 12/23/15
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Defender
Malwarebytes
ESET Security
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Java version 32-bit out of Date!
Adobe Flash Player 32.0.0.433
Mozilla Thunderbird (78.2.1)
Google Chrome (85.0.4183.102)
Google Chrome (SetupMetrics...)
Google Chrome (unnamed.ico..)
````````Process Check: objlist.exe by Laurent````````
ESET NOD32 Antivirus ekrn.exe
Malwarebytes Anti-Malware mbamservice.exe
ESET ESET Security eguiproxy.exe
ESET ESET Security app appOnt.exe
Malwarebytes Anti-Malware mbamtray.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #22
Farbar Service Scanner Version: 14-12-2019
Ran by Unai (administrator) on 16-09-2020 at 21:07:22
Running from "C:\Users\Unai\Desktop"
Microsoft Windows 10 Home (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Policy:
========================


Security Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv: "%systemroot%\system32\svchost.exe -k netsvcs -p".
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend: ""C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe"".


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****
 

Broni

Posts: 55,589   +494
Your computer is clean

1. This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
[COLOR=#ff0000][B]This is a very crucial step so make sure you don't skip it.[/B][/COLOR]
Download [IMG]http://www.imgdumper.nl/uploads6/51a5ce45267c1/51a5ce45263de-delfix.pngDelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.

Double-click Delfix.exe to start the tool.
Make sure the following items are checked:
  • Activate UAC (optional; some users prefer to keep it off)
  • Remove disinfection tools
  • Create registry backup
  • Purge System Restore
  • Reset system settings
Now click "Run" and wait patiently.
Once finished a logfile will be created. You don't have to attach it to your next reply.

2. Make sure Windows Updates are current.

3. If any trojans, rootkits or bootkits were listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!

4. Check if your browser plugins are up to date.
Firefox - https://www.mozilla.org/en-US/plugincheck/
other browsers: https://browsercheck.qualys.com/ (click on "Scan without installing plugin" and then on "Scan now")

5. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.

6. Run Temporary File Cleaner (TFC) and AdwCleaner weekly (you need to redownload these tools since they were removed by DelFix).

7. (optional) If you want to keep all your programs up to date, download and install FileHippo App Manager.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.

8. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.

9. Read:
How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html
Simple and easy ways to keep your computer safe and secure on the Internet: http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs) which change your browser settings: http://www.bleepingcomputer.com/for...curity-questions-best-practices/#entry3187642

10. Please, let me know, how your computer is doing.
 

uperesito

Posts: 20   +0
  • Thread Starter Thread Starter
  • #25
Thank you for your help. It seems that my laptop is now virus free and I have not received any more error alerts.
 

Latest posts