Cierre de programas/ventanas en "no responde"/ventana emergente al iniciar/forzar apagado/etc

Buenas! Gracias de antemano por la ayuda que brindáis. Mi problema es el siguiente: tengo un portátil con SO Windows 7, 64bits (si necesitáis algún dato más me decís) que desde hace un tiempo va muy (cada vez más) ralentizado y progresivamente, han ido apareciendo problemillas.

  • Al poco rato de iniciar el ordenador, aparece una ventana de repente en la que pone: “Click to run. Una actualización de Microsoft Office Starter 2010 - Español está ahora disponible… (etc) Desea comenzar a descargar la actualización ahora?”. No hay manera de hacerla desaparecer.
  • Han dejado de funcionar ciertas teclas, como los signos de abrir interrogación y admiración o la tecla Supr.
  • El programa de Spotify a menudo no arranca, no responde o se cierra de golpe.
  • Lo mismo ocurre con el de CCleaner. En modo seguro directamente se cierra.
  • A menudo recibo el mensaje de “el explorador de Windows dejó de funcionar”.
  • En general, las ventanas se quedan en “no responde”.
  • Las imágenes tardan siglos en abrirse, o directamente “no responden”.
  • Al apagar, siempre hay que darle a “forzar apagado”.

Más o menos este es el resumen del cambio que ha dado mi ordenador, pues hasta hace no mucho ha funcionado muy bien y no sé cual puede ser la causa o solución. Muchas gracias a todo el equipo. Un saludo!

Hola anambc

Bueno … por lo que comentas, Parece que Tu PC esta complicada.

Vamos a intentar estabilizar su funcionamiento …

Desactiva temporalmente tu antivirus y cualquier programa de seguridad que tengas en funciones.

Descarga Farbar Recovery Scan Tool en el escritorio de Tu PC. Selecciona la versión adecuada para la arquitectura (32 o 64bits) de tu equipo.

Como saber si Mi Windows es de 32 0 64 Bits`

  • Ejecuta FRST.exe
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Guía: Como Ejecutar FRST

En Tu próxima respuesta, debes pegar los dos reportes generados.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Guía: Como Pegar reportes en el Foro

Saludos

Gracias por tu ayuda! Allá van los dos reportes :grinning:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-08-2019
Ran by Ana (22-08-2019 21:05:33)
Running from C:\Users\Ana\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2012-09-28 20:46:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-1231317149-393754485-1902646098-500 - Administrator - Disabled)
Ana (S-1-5-21-1231317149-393754485-1902646098-1000 - Administrator - Enabled) => C:\Users\Ana
HomeGroupUser$ (S-1-5-21-1231317149-393754485-1902646098-1002 - Limited - Enabled)
Invitado (S-1-5-21-1231317149-393754485-1902646098-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Anti-Virus (Disabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Anti-Virus (Disabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

„Windows Live Essentials“ (HKLM-x32\...\{19ADD3BF-C42B-47DC-81C6-5E9731B668C4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
„Windows Live Mail“ (HKLM-x32\...\{2720009D-9566-45A7-A370-0E6DAC313F3F}) (Version: 15.4.3502.0922 - „Microsoft Corporation“) Hidden
„Windows Live Messenger“ (HKLM-x32\...\{122800FE-3AAF-4974-9FBD-54B023FA756A}) (Version: 15.4.3538.0513 - „Microsoft Corporation“) Hidden
„Windows Live“ fotogalerija (HKLM-x32\...\{C877E454-FA36-409A-A00E-1240CEC61BBD}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
µTorrent (HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\uTorrent) (Version: 3.5.3.44494 - BitTorrent Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.7.0.1530 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.238 - Adobe)
Adobe Reader 9.1 - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{7E5DC2C5-115A-322B-976C-219237FAED66}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 4.0.0.0 - AppEx Networks)
Apple Application Support (32 bits) (HKLM-x32\...\{C1BCFECF-6EC2-4750-9072-5E2489423F8F}) (Version: 7.5 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{B202C7F5-7DE3-4FBF-B259-E70E625F56FC}) (Version: 7.5 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}) (Version: 12.2.1.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
Backup and Sync from Google (HKLM\...\{768C0072-2FD2-4934-9824-B2A1E81AEA5D}) (Version: 3.45.5545.5747 - Google, Inc.)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.3.0.110 - Atheros Communications)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.60.48.55 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.51 - Piriform)
Compresor WinRAR (HKLM-x32\...\WinRAR archiver) (Version:  - )
CtrlAltStudio-Viewer-Alpha (remove only) (HKLM-x32\...\CtrlAltStudio-Viewer-Alpha) (Version: 1.2.5.43397 - CtrlAltStudio)
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2227 - CyberLink Corp.)
CyberLink Media+ Player10 (HKLM-x32\...\InstallShield_{34FBC7C4-CD31-4D93-A428-0E524EAC4586}) (Version: 10.0.1110.00 - CyberLink Corp.)
CyberLink MediaShow (HKLM-x32\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 5.0.1130a - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3802 - CyberLink Corp.)
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.3306 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.4417 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAZ PostgreSQL CMS (HKLM-x32\...\DAZ PostgreSQL CMS 9.3.4.3) (Version: 9.3.4.3 - DAZ 3D)
Easy Content Share (HKLM-x32\...\{2DDC70C1-C77A-4D08-89D2-9AB648504533}) (Version: 1.0 - Samsung Electronics Co., LTD)
Easy Migration (HKLM-x32\...\{AD86049C-3D9C-43E1-BE73-643F57D83D50}) (Version: 1.0 - Samsung Electronics Co., Ltd.)
EasyFileShare (HKLM-x32\...\{1181AA5B-8EFD-4AC5-8CDE-A1F7307B3427}) (Version: 1.0.13 - Samsung)
Eco Mode (HKLM-x32\...\{9A8E4762-3331-4EDB-8E1F-B11179DDBC00}) (Version: 1.0.0.11 - Samsung Electronics Co., Ltd.)
E-POP (HKLM-x32\...\{75282161-8CAC-4071-A225-EBC95E43C7F3}) (Version: 1.00.0000 - Samsung)
ETDWare PS/2-X64 8.0.7.2_WHQL (HKLM\...\Elantech) (Version: 8.0.7.2 - ELAN Microelectronic Corp.)
FirestormOS-Releasex64 (HKLM\...\FirestormOS-Releasex64) (Version: 5.0.7.52912 - The Phoenix Firestorm Project, Inc.)
Flvto Youtube Downloader (HKLM-x32\...\Flvto Youtube Downloader) (Version: 1.2.1 - Hotger)
Fotogalerija Windows Live (HKLM-x32\...\{E59969EA-3B5B-4B24-8B94-43842A7FBFE9}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria de Fotografias do Windows Live (HKLM-x32\...\{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (HKLM-x32\...\{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie foto Windows Live (HKLM-x32\...\{CB66242D-12B1-4494-82D2-6F53A7E024A3}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.100 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Gyazo 4.0.1.0 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
Hacer clic y ejecutar de Microsoft Office 2010 (HKLM\...\{90140000-006D-0C0A-1000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Hacer clic y ejecutar de Microsoft Office 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
iCloud (HKLM\...\{DA6D808E-3629-4933-8FB3-583F9BCB0DEF}) (Version: 7.12.0.14 - Apple Inc.)
Intel PROSet Wireless (HKLM-x32\...\ProInst) (Version:  - ) Hidden
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{295AEB79-B53A-4F1B-860F-7800BB7E3681}) (Version: 14.2.1000 - Intel Corporation)
iTunes (HKLM\...\{4699F245-9592-4D3A-A0A1-6D4152E9F49B}) (Version: 12.9.5.7 - Apple Inc.)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kaspersky Anti-Virus (HKLM-x32\...\{5AAE61FF-858E-453E-B8F3-944618149975}) (Version: 18.0.0.405 - Kaspersky Lab) Hidden
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{5AAE61FF-858E-453E-B8F3-944618149975}) (Version: 18.0.0.405 - Kaspersky Lab)
K-Lite Codec Pack 7.0.0 (Standard) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 7.0.0 - )
Los Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.69.43.024017 - Electronic Arts Inc.)
Los Sims™ 3 ¡Vaya fauna! (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Los Sims™ 3 Al caer la noche (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts)
Los Sims™ 3 Trotamundos (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Los Sims™ 3 Y Las Cuatro Estaciones (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
Los Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.45.62.1020 - Electronic Arts Inc.)
Manager (HKLM-x32\...\{2D00EBC4-DD22-4F5B-9BA1-F98ED2C6FCF2}) (Version: 5.0.15.31893 - 2017 pdfforge GmbH. All rights reserved) Hidden
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.7.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel 2007 Help Actualización (KB963678) (HKLM-x32\...\{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59E09C3D-4878-47D9-87DB-6D0018026889}) (Version:  - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook 2007 Help Actualización (KB963677) (HKLM-x32\...\{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59C244C2-0C37-4E85-8F7E-DBDD3958B694}) (Version:  - Microsoft)
Microsoft Office Powerpoint 2007 Help Actualización (KB963669) (HKLM-x32\...\{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{F318245D-05AE-4681-A749-A036CE44AF29}) (Version:  - Microsoft)
Microsoft Office Starter 2010 - Español (HKLM-x32\...\{90140011-0066-0C0A-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Word 2007 Help Actualización (KB963665) (HKLM-x32\...\{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{377BA42A-1C84-45D6-94B8-6D00887D172D}) (Version:  - Microsoft)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mozilla Firefox 43.0.1 (x86 es-ES) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 es-ES)) (Version: 43.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1.5828 - Mozilla)
Multimedia POP (HKLM-x32\...\{331ECF61-69AF-4F57-AC35-AFED610231C3}) (Version: 1.1 - )
NVIDIA PhysX (HKLM-x32\...\{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}) (Version: 9.12.0613 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.3.5.6379 - Electronic Arts, Inc.)
paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADF0}) (Version: 4.0.21 - dotPDN LLC)
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
Photoshop CS5 Extended 12.0 (HKLM-x32\...\Photoshop CS5 Extended 12.0) (Version:  - )
Poczta usługi Windows Live (HKLM-x32\...\{64376910-1860-4CEF-8B34-AA5D205FC5F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (HKLM-x32\...\{7A9D47BA-6D50-4087-866F-0800D8B89383}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Pošta Windows Live (HKLM-x32\...\{7BA19818-F717-4DFB-BC11-FAF17B2B8AEE}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Raccolta foto di Windows Live (HKLM-x32\...\{ED16B700-D91F-44B0-867C-7EB5253CA38D}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.45.516.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6400 - Realtek Semiconductor Corp.)
Samsung AnyWeb Print (HKLM-x32\...\{318DBE01-1E6B-4243-84B0-210391FE789A}) (Version: 2.0.67.1 - Samsung Electronics Co., Ltd.)
Samsung Control Center (HKLM-x32\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 1.0 - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version:  - Samsung Electronics Co., Ltd.)
Samsung Recovery Solution 5 (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 5.0.1.3 - Samsung)
Samsung Support Center 1.0 (HKLM-x32\...\{F687E657-F636-44DF-8125-9FEEA2C362F5}) (Version: 1.1.38 - Samsung)
Samsung Universal Print Driver (HKLM-x32\...\Samsung Universal Print Driver) (Version: 2.02.05.00:27 - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 1.2.5.0 - Samsung Electronics Co., Ltd.)
Samsung Update Plus (HKLM-x32\...\{142D8CA7-2C6F-45A7-83E3-099AAFD99133}) (Version: 3.0.0.17 - Samsung Electronics Co., Ltd.)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.98.0213 - Electronic Arts)
Spotify (HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Spotify) (Version: 1.1.12.449.g4109e645 - Spotify AB)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
User Guide (HKLM-x32\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.2 - )
VidShot Capturer (HKLM-x32\...\VidShot Capturer_is1) (Version:  - GeoVid)
Windows Live 程式集 (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\ZoomUMX) (Version: 4.1 - Zoom Video Communications, Inc.)
Συλλογή φωτογραφιών του Windows Live (HKLM-x32\...\{C00C2A91-6CB3-483F-80B3-2958E29468F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (HKLM-x32\...\{E83DC314-C926-4214-AD58-147691D6FE9F}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (HKLM-x32\...\{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}) (Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (HKLM-x32\...\{77F69CA1-E53D-4D77-8BA3-FA07606CC851}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотогалерия на Windows Live (HKLM-x32\...\{4444F27C-B1A8-464E-9486-4C37BAB39A09}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
גלריית התמונות של Windows Live (HKLM-x32\...\{CE929F09-3853-4180-BD90-30764BFF7136}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
بريد Windows Live (HKLM-x32\...\{0A4C4B29-5A9D-4910-A13C-B920D5758744}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
معرض صور Windows Live (HKLM-x32\...\{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2011-06-15] (Atheros Communications Inc. -> Atheros Commnucations) [File not signed]
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-06-27] (Google LLC -> Google)
ContextMenuHandlers1: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\x64\ShellEx.dll [2018-10-23] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} =>  -> No File
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-05-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2006-12-04] () [File not signed]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2007-01-17] () [File not signed]
ContextMenuHandlers2: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\x64\ShellEx.dll [2018-10-23] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2011-06-15] (Atheros Communications Inc. -> Atheros Commnucations) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-06-27] (Google LLC -> Google)
ContextMenuHandlers4: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\x64\ShellEx.dll [2018-10-23] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> No File
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2006-12-04] () [File not signed]
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2007-01-17] () [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\x64\ShellEx.dll [2018-10-23] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2006-12-04] () [File not signed]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2007-01-17] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2012-01-06 09:06 - 2006-08-12 05:48 - 000049152 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Control Center\HookDllPS2.dll
2012-01-06 09:06 - 2011-02-16 18:03 - 000203776 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Control Center\WinCRT.dll
2012-01-06 09:11 - 2010-05-07 16:22 - 001636864 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\Resdll.dll
2013-01-31 00:30 - 2006-12-04 18:00 - 000043008 _____ () [File not signed] C:\Program Files (x86)\WinRAR\rarext64.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 000817152 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2015-08-04 00:25 - 2015-08-04 00:25 - 000214528 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2015-08-04 00:25 - 2015-08-04 00:25 - 000127488 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2015-08-04 00:25 - 2015-08-04 00:25 - 000102400 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 003650560 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 000113664 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_ctypes.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000173568 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_elementtree.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001800192 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_hashlib.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000032256 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_multiprocessing.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000046080 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_psutil_windows.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000047616 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_socket.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 002230784 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_ssl.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000026112 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_yappi.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000080896 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\bz2.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 006277632 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\cello.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000014848 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\common.time34.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000007680 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\hashobjs_ext.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000301568 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\PIL._imaging.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000169472 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\pyexpat.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001084416 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\pysqlite2._sqlite.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000548864 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\pythoncom27.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 000137728 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\pywintypes27.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 000010752 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\select.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000020992 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\thumbnails_ext.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000689664 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\unicodedata.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000118784 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\usb_ext.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000128512 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32api.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000438784 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32com.shell.shell.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000011776 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32crypt.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000023040 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32event.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000149504 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32file.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000223232 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32gui.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000048128 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32inet.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000029696 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32pdh.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000027648 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32pipe.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000044032 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32process.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000020480 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32profile.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000136192 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32security.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000026624 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32ts.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000034304 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.conditional.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000038400 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.connectivity.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000073216 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.device_monitor.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000110592 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.volumes.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000020480 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.winwrap.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001325056 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._controls_.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001489408 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._core_.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001007104 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._gdi_.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000103424 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._html2.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000916992 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._misc_.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001039872 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._windows_.pyd
2012-01-07 00:42 - 2008-06-05 01:53 - 000027648 _____ () [File not signed] C:\windows\System32\spd__l.dll
2019-05-20 14:21 - 2019-05-20 14:21 - 000032256 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\A4.Foundation\fa677729f0b9d356a2dae2cab32a3f4a\A4.Foundation.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\eaa67c06629fe1bc9bec36b90eb63003\AEM.Actions.CCAA.Shared.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\2e8a2a9e7ecfe1d85589cfe005c9d9c6\AEM.Plugin.EEU.Shared.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\3d2367a0573c7725d05a2900d41fbf00\AEM.Plugin.Hotkeys.Shared.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\8765ac68822653fe4b8ef9a7f38137f5\AEM.Plugin.DPPE.Shared.ni.dll
2019-08-04 18:43 - 2019-08-04 18:43 - 000275968 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\03078de53baee6d07e22323e6bfe889c\AEM.Plugin.Source.Kit.Server.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\ea939be953ba9e6270085039de726bee\AEM.Plugin.WinMessages.Shared.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\e8333eb8a5fd57c21740d3567cd80be4\AEM.Plugin.REG.Shared.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\3c3443d7ef7981403ff6c6da3604a36d\AEM.Plugin.GD.Shared.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\d5f2f2afb33a00a2a40a18e4ecf454f7\AEM.Server.Shared.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\AEM.Server\84ed045927a6b266ac97ccb2cdbe84a1\AEM.Server.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000056320 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\APM.Foundation\5d7ac4f1591be4f9cc4aaa90de1cc5b1\APM.Foundation.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000122368 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\ATICCCom\00e014fe07549568f5774f891ab585a8\ATICCCom.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000199168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\6e2a64ce022b2f3170b4acaed25b0e45\CCC.Implementation.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000147456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.2042675f#\67479ebdbe789466d0b60dac1ebda05b\CLI.Aspect.CPUPStates.Fuel.Dashboard.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000152064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.21d2ac78#\68d3ca831e4a6c7af492ff94e242c7e3\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.ni.dll
2019-05-20 20:07 - 2019-05-20 20:07 - 000124928 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\547839d471cf97e2761faa8f576afff4\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2019-05-20 20:07 - 2019-05-20 20:07 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\4c68a85bc39ee41a6c6c2ffdb2c7e14a\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\e8cd17364c98752fce0d341fbb46f0ba\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000104448 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\67f089e91bfa9c044453914c8bab5369\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2019-05-20 20:07 - 2019-05-20 20:07 - 000206336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4542c692#\aa000f09c05f40822b400512c3562f43\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000130048 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\daae04ede38eec85276b4fb5e67aeec8\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000073728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\3306009e4246b06b870a8c5d39d93146\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4ede500c#\1fb922572f173c6982b9adc1ce17684e\CLI.Aspect.DPPE.Fuel.Dashboard.ni.dll
2019-05-24 13:37 - 2019-05-24 13:37 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\f27b9bb589cb0ea3f88203d1d6528f43\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000073216 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\61d6ac9195237db7993ffe9ddd14f41c\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000110592 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.5a772e69#\48197cc855613900c3cf33a16f0caf61\CLI.Aspect.Fets.Fuel.Dashboard.ni.dll
2019-08-04 18:45 - 2019-08-04 18:45 - 000070656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.648b65fc#\719c45749ede30618d4e237056bf81c7\CLI.Aspect.WiFi.Fuel.Dashboard.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000259584 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\c841aaf0c236560a324c6900e7d00035\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2019-05-20 20:07 - 2019-05-20 20:07 - 000355840 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\dc142e84b021c459574ac23f18e15070\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000531968 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ed14a2a#\100f989d48bf628627d58bb5713e70c1\CLI.Aspect.MultiVPU2.Graphics.Dashboard.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000062976 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\466f465d25ebcaf2c75ee096a8233ec1\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000666112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\57918a4447962cd4d53b17f020a19222\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000727552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\adbac81995c8217a2aa4efe3e631c9cb\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000446464 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\6f8acd6fe380990476d5aee59fb59b18\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\8c36eedf4d6ca0797050d9b472daacd5\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2019-05-20 20:07 - 2019-05-20 20:07 - 000154112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a0ae52bc#\bd91c42d25934b0f29227baa91e1b360\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2019-05-24 13:37 - 2019-05-24 13:37 - 000056320 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\43228ceaea27db4e352bb1a8c59ec863\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\01fdce11b6fc12eb96d29185c0a3b83d\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000146944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.abe74207#\f12d55cd3debc3cbb2c2b544d52aae5b\CLI.Aspect.MultiVPU2.Graphics.Shared.ni.dll
2019-05-20 20:07 - 2019-05-20 20:07 - 000451584 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\38d70b7db6fe7a6c983ffca67f9b6705\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2019-05-24 13:37 - 2019-05-24 13:37 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ae5e117c#\e671714125554ee27ee2a3cd1ed30199\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000066560 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\6e00a462a7def8201fd61b20c330e478\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c2a2b491#\8b3f80025cf033f1834b2cdeff2382a7\CLI.Aspect.WiFi.Fuel.Shared.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000337408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\c08270bb83284a915abf3f9394ce1198\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2019-05-20 20:07 - 2019-05-20 20:07 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\45da314d54b396e6e942890c1874466c\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2019-05-24 13:37 - 2019-05-24 13:37 - 000079872 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.caa5cc64#\2413681841983acc2568c9c39d1f7db0\CLI.Aspect.Fets.Fuel.Shared.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000094720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d4f2f79c#\08c3b5162302a5366768fd7c95444e8e\CLI.Aspect.CrossFireX.Graphics.Dashboard.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 001315328 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d7e090dc#\923d41775e552c0985640709cc5edfa9\CLI.Aspect.User.Fuel.Dashboard.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000270848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\312c03e224dc4d94a7bcd11b7f8ba815\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 003281920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\6872f25ff8474d66a12691769e301d32\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2019-05-24 13:37 - 2019-05-24 13:37 - 000236032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\cf9301b8bde4f5dfa07ad75d312b5268\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000046592 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\5dc42d7774fd3dd7845c0ffc46c795ed\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2019-05-20 20:07 - 2019-05-20 20:07 - 000069120 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.efd83192#\f2e780615c7ea6f09f527c074deaba85\CLI.Aspect.CPUPStates.Fuel.Shared.ni.dll
2019-05-24 13:37 - 2019-05-24 13:37 - 000057344 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f45bd021#\06e59bea4a672092eb72c34a4b3fd299\CLI.Aspect.DPPE.Fuel.Shared.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000050176 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\947c34c0329a686fdd0f09e83a1cdcb8\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\88ad80174766899fa6f6e917c12a2312\CLI.Caste.A4.Runtime.ni.dll
2019-05-20 20:06 - 2019-05-20 20:06 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\f286d249242c8473a2513f682e319e01\CLI.Caste.A4.Shared.ni.dll
2019-08-04 18:45 - 2019-08-04 18:45 - 000027648 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\47166b54b3b2e98fa1b372dab7bdd3cd\CLI.Caste.A4.Dashboard.ni.dll
2019-05-20 20:07 - 2019-05-20 20:07 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\0c949ef1d053076bc9b0086033562668\CLI.Caste.Fuel.Shared.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000304640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\d3bf5ecee0b368dc631e0eed985281fc\CLI.Caste.Fuel.Runtime.ni.dll
2019-08-04 18:45 - 2019-08-04 18:45 - 000027648 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\2cae835a3d68f1d41384153873ec7c5f\CLI.Caste.Fuel.Dashboard.ni.dll
2019-05-24 13:37 - 2019-05-24 13:37 - 000038400 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\279719952a3edb4948ee8dfc36c67b00\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 001537536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\0a84f15e96acc093f5006319f4265c66\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000574976 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\b1786e6ed9d4191727a34e4cd3aff812\CLI.Caste.Graphics.Dashboard.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\a120856c77a9ef16c8562ac433738fc4\CLI.Caste.HydraVision.Runtime.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\846b390e35b4e00df26caaf079a741f1\CLI.Caste.HydraVision.Shared.ni.dll
2019-08-04 18:45 - 2019-08-04 18:45 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\dde60eba5ad8795880e9b92ed1f3e5fd\CLI.Caste.HydraVision.Dashboard.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\0668ca6b3bbdb9b6026e22ec6ba88caa\CLI.Caste.Platform.Shared.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000043520 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\fd6b46e870a58681f086f29fc551e983\CLI.Caste.Platform.Runtime.ni.dll
2019-08-04 18:45 - 2019-08-04 18:45 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\dd245bb49d433160fa07544aa83be37d\CLI.Caste.Platform.Dashboard.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000344064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Combinee84f0351#\420560aa32aa5af78dd3ebc571c77497\CLI.Combined.Fusion.Aspects.Runtime.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\f43555cbec72c26dfec464bcc3a33097\CLI.Component.Runtime.Shared.ni.dll
2019-08-04 18:45 - 2019-08-04 18:45 - 000884736 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\5f9206e0351b70b0cfd1306649adec21\CLI.Component.Systemtray.ni.dll
2019-08-04 18:45 - 2019-08-04 18:45 - 000168960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\1e5fcabca48b21a89d17d75bd955f67f\CLI.Component.Dashboard.ProfileManager2.ni.dll
2019-05-20 20:06 - 2019-05-20 20:06 - 000149504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\fccdc901c9674f6fc30dfa7786481eea\CLI.Component.Runtime.Shared.Private.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\ab1ec7e0632379e24efef78eb5291799\CLI.Component.Runtime.Extension.EEU.ni.dll
2019-08-04 18:43 - 2019-08-04 18:43 - 001605632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\20d0f9283e8bb4339716c6c200515bcd\CLI.Component.Dashboard.Shared.Private.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000019968 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\1606fbf19874fc9660e97909f7a99210\CLI.Component.Client.Shared.ni.dll
2019-05-20 20:06 - 2019-05-20 20:06 - 000086016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\edd150e302909362e317210b8ec0ba04\CLI.Component.Dashboard.Shared.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\90c227afc775150001326d70704106e9\CLI.Foundation.Private.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000060928 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\d78a9749616dd9b1f2b8eddc2786423d\CLI.Foundation.XManifest.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000090624 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\9d7a9ae3585856b27295fc7174a25937\CLI.Foundation.CoreAudioAPI.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 001051648 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\123ae61bd90e9c05f5e91233d7ba17a5\CLI.Foundation.Client.ni.dll
2019-08-04 18:43 - 2019-08-04 18:43 - 000295424 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\fb02ee9c0836152cd7940af421299e0c\CLI.Foundation.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\e67713f98e8247089ce0f010899a2fea\DEM.Foundation.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000117248 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\736d78feb194a4a348102ebd1532d5b9\DEM.Graphics.I0601.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000015872 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\67ab60a5414533a3dab1cddbd59679f4\DEM.Graphics.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\20a786edceb0b4b384b41b17a8dbc6a8\Fuel.Foundation.ni.dll
2019-08-04 18:45 - 2019-08-04 18:45 - 000289792 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\717a041c145eb8c5b701e50b4f49668f\LOG.Foundation.Implementation.ni.dll
2019-05-20 14:21 - 2019-05-20 14:21 - 000146432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\d15cd19d6aa65b40d11b960bd11571fd\LOG.Foundation.Private.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\e287b5c7d34bf9a5242f11d9d9f4d8b0\LOG.Foundation.Implementation.Private.ni.dll
2019-07-30 19:56 - 2019-07-30 19:56 - 000132096 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\b179b95b00f1f8c848282fc451b899a3\LOG.Foundation.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\03b56f41bd4cba317cd29b03a827ce1e\MOM.Foundation.ni.dll
2019-05-24 13:40 - 2019-05-24 13:40 - 000391680 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\aa41bc2f7a701b903056ea6cc7bc4e4d\MOM.Implementation.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\773b1d6899e9b161ceb39ffe373adde9\NEWAEM.Foundation.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000890368 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\2f2c7ae1e2b9768a170c13b318065c68\ADL.Foundation.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 000250368 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\APM.Server\6f08bc2f7e416cd466bdd97fdecc9271\APM.Server.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000761344 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.79734f7a#\0fb0161c092ae856a93d293ba4b51781\CLI.Aspect.PowerXpress.Graphics.Runtime.ni.dll
2019-05-24 13:37 - 2019-05-24 13:37 - 000290816 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9b707b25#\565d39dd4ba753a87985ef17301b9274\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 001641984 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.aa59351a#\0bc0b60b3c4b8848743f73dd87df50db\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000349696 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b3da5a8f#\1b81c7cdc5962f23f0442837e162b246\CLI.Aspect.PowerXpress.Graphics.Shared.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000586752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d4846ba2#\868ce8061987198047e65d7a5a169b0b\CLI.Aspect.PowerXpress.Graphics.Dashboard.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 006323200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e6d9f3a8#\846174f42670106fe5841b0af1c84a28\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2019-08-04 18:45 - 2019-08-04 18:45 - 007986176 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\8d8453615abf8b0a492200639664f2ac\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2019-08-04 18:45 - 2019-08-04 18:45 - 001131008 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Combine7332395e#\4206e946cf709ee98280202250949275\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000133632 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\a63a1b20c548da7e95d69e8eb3265ace\CLI.Component.Client.Shared.Private.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000228352 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\a9a53b4f875ce9a9eb5ccc7d350d781e\CLI.Component.Runtime.ni.dll
2019-08-04 18:45 - 2019-08-04 18:45 - 000910336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\3130dbb02d2c29c51e054e1885c37a95\CLI.Component.Dashboard.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000011776 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0702\54c158b0920ba753b1334c9b0ed4db15\DEM.Graphics.I0702.ni.dll
2019-05-24 13:37 - 2019-05-24 13:37 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0706\1570720eca263c44202dc9376be4579e\DEM.Graphics.I0706.ni.dll
2019-05-24 13:37 - 2019-05-24 13:37 - 000083456 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\812c37611ef161a0a970475dc659e4be\DEM.Graphics.I0709.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0710\4138d15ea9978248f8bd86ddf97d7c93\DEM.Graphics.I0710.ni.dll
2019-05-24 13:37 - 2019-05-24 13:37 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\3b39988002025cc97fe6b01b8549fd81\DEM.Graphics.I0712.ni.dll
2019-05-24 13:37 - 2019-05-24 13:37 - 000018944 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\01ff4d1f3e3edbdaffdd488a710bc8be\DEM.Graphics.I0804.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000011264 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0805\598be6e9eff4bedefcfd8cb32f6a968f\DEM.Graphics.I0805.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000011776 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0812\58ed732111cdea0fbb53d638209616ec\DEM.Graphics.I0812.ni.dll
2019-05-24 13:38 - 2019-05-24 13:38 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0901\534f6bd6181ecac0dddbec495751df15\DEM.Graphics.I0901.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\995749161a5b201fd97b0fca315e5106\DEM.Graphics.I0906.ni.dll
2019-05-24 13:37 - 2019-05-24 13:37 - 000014848 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0912\16d31ad42edca848ce16225fddf07122\DEM.Graphics.I0912.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 000036352 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\0567c329ab30ddaee0068abd324437d4\DEM.Graphics.I1010.ni.dll
2019-05-20 20:05 - 2019-05-20 20:05 - 001144320 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\797b519ca3104e7865ed16362a76f64f\Localization.Foundation.Private.ni.dll
2019-08-04 18:46 - 2019-08-04 18:46 - 000242688 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\15df4c5b13ce79923642d94eb977b619\ResourceManagement.Foundation.Implementation.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\157b1d523f564da8b6b63f632e3b585d\ResourceManagement.Foundation.Private.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 000090112 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\60c7112f833a61a124b6f41cc8c7bd9d\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2019-08-04 18:43 - 2019-08-04 18:43 - 002786304 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\6d5e5935530f9f0e77279d35b407e85c\CLI.Caste.Graphics.Shared.ni.dll
2019-05-24 13:39 - 2019-05-24 13:39 - 003187712 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\b7f195270f20cb24131eb29392ec34f7\CLI.Caste.Graphics.Runtime.ni.dll
2011-06-15 18:07 - 2011-06-15 18:07 - 000061088 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\AthCopyHook.dll
2011-06-15 18:08 - 2011-06-15 18:08 - 000019104 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\athr_debug.dll
2011-06-15 18:08 - 2011-06-15 18:08 - 000044192 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\BPP.DLL
2011-06-15 18:08 - 2011-06-15 18:08 - 000047776 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\BTBIP.DLL
2011-06-15 18:08 - 2011-06-15 18:08 - 000182944 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll
2011-06-15 18:08 - 2011-06-15 18:08 - 000662688 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\filetransfer.dll
2011-06-15 18:08 - 2011-06-15 18:08 - 000326816 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\FolderViewImpl.dll
2011-06-15 18:08 - 2011-06-15 18:08 - 000109728 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\GOEP.DLL
2011-06-15 18:08 - 2011-06-15 18:08 - 000084640 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Handsfree.dll
2011-06-15 18:08 - 2011-06-15 18:08 - 000122528 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\L2capLib.dll
2011-06-15 18:08 - 2011-06-15 18:08 - 000445600 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\ObjPush.dll
2011-06-15 18:08 - 2011-06-15 18:08 - 002235040 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\OutLookLib.dll
2011-06-15 18:08 - 2011-06-15 18:08 - 000076448 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\PhoneBook.DLL
2011-06-15 18:08 - 2011-06-15 18:08 - 000080544 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\RfcommLib.dll
2011-06-15 18:09 - 2011-06-15 18:09 - 000130720 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\sesmgr.dll
2011-06-15 18:09 - 2011-06-15 18:09 - 000434336 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll
2011-06-15 18:09 - 2011-06-15 18:09 - 000044704 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\sim.DLL
2011-06-15 18:09 - 2011-06-15 18:09 - 000139936 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\skypeagent.dll
2011-06-15 18:09 - 2011-06-15 18:09 - 000067232 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Sync.dll
2011-06-15 18:09 - 2011-06-15 18:09 - 000029856 _____ (Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\utils.DLL
2003-04-03 20:05 - 2003-04-03 20:05 - 000024576 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\3082\mdmui.dll
2006-10-26 14:44 - 2006-10-26 14:44 - 000123904 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\csm.dll
2006-10-26 14:45 - 2006-10-26 14:45 - 000247296 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\msdbg2.dll
2015-07-15 18:50 - 2015-07-15 18:50 - 000113664 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.DLL
2015-07-15 18:50 - 2015-07-15 18:50 - 001658368 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80.DLL
2015-07-15 18:50 - 2015-07-15 18:50 - 001654784 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80U.DLL
2012-09-30 14:33 - 2012-09-30 14:33 - 000097280 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.DLL
2019-05-20 20:06 - 2019-05-20 20:06 - 000332800 _____ (Microsoft) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\5335bcffa0c9c8c68c8dadf6c4dc3c45\Microsoft.WindowsAPICodePack.ni.dll
2019-08-04 18:44 - 2019-08-04 18:44 - 002498048 _____ (Microsoft) [File not signed] C:\windows\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\90af978bf14cf7c9769353dcc666004f\Microsoft.WindowsAPICodePack.Shell.ni.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 003042304 _____ (Python Software Foundation) [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\python27.dll
2012-01-06 08:47 - 2007-06-27 19:54 - 000033792 _____ (Windows (R) Server 2003 DDK provider) [File not signed] C:\windows\system32\spool\PRTPROCS\x64\spd__pc.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wxbase30u_net_vc90_x64.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wxbase30u_vc90_x64.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wxmsw30u_adv_vc90_x64.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wxmsw30u_core_vc90_x64.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wxmsw30u_html_vc90_x64.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wxmsw30u_webview_vc90_x64.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Ana:gs5sys [2560]
AlternateDataStreams: C:\Users\Ana\Configuración local:gs5sys [2048]
AlternateDataStreams: C:\Users\Ana\Cookies:gs5sys [2560]
AlternateDataStreams: C:\Users\Ana\Datos de programa:gs5sys [3072]
AlternateDataStreams: C:\Users\Ana\Plantillas:gs5sys [2560]
AlternateDataStreams: C:\Users\Ana\AppData\Local:gs5sys [2048]
AlternateDataStreams: C:\Users\Ana\AppData\Roaming:gs5sys [3072]
AlternateDataStreams: C:\Users\Ana\AppData\Local\Datos de programa:gs5sys [2048]
AlternateDataStreams: C:\Users\Ana\AppData\Local\Historial:gs5sys [3072]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-09-13 18:01 - 000000098 _____ C:\windows\system32\drivers\etc\hosts

127.0.0.1       localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\Common Files\Apple\Internet Services\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Ana\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 80.58.61.250 - 80.58.61.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupfolder: C:^Users^Ana^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^HP SimpleSave Monitor.lnk => C:\windows\pss\HP SimpleSave Monitor.lnk.Startup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Google Update => "C:\Users\Ana\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Ana\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C3E0E6FB-3D20-46FF-8518-22151A0C47D1}] => (Allow) C:\Windows\System32\SUPDSvc.exe (Samsung Electronics CO., LTD. -> Samsung Electronics CO., LTD.)
FirewallRules: [{1C520DDC-EEF1-4004-9CF5-EA1DA86D7F29}] => (Allow) C:\Windows\System32\SUPDSvc.exe (Samsung Electronics CO., LTD. -> Samsung Electronics CO., LTD.)
FirewallRules: [{88FFC834-E2A5-4674-9BB6-7B38B5234ABF}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\USDAgent.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{6E7D8F3B-84DF-43AB-81C2-3300C88C909C}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\USDAgent.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{7D77659D-D02F-40BC-B428-CF7AB3C58510}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{DA1EF16C-BC63-4905-B58F-B1B17DDD3F32}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{94917F23-49B2-4494-99B8-635A539D281F}] => (Allow) C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10.exe (CyberLink -> CyberLink Corp.)
FirewallRules: [{D79A5148-E9D0-464C-A93E-51E26F9C7FBD}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector\PDR8.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{F6A86A99-EA06-4166-A0BA-6A85A3D58F21}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{247197AB-9E3E-4133-9784-5AA8A1E5AC92}] => (Allow) LPort=2869
FirewallRules: [{08F00C39-6B7C-4A4E-9E1C-12E52ED60F76}] => (Allow) LPort=1900
FirewallRules: [{0725B138-933B-45E2-A9FE-408C2088B030}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B09C75EE-6EE1-419A-982E-D60DD90E9D2C}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C221C4B5-4ECF-4B59-93BD-C7B5F2A9BEB1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4B268839-D334-425A-B3D3-1F56D3353A87}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E256D140-CC84-474D-B94E-377E8AC7F865}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{ACBE17F3-B436-4FAD-9B2F-B24CED4B60A0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E76E18CD-9C21-41CC-AFF0-F9A683F5FE21}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1DFCAA5B-091A-4B08-B176-EC213BAA84ED}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{A92F9D4E-AC23-4899-BBCA-738D8AFC0F96}C:\users\ana\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ana\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{3F66AEB5-CFA3-4D2C-BBEB-1785FF909084}C:\users\ana\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ana\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{4BED5B06-0DA8-4D7E-907E-C50317135CE0}C:\users\ana\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ana\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{AC45EA35-2DC0-4078-99EE-D5EEE4BF5011}C:\users\ana\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ana\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{2E945075-B6A7-4F60-951F-28A83EBF5A69}C:\program files (x86)\ctrlaltstudio-viewer-alpha\slvoice.exe] => (Allow) C:\program files (x86)\ctrlaltstudio-viewer-alpha\slvoice.exe (Vivox Inc. -> Vivox Inc.)
FirewallRules: [UDP Query User{5DB49DB7-DA9D-47A3-AAD7-5A10A872D6CE}C:\program files (x86)\ctrlaltstudio-viewer-alpha\slvoice.exe] => (Allow) C:\program files (x86)\ctrlaltstudio-viewer-alpha\slvoice.exe (Vivox Inc. -> Vivox Inc.)
FirewallRules: [TCP Query User{95740F70-DBDA-4DE9-97BC-24F434F9D9C7}C:\program files\firestormos-releasex64\slvoice.exe] => (Allow) C:\program files\firestormos-releasex64\slvoice.exe (The Phoenix Firestorm Project, Inc -> Vivox Inc.)
FirewallRules: [UDP Query User{B16F9F6D-97F6-4A05-B792-11C2418DAFA1}C:\program files\firestormos-releasex64\slvoice.exe] => (Allow) C:\program files\firestormos-releasex64\slvoice.exe (The Phoenix Firestorm Project, Inc -> Vivox Inc.)
FirewallRules: [{A4805935-B818-4EE0-86E2-6590A91B2349}] => (Allow) C:\Users\Ana\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{90F518FC-5FD0-418D-A2C2-F8EBECDCFFFB}] => (Allow) C:\Users\Ana\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{01698B0B-8276-4F80-9676-77FCFC2B0217}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2F168156-7430-4E89-BBD5-FCDB2C19FEA3}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe (Electronic Arts -> Electronic Arts Inc.) [File not signed]
FirewallRules: [{EF2F0C55-9B69-474D-BBE2-C380A438BBC9}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe (Electronic Arts -> Electronic Arts Inc.) [File not signed]
FirewallRules: [{643483CC-6FB3-4D3F-92EE-30ADDAF348F4}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{31B8C7B4-EF45-4533-A7CC-406D6926A16C}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{C6021E8B-6723-4152-B17C-8CA5D2F32327}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{34F63BCC-B0A1-438B-9B45-7C5B416456E2}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{38C58871-A26B-4474-934F-BF5EEF00F2F1}] => (Allow) C:\Users\Ana\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{4A996119-ECB3-4FA2-A30F-156C64206464}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{02BD9E7D-4954-4196-86B1-9EE2495F5EF3}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{0D182FD7-2A20-42D2-8232-BD175873FF0D}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B5B1B6DC-7098-4256-AB12-986649A925E2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============

Name: Dispositivo periférico Bluetooth
Description: Dispositivo periférico Bluetooth
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/22/2019 08:34:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4630781

Error: (08/22/2019 08:34:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4630781

Error: (08/22/2019 08:34:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/22/2019 07:17:54 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8019

Error: (08/22/2019 07:17:54 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8019

Error: (08/22/2019 07:17:54 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/22/2019 07:17:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7020

Error: (08/22/2019 07:17:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7020


System errors:
=============
Error: (08/22/2019 04:45:06 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: El servicio Adquisición de imágenes de Windows (WIA) no respondió después de iniciar.

Error: (08/22/2019 04:37:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Origin Web Helper Service no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (08/22/2019 04:37:13 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Origin Web Helper Service.

Error: (08/22/2019 04:33:36 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT AUTHORITY)
Description: Error al inicializar el cliente CBS. Último error: 0x8007045b

Error: (08/22/2019 04:32:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Origin Web Helper Service no pudo iniciarse debido al siguiente error: 
El servicio no respondió a tiempo a la solicitud de inicio o de control.

Error: (08/22/2019 04:32:48 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Se agotó el tiempo de espera (30000 ms) para la conexión con el servicio Origin Web Helper Service.

Error: (08/22/2019 04:28:33 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio Detección SSDP se cerró con el siguiente error: 
El proceso no tiene acceso al archivo porque está siendo utilizado por otro proceso.

Error: (08/22/2019 04:28:32 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: El servicio Detección SSDP se cerró con el siguiente error: 
El proceso no tiene acceso al archivo porque está siendo utilizado por otro proceso.


Windows Defender:
===================================
Date: 2019-03-31 19:07:05.288
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{554DB99B-A788-4899-8B5A-2C55BD853EB9}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:NT AUTHORITY\Servicio de red

Date: 2019-03-03 12:57:42.506
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{5FF643AF-F13D-4066-A146-6AB4B6390170}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:NT AUTHORITY\Servicio de red

Date: 2019-02-19 10:56:38.168
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{4C449E26-1FCF-4D97-99F4-CC38A982B791}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:NT AUTHORITY\Servicio de red

Date: 2017-08-28 13:29:35.080
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{A4FCB5C9-7FCB-4B21-BEAB-B9335D6AC615}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:NT AUTHORITY\Servicio de red

Date: 2016-07-12 08:27:28.433
Description: 
El examen de Windows Defender se detuvo antes de completarse.
Id. de examen:{E9FADE44-C916-46DE-A97E-A4C304D593A6}
Tipo de examen:AntiSpyware
Parámetros de examen:Examen rápido
Usuario:NT AUTHORITY\Servicio de red

Date: 2019-05-20 20:09:06.549
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:
Versión de firma anterior:1.293.1661.0
Origen de actualización:Usuario
Tipo de firma:AntiSpyware
Tipo de actualización:Diferencia
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:
Versión de motor anterior:1.1.15900.4
Código de error:0x80070070
Descripción de error:Espacio en disco insuficiente. 

Date: 2019-05-20 14:31:04.977
Description: 
El motor de %1 se detuvo debido a un error inesperado.
Tipo de error:%5
Código de excepción:%6
Recurso:%3

Date: 2018-07-04 07:47:44.134
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:1.271.442.0
Versión de firma anterior:1.269.1075.0
Origen de actualización:Usuario
Tipo de firma:AntiSpyware
Tipo de actualización:Diferencia
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:1.1.15000.2
Versión de motor anterior:1.1.14901.4
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control. 

Date: 2018-07-04 07:47:44.134
Description: 
Windows Defender encontró un error al intentar actualizar el motor.
Nueva versión de motor:1.1.15000.2
Versión de motor anterior:1.1.14901.4
Origen de actualización:Usuario
Usuario:NT AUTHORITY\SYSTEM
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control. 

Date: 2017-07-25 09:04:31.106
Description: 
Windows Defender encontró un error al intentar cargar firmas e intentará restablecer un conjunto de firmas conocidas.
Firmas intentadas:Actual
Código de error:0x8009200d
Descripción de error:No es un mensaje cifrado o no tiene el formato correcto. 
Versión de firma:1.247.990.0
Versión de motor:1.1.13903.0

==================== Memory info =========================== 

BIOS: American Megatrends Inc. 09PW.ME13.20121101.SKK 11/01/2012
Motherboard: SAMSUNG ELECTRONICS CO., LTD. 305V4A/305V4A
Processor: AMD A8-3530MX APU with Radeon(tm) HD Graphics
Percentage of memory in use: 74%
Total physical RAM: 5611.8 MB
Available physical RAM: 1440.69 MB
Total Virtual: 11221.75 MB
Available Virtual: 5557.67 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:271 GB) (Free:103.2 GB) NTFS
Drive d: () (Fixed) (Total:404.91 GB) (Free:385.25 GB) NTFS

\\?\Volume{4ac241ba-38be-11e1-9ad7-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{7724ff47-56dd-11e1-a035-806e6f6e6963}\ (SAMSUNG_REC) (Fixed) (Total:22.63 GB) (Free:0.94 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: D7E38D05)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=271 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=404.9 GB) - (Type=0F Extended)
Partition 4: (Not Active) - (Size=22.6 GB) - (Type=27)

==================== End of Addition.txt ============================
````
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-08-2019
Ran by Ana (administrator) on ANA-PC (SAMSUNG ELECTRONICS CO., LTD. 305V4A/305V5A/3415VA) (22-08-2019 21:01:05)
Running from C:\Users\Ana\Desktop
Loaded Profiles: Ana (Available Profiles: Ana)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(AppEx Networks Corporation -> AppEx Networks Corporation) C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Atheros Communications Inc. -> Atheros Communications) [File not signed] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Communications Inc. -> Atheros) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(CyberLink -> ) [File not signed] C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(CyberLink -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company -> ArcSoft, Inc.) C:\Users\Ana\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\avpui.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Nota Inc. -> Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(pdfforge GmbH -> © pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Samsung Control Center\MovieColorEnhancer.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Control Center\dmhkcore.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Control Center\EasySpeedUpManager.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Control Center\SmartSetting.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics) [File not signed] C:\Program Files (x86)\Samsung\Eco Mode\SmartEco.exe
(Samsung Electronics CO., LTD. -> SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics) C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe
(Samsung Electronics CO., LTD. -> SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11895400 2011-06-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [790688 2011-06-15] (Atheros Communications Inc. -> Atheros Communications) [File not signed]
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [657568 2011-06-15] (Atheros Communications Inc. -> Atheros Commnucations) [File not signed]
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2588968 2010-11-13] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-05-07] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [912776 2019-08-01] (Nota Inc. -> Nota Inc.)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46993264 2019-06-27] (Google LLC -> )
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [Spotify] => C:\Users\Ana\AppData\Roaming\Spotify\Spotify.exe [25828256 2019-08-02] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [488640 2015-04-06] (AppEx Networks Corporation -> AppEx Networks Corporation)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19589208 2018-12-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\MountPoints2: {2cee3b63-0b22-11e2-a7e8-e8039a8082d3} - F:\HPLauncher.exe
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\MountPoints2: {b4c82a67-cdcd-11e7-87a3-e8039a8082d3} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\MountPoints2: {cb384ac6-56fb-11e5-902d-e8039a8082d3} - F:\setup.exe
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKLM\...\Drivers32: [VIDC.FPS1] => C:\windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [155648 2004-12-20] () [File not signed]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\SysWOW64\pdvcodec.dll [265797 2010-03-12] (Matsushita Electric Industrial Co., Ltd.) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\windows\SysWOW64\vp6vfw.dll [442368 2005-02-26] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\windows\SysWOW64\vp6vfw.dll [442368 2005-02-26] (On2.com) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.100\Installer\chrmstp.exe [2019-08-08] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {05142308-AEA3-426C-B276-11CD57252671} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\Overseer.exe [2045832 2019-08-20] (AVAST Software s.r.o. -> AVAST Software)
Task: {39A7EB5C-59F5-4003-AEC8-062395A9003A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14636224 2018-12-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3EC8477E-4C56-4ABF-8A2E-876ECE06FB7F} - \EPUpdater -> No File <==== ATTENTION
Task: {6B13C1FB-CCDD-4606-94D6-BC194C921057} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-14] (Google Inc -> Google Inc.)
Task: {75E6C989-5165-4EDD-82EB-5A9CC54005C5} - System32\Tasks\advSRS5 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [4399696 2011-03-29] (Samsung Electronics CO., LTD. -> SEC)
Task: {8E8A1F14-E616-4977-940A-37DAAF20EBC5} - System32\Tasks\MovieColorEnhancer => C:\Program Files (x86)\Samsung\Samsung Control Center\MovieColorEnhancer.exe [775848 2011-02-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) [File not signed]
Task: {970B8590-D99F-4DA0-AB85-81BDFD991EC4} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-08-01] (Nota Inc. -> Nota Inc.)
Task: {A2A55F13-8230-4004-B906-35D9F5EEFA65} - System32\Tasks\SmartSetting => C:\Program Files (x86)\Samsung\Samsung Control Center\SmartSetting.exe [2213968 2011-06-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {AF3A331E-BAD3-4631-BA9E-9930CE472450} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-14] (Google Inc -> Google Inc.)
Task: {B25AA6A2-1878-466F-96BD-4EC102FE1193} - System32\Tasks\SUPBackground => C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe [2782064 2011-01-12] (Samsung Electronics CO., LTD. -> Samsung Electronics)
Task: {B635957A-938C-4D8B-B497-CB5D8DA020A1} - \BrowserDefendert -> No File <==== ATTENTION
Task: {BD09A8C9-4AE0-42EF-8E74-6F376DE46510} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {C2421444-0EB6-489E-AB89-4540DDDD85E9} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-08-01] (Nota Inc. -> Nota Inc.)
Task: {C2C1471B-3C53-4CFA-8968-975C81A9F121} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Samsung Control Center\dmhkcore.exe [2158160 2011-06-15] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {C8D338A7-0AF5-4DC9-AEBC-7FE2109FC582} - System32\Tasks\SamsungSupportCenter => C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe [3398736 2011-09-04] (Samsung Electronics CO., LTD. -> SAMSUNG Electronics)
Task: {C9A48647-3938-4242-A922-87655C713DA6} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2011-08-17] (CyberLink -> CyberLink)
Task: {D00F3BB1-CA74-41AD-988D-BCF14026DD0B} - System32\Tasks\EcoMode => C:\Program Files (x86)\Samsung\Eco Mode\SmartEco.exe [3870112 2011-06-06] (Samsung Electronics CO., LTD. -> Samsung Electronics) [File not signed]
Task: {D0D33214-2833-486F-BA95-A57F735FC105} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-08-20] (Adobe Inc. -> Adobe)
Task: {D206D0B7-2490-4C84-8D11-5030C0A5DD30} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {DEF2127F-45A2-45D6-8315-E6BB24D637A9} - System32\Tasks\SvcDelay => C:\windows\temp\SvcDelay.exe <==== ATTENTION
Task: {E55CF88C-0EBF-4169-A47A-16494F3123C1} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {F5A982A4-C3B0-4078-BB46-32DBE7672422} - System32\Tasks\SCCSpeedBoot => Command(1): "%programfiles(x86)%\Samsung\Samsung Control Center\SCCSpeedBoot.exe" -> /s
Task: {F5A982A4-C3B0-4078-BB46-32DBE7672422} - System32\Tasks\SCCSpeedBoot => Command(2): C:\Program Files (x86)\Samsung\Samsung Control Center\EasySpeedUpManager.exe [727120  [727120 2011-04-14]] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {F68F1B8D-3CBA-4389-80EE-E9686121F17E} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\Samsung Control Center\EBM\EasyBatteryMgr4.exe [1701456 2011-05-09] (Samsung Electronics CO., LTD. -> SAMSUNG Electronics co., LTD.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{6F42BB7F-991B-4DA8-8216-75A04656AD0F}: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{F2147347-DDF4-4D9D-A09E-B48D48DBA9E2}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SMSTDF&pc=MASM&src=IE-SearchBox
BHO: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\x64\IEExt\ie_plugin.dll [2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2011-06-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\IEExt\ie_plugin.dll [2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-06-15] (Atheros Communications Inc. -> Atheros Commnucations) [File not signed]
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Samsung BHO Class -> {AA609D72-8482-4076-8991-8CDAE5B93BCB} -> C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll [2010-10-25] () [File not signed]
Toolbar: HKLM - Kaspersky Protection Toolbar - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\x64\IEExt\ie_plugin.dll [2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\IEExt\ie_plugin.dll [2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)

FireFox:
========
FF ProfilePath: C:\Users\Ana\AppData\Roaming\Mozilla\Firefox\Profiles\5s6tjayi.default-1442222326095 [2019-08-22]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\FFExt\light_plugin_firefox\addon.xpi [2019-05-24]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-17] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-17] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-1231317149-393754485-1902646098-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\Ana\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2018-10-10] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default [2019-08-22]
CHR Extension: (Google Drive) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-19]
CHR Extension: (YouTube) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Búsqueda de Google) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-30]
CHR Extension: (Botón Guardar de Pinterest) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2019-08-22]
CHR Extension: (Player para ver Movistar+) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\kenfcfndncbbggmafjjeihkdclggbojn [2019-03-13]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-11-18]
CHR Extension: (Kaspersky Protection) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\mchjnmdbdlkdbfliogedbnpnanfjnolk [2018-02-21]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-05]
CHR Extension: (Gmail) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-07]
CHR Extension: (Chrome Media Router) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-08]
CHR HKLM\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk
CHR HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Ana\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-11-18]
CHR HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\windows\system32\atiesrxx.exe [246784 2015-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-06-15] (Atheros Communications Inc. -> Atheros) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [91296 2011-06-15] (Atheros Communications Inc. -> Atheros Commnucations) [File not signed]
R2 AVP18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\avp.exe [354672 2017-01-24] (Kaspersky Lab -> AO Kaspersky Lab)
R2 BackupService; C:\Users\Ana\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe [83512 2010-07-01] (Hewlett-Packard Company -> ArcSoft, Inc.)
S3 klvssbridge64_18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\x64\vssbridge64.exe [424080 2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119176 2017-01-14] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2181648 2017-01-14] (Electronic Arts, Inc. -> Electronic Arts)
R2 PDF Architect 5 Manager; C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985904 2017-02-01] (pdfforge GmbH -> © pdfforge GmbH.)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2009-12-01] (CyberLink -> ) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\windows\System32\DRIVERS\atikmdag.sys [21622784 2015-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\windows\System32\DRIVERS\atikmpag.sys [665088 2015-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\windows\System32\DRIVERS\amd_sata.sys [79488 2011-06-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\windows\System32\DRIVERS\amd_xata.sys [40064 2011-06-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 Apowersoft_AudioDevice; C:\windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (APOWERSOFT LIMITED -> Wondershare)
R2 APXACC; C:\windows\System32\DRIVERS\appexDrv.sys [229056 2015-04-03] (AppEx Networks Corporation -> AppEx Networks Corporation)
R3 athr; C:\windows\System32\DRIVERS\athrx.sys [2797056 2011-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\windows\System32\drivers\AtihdW76.sys [104976 2016-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 clwvd; C:\windows\System32\DRIVERS\clwvd.sys [31216 2011-08-17] (CyberLink -> CyberLink Corporation)
R0 cm_km; C:\windows\System32\DRIVERS\cm_km.sys [247008 2016-12-26] (Kaspersky Lab -> AO Kaspersky Lab)
S3 dtlitescsibus; C:\windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-09-09] (Disc Soft Ltd -> Disc Soft Ltd)
R0 kl1; C:\windows\System32\DRIVERS\kl1.sys [554408 2016-10-01] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klbackupdisk; C:\windows\System32\DRIVERS\klbackupdisk.sys [70880 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\windows\System32\DRIVERS\klbackupflt.sys [119608 2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
R2 kldisk; C:\windows\System32\DRIVERS\kldisk.sys [85704 2018-07-25] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klflt; C:\windows\System32\DRIVERS\klflt.sys [206024 2018-05-06] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\windows\System32\DRIVERS\klhk.sys [1093248 2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\windows\System32\DRIVERS\klif.sys [1075024 2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIM6; C:\windows\System32\DRIVERS\klim6.sys [56520 2018-05-06] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\windows\System32\DRIVERS\klkbdflt.sys [57568 2016-12-23] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\windows\System32\DRIVERS\klmouflt.sys [58592 2016-12-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\windows\System32\DRIVERS\klpd.sys [50672 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kltdi; C:\windows\System32\DRIVERS\kltdi.sys [81904 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 Klwtp; C:\windows\System32\DRIVERS\klwtp.sys [141952 2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\windows\System32\DRIVERS\kneps.sys [199392 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
S3 rtport; C:\windows\SysWOW64\drivers\rtport.sys [15144 2012-02-14] (Realtek Semiconductor Corp -> Windows (R) 2003 DDK 3790 provider)
R1 SABI; C:\windows\system32\Drivers\SABI.sys [13824 2009-05-28] (Microsoft Windows Hardware Compatibility Publisher -> SAMSUNG ELECTRONICS)
S3 USBAAPL64; C:\windows\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 mbamchameleon; \??\C:\windows\system32\drivers\mbamchameleon.sys [X]
S3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 SBIOSIO; \??\C:\Users\Ana\AppData\Local\Temp\__Samsung_Update\SBIOSIO64.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-22 21:01 - 2019-08-22 21:04 - 000033281 _____ C:\Users\Ana\Desktop\FRST.txt
2019-08-22 21:00 - 2019-08-22 21:01 - 000000000 ____D C:\FRST
2019-08-22 20:57 - 2019-08-22 20:57 - 001612800 _____ (Farbar) C:\Users\Ana\Desktop\FRST64.exe
2019-08-22 16:38 - 2019-08-22 16:38 - 000000000 ___RD C:\Users\Ana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2019-08-22 12:09 - 2019-08-06 00:58 - 000397432 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2019-08-22 12:09 - 2019-08-05 23:55 - 000348800 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2019-08-22 12:09 - 2019-08-04 04:02 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2019-08-22 12:09 - 2019-08-04 03:51 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2019-08-22 12:09 - 2019-08-04 03:51 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2019-08-22 12:09 - 2019-08-04 03:43 - 000969216 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2019-08-22 12:09 - 2019-08-04 03:34 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2019-08-22 12:09 - 2019-08-04 03:21 - 020291584 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2019-08-22 12:09 - 2019-08-04 03:14 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2019-08-22 12:09 - 2019-08-04 03:04 - 000496128 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2019-08-22 12:09 - 2019-08-04 03:03 - 000062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2019-08-22 12:09 - 2019-08-04 03:00 - 002301952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2019-08-22 12:09 - 2019-08-04 02:57 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2019-08-22 12:09 - 2019-08-04 02:54 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2019-08-22 12:09 - 2019-08-04 02:50 - 001566208 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2019-08-22 12:09 - 2019-08-04 02:41 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-08-22 12:09 - 2019-08-04 02:40 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2019-08-22 12:09 - 2019-08-04 02:37 - 000076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2019-08-22 12:09 - 2019-08-04 02:36 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2019-08-22 12:09 - 2019-08-04 02:28 - 002058752 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2019-08-22 12:09 - 2019-08-04 02:28 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2019-08-22 12:09 - 2019-08-04 02:06 - 001331200 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2019-08-22 12:08 - 2019-08-04 05:37 - 025754624 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2019-08-22 12:08 - 2019-08-04 04:16 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2019-08-22 12:08 - 2019-08-04 04:16 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2019-08-22 12:08 - 2019-08-04 04:04 - 002909184 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2019-08-22 12:08 - 2019-08-04 04:03 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2019-08-22 12:08 - 2019-08-04 04:02 - 000578560 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2019-08-22 12:08 - 2019-08-04 04:02 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2019-08-22 12:08 - 2019-08-04 04:01 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2019-08-22 12:08 - 2019-08-04 03:55 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2019-08-22 12:08 - 2019-08-04 03:54 - 005775872 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2019-08-22 12:08 - 2019-08-04 03:54 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2019-08-22 12:08 - 2019-08-04 03:52 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2019-08-22 12:08 - 2019-08-04 03:51 - 000790528 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2019-08-22 12:08 - 2019-08-04 03:50 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2019-08-22 12:08 - 2019-08-04 03:40 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2019-08-22 12:08 - 2019-08-04 03:33 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2019-08-22 12:08 - 2019-08-04 03:33 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2019-08-22 12:08 - 2019-08-04 03:30 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2019-08-22 12:08 - 2019-08-04 03:29 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2019-08-22 12:08 - 2019-08-04 03:27 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2019-08-22 12:08 - 2019-08-04 03:25 - 000152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2019-08-22 12:08 - 2019-08-04 03:16 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2019-08-22 12:08 - 2019-08-04 03:15 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2019-08-22 12:08 - 2019-08-04 03:14 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2019-08-22 12:08 - 2019-08-04 03:12 - 002132480 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2019-08-22 12:08 - 2019-08-04 03:12 - 001359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2019-08-22 12:08 - 2019-08-04 03:11 - 015390720 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2019-08-22 12:08 - 2019-08-04 03:03 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2019-08-22 12:08 - 2019-08-04 03:03 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2019-08-22 12:08 - 2019-08-04 03:02 - 000064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2019-08-22 12:08 - 2019-08-04 03:01 - 004859392 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2019-08-22 12:08 - 2019-08-04 02:57 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2019-08-22 12:08 - 2019-08-04 02:55 - 000476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2019-08-22 12:08 - 2019-08-04 02:54 - 000663040 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2019-08-22 12:08 - 2019-08-04 02:53 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2019-08-22 12:08 - 2019-08-04 02:45 - 000416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2019-08-22 12:08 - 2019-08-04 02:41 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2019-08-22 12:08 - 2019-08-04 02:40 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2019-08-22 12:08 - 2019-08-04 02:38 - 000168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2019-08-22 12:08 - 2019-08-04 02:35 - 000130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2019-08-22 12:08 - 2019-08-04 02:32 - 004494848 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2019-08-22 12:08 - 2019-08-04 02:29 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2019-08-22 12:08 - 2019-08-04 02:27 - 001155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2019-08-22 12:08 - 2019-08-04 02:23 - 013791744 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2019-08-22 12:08 - 2019-08-04 02:09 - 004387840 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2019-08-22 12:08 - 2019-08-04 02:04 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2019-08-22 12:08 - 2019-07-30 04:25 - 000627424 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2019-08-22 12:08 - 2019-07-30 04:23 - 005552568 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2019-08-22 12:08 - 2019-07-30 04:23 - 000710072 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2019-08-22 12:08 - 2019-07-30 04:23 - 000264120 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2019-08-22 12:08 - 2019-07-30 04:23 - 000155576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2019-08-22 12:08 - 2019-07-30 04:23 - 000097208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2019-08-22 12:08 - 2019-07-30 04:22 - 001671000 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 002072576 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 001472512 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 001211392 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 001162752 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000878080 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000733184 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000517632 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000408576 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000361984 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000317440 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000236032 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\sscore.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 004058848 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2019-08-22 12:08 - 2019-07-30 04:19 - 003965664 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2019-08-22 12:08 - 2019-07-30 04:19 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\comcat.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:17 - 001319488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 001425920 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000583680 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000555520 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000261632 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleres.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 03:56 - 000556032 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthport.sys
2019-08-22 12:08 - 2019-07-30 03:56 - 000229376 _____ (Microsoft Corporation) C:\windows\system32\fsquirt.exe
2019-08-22 12:08 - 2019-07-30 03:56 - 000080384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\BTHUSB.SYS
2019-08-22 12:08 - 2019-07-30 03:56 - 000041984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthenum.sys
2019-08-22 12:08 - 2019-07-30 03:54 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\comcat.dll
2019-08-22 12:08 - 2019-07-30 03:53 - 000009728 _____ (Microsoft Corporation) C:\windows\SysWOW64\sscore.dll
2019-08-22 12:08 - 2019-07-30 03:52 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2019-08-22 12:08 - 2019-07-30 03:51 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2019-08-22 12:08 - 2019-07-30 03:51 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2019-08-22 12:08 - 2019-07-30 03:51 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2019-08-22 12:08 - 2019-07-30 03:51 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2019-08-22 12:08 - 2019-07-30 03:48 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2019-08-22 12:08 - 2019-07-30 03:48 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2019-08-22 12:08 - 2019-07-30 03:48 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2019-08-22 12:08 - 2019-07-30 03:48 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2019-08-22 12:08 - 2019-07-30 03:48 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2019-08-22 12:08 - 2019-07-30 03:48 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2019-08-22 12:08 - 2019-07-30 03:47 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2019-08-22 12:08 - 2019-07-30 03:47 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2019-08-22 12:08 - 2019-07-30 03:47 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 03:47 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 03:47 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 03:47 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 03:44 - 000464384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2019-08-22 12:08 - 2019-07-30 03:44 - 000406016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2019-08-22 12:08 - 2019-07-30 03:44 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2019-08-22 12:08 - 2019-07-30 03:44 - 000169984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2019-08-22 12:08 - 2019-07-30 03:44 - 000161280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2019-08-22 12:08 - 2019-07-30 03:44 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2019-08-22 12:08 - 2019-07-30 03:43 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2019-08-22 12:08 - 2019-07-30 03:43 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2019-08-22 12:08 - 2019-07-30 03:43 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2019-08-22 12:08 - 2019-07-30 03:43 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2019-08-22 12:08 - 2019-07-30 03:43 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2019-08-22 12:08 - 2019-07-30 03:43 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\npfs.sys
2019-08-22 12:08 - 2019-07-30 03:43 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2019-08-22 12:08 - 2019-07-24 02:37 - 003187712 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2019-08-22 12:08 - 2019-07-19 05:30 - 003231744 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2019-08-22 12:08 - 2019-07-13 10:37 - 000311008 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2019-08-22 12:08 - 2019-07-13 10:36 - 000289720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2019-08-22 12:08 - 2019-07-13 10:35 - 001894840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2019-08-22 12:08 - 2019-07-13 10:35 - 000385464 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2019-08-22 12:08 - 2019-07-13 10:35 - 000378808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2019-08-22 12:08 - 2019-07-13 10:34 - 001391616 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000836608 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000335360 _____ (Microsoft Corporation) C:\windows\SysWOW64\P2PGraph.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000217600 _____ (Microsoft Corporation) C:\windows\SysWOW64\P2P.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000180736 _____ (Microsoft Corporation) C:\windows\SysWOW64\xmllite.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\t2embed.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000039936 _____ (Microsoft Corporation) C:\windows\SysWOW64\ssdpapi.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll
2019-08-22 12:08 - 2019-07-13 10:33 - 000256512 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore.dll
2019-08-22 12:08 - 2019-07-13 10:33 - 000194560 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore6.dll
2019-08-22 12:08 - 2019-07-13 10:33 - 000071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2019-08-22 12:08 - 2019-07-13 10:33 - 000061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc.dll
2019-08-22 12:08 - 2019-07-13 10:33 - 000043520 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc6.dll
2019-08-22 12:08 - 2019-07-13 10:33 - 000010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 002009600 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 001077760 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000408576 _____ (Microsoft Corporation) C:\windows\system32\P2PGraph.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000405504 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000327168 _____ (Microsoft Corporation) C:\windows\system32\pnrpsvc.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000264704 _____ (Microsoft Corporation) C:\windows\system32\P2P.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000198656 _____ (Microsoft Corporation) C:\windows\system32\xmllite.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000193024 _____ (Microsoft Corporation) C:\windows\system32\ssdpsrv.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000151552 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000101376 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000071680 _____ (Microsoft Corporation) C:\windows\system32\Groupinghc.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000051200 _____ (Microsoft Corporation) C:\windows\system32\ssdpapi.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000318976 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000226304 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000086528 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc6.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000013824 _____ (Microsoft Corporation) C:\windows\system32\dhcpcmonitor.dll
2019-08-22 12:08 - 2019-07-13 10:22 - 000353280 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll
2019-08-22 12:08 - 2019-07-13 10:22 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msexcl40.dll
2019-08-22 12:08 - 2019-07-13 10:22 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd2x40.dll
2019-08-22 12:08 - 2019-07-13 10:15 - 006135808 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2019-08-22 12:08 - 2019-07-13 10:13 - 000011264 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcmonitor.dll
2019-08-22 12:08 - 2019-07-13 10:07 - 000034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2019-08-22 12:08 - 2019-07-11 02:05 - 007082496 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2019-08-22 12:08 - 2019-07-04 03:56 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2019-08-22 12:08 - 2019-07-04 03:14 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2019-08-22 11:27 - 2019-08-22 11:28 - 000000000 ____D C:\Users\Ana\Documents\CV 2019 pre Opo
2019-07-27 12:58 - 2019-07-13 10:14 - 000334848 _____ (Microsoft Corporation) C:\windows\system32\sipnotify.exe
2019-07-27 12:57 - 2019-06-28 07:24 - 000887808 _____ (Microsoft Corporation) C:\windows\system32\wlansvc.dll
2019-07-27 12:57 - 2019-06-21 05:09 - 000806400 _____ (Microsoft Corporation) C:\windows\system32\usp10.dll
2019-07-27 12:57 - 2019-06-21 05:05 - 000628224 _____ (Microsoft Corporation) C:\windows\SysWOW64\usp10.dll
2019-07-27 12:57 - 2019-06-21 03:41 - 001251840 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2019-07-27 12:57 - 2019-06-18 08:41 - 001649664 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2019-07-27 12:57 - 2019-06-13 05:25 - 000160488 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2019-07-27 12:57 - 2019-06-13 05:21 - 000732160 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2019-07-27 12:57 - 2019-06-12 17:11 - 000094440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2019-07-27 12:57 - 2019-06-12 17:08 - 000782848 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2019-07-27 12:57 - 2019-06-12 17:07 - 004120576 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2019-07-27 12:57 - 2019-06-12 17:07 - 001202176 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2019-07-27 12:57 - 2019-06-12 17:07 - 000641024 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2019-07-27 12:57 - 2019-06-12 17:07 - 000206848 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2019-07-27 12:57 - 2019-06-12 17:06 - 000842240 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2019-07-27 12:57 - 2019-06-12 17:06 - 000680960 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2019-07-27 12:57 - 2019-06-12 16:49 - 000205312 _____ (Microsoft Corporation) C:\windows\SysWOW64\Dism.exe
2019-07-27 12:57 - 2019-06-12 16:37 - 000274944 _____ (Microsoft Corporation) C:\windows\system32\Dism.exe
2019-07-27 12:57 - 2019-06-11 04:59 - 002863104 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2019-07-27 12:57 - 2019-06-11 04:59 - 001712640 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2019-07-27 12:57 - 2019-06-11 04:59 - 000801792 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2019-07-27 12:57 - 2019-06-11 04:59 - 000634368 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2019-07-27 12:57 - 2019-06-11 04:59 - 000501760 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2019-07-27 12:57 - 2019-06-11 04:59 - 000456192 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2019-07-27 12:57 - 2019-06-11 04:59 - 000315904 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2019-07-27 12:57 - 2019-06-11 04:59 - 000257024 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2019-07-27 12:56 - 2019-06-28 07:24 - 000448512 _____ (Microsoft Corporation) C:\windows\system32\wlansec.dll
2019-07-27 12:56 - 2019-06-28 07:24 - 000414208 _____ (Microsoft Corporation) C:\windows\system32\wlanmsm.dll
2019-07-27 12:56 - 2019-06-28 07:24 - 000118784 _____ (Microsoft Corporation) C:\windows\system32\wlanhlp.dll
2019-07-27 12:56 - 2019-06-28 07:24 - 000113664 _____ (Microsoft Corporation) C:\windows\system32\wlanapi.dll
2019-07-27 12:56 - 2019-06-28 07:23 - 000428032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanmsm.dll
2019-07-27 12:56 - 2019-06-28 07:23 - 000392704 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlansec.dll
2019-07-27 12:56 - 2019-06-28 07:23 - 000083968 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanhlp.dll
2019-07-27 12:56 - 2019-06-28 07:23 - 000080896 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanapi.dll
2019-07-27 12:56 - 2019-06-12 17:21 - 012574208 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2019-07-27 12:56 - 2019-06-12 17:21 - 011411968 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2019-07-27 12:56 - 2019-06-12 17:21 - 000617984 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmdrmsdk.dll
2019-07-27 12:56 - 2019-06-12 17:21 - 000179712 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 003207168 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 001329664 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000988160 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmv2clt.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000504320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msscp.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000489984 _____ (Microsoft Corporation) C:\windows\SysWOW64\evr.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\AUDIOKSE.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000406016 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmmgrtn.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000354816 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfplat.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000265216 _____ (Microsoft Corporation) C:\windows\SysWOW64\msnetobj.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000103424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfps.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000046592 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssign32.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\mferror.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 001177088 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 001005056 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptui.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 000744960 _____ (Microsoft Corporation) C:\windows\SysWOW64\blackbox.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 000373248 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioEng.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 000195072 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioSes.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 000106496 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 000080896 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsp.dll
2019-07-27 12:56 - 2019-06-12 17:08 - 014637568 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2019-07-27 12:56 - 2019-06-12 17:08 - 012574720 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2019-07-27 12:56 - 2019-06-12 17:08 - 000229376 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2019-07-27 12:56 - 2019-06-12 17:08 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2019-07-27 12:56 - 2019-06-12 17:08 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 001574400 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 001484800 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 001068544 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000632320 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000499712 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000497664 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000433152 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000371712 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000325632 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000284672 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000190976 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000187904 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000141824 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000081920 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\mssign32.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000037376 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2019-07-27 12:56 - 2019-06-12 17:06 - 000438784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2019-07-27 12:56 - 2019-06-12 17:06 - 000295936 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2019-07-27 12:56 - 2019-06-12 17:06 - 000008192 _____ (Microsoft Corporation) C:\windows\SysWOW64\spwmp.dll
2019-07-27 12:56 - 2019-06-12 17:06 - 000004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdxm.ocx
2019-07-27 12:56 - 2019-06-12 17:06 - 000004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxmasf.dll
2019-07-27 12:56 - 2019-06-12 17:05 - 000050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\rrinstaller.exe
2019-07-27 12:56 - 2019-06-12 17:04 - 000023040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfpmp.exe
2019-07-27 12:56 - 2019-06-12 17:01 - 000663552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2019-07-27 12:56 - 2019-06-12 16:50 - 000055808 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2019-07-27 12:56 - 2019-06-12 16:49 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2019-07-27 12:56 - 2019-06-12 16:49 - 000024576 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2019-07-27 12:56 - 2019-06-12 16:37 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\pcawrk.exe
2019-07-27 12:56 - 2019-06-12 16:37 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-22 21:03 - 2009-07-14 06:45 - 000029168 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-08-22 21:03 - 2009-07-14 06:45 - 000029168 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-08-22 21:00 - 2016-03-15 13:52 - 000000000 ____D C:\Users\Ana\AppData\Local\Spotify
2019-08-22 20:35 - 2016-03-15 13:51 - 000000000 ____D C:\Users\Ana\AppData\Roaming\Spotify
2019-08-22 19:06 - 2016-05-21 14:36 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2019-08-22 16:43 - 2012-01-07 01:10 - 000752074 _____ C:\windows\system32\perfh00A.dat
2019-08-22 16:43 - 2012-01-07 01:10 - 000160826 _____ C:\windows\system32\perfc00A.dat
2019-08-22 16:43 - 2009-07-14 07:13 - 001688976 _____ C:\windows\system32\PerfStringBackup.INI
2019-08-22 16:43 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2019-08-22 16:41 - 2016-10-08 15:54 - 000000000 ___RD C:\Users\Ana\iCloudDrive
2019-08-22 16:36 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-08-22 16:32 - 2009-07-14 06:45 - 000467424 _____ C:\windows\system32\FNTCACHE.DAT
2019-08-22 16:27 - 2009-07-14 05:20 - 000000000 ____D C:\windows\PolicyDefinitions
2019-08-22 11:26 - 2012-09-29 01:08 - 000000000 ____D C:\Users\Ana\AppData\Roaming\PhotoScape
2019-08-21 13:36 - 2017-11-09 11:57 - 000004128 _____ C:\windows\System32\Tasks\CCleaner Update
2019-08-20 12:22 - 2012-10-05 16:16 - 000000000 ____D C:\Users\Ana\AppData\Local\CrashDumps
2019-08-20 11:26 - 2013-07-10 20:30 - 000842296 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerApp.exe
2019-08-20 11:26 - 2013-07-10 20:30 - 000175160 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-08-20 11:26 - 2013-07-10 20:30 - 000004320 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2019-08-20 11:26 - 2013-07-10 20:29 - 000000000 ____D C:\windows\system32\Macromed
2019-08-20 11:26 - 2012-01-06 08:55 - 000000000 ____D C:\windows\SysWOW64\Macromed
2019-08-08 19:21 - 2015-07-08 09:18 - 000003396 _____ C:\windows\System32\Tasks\GyazoUpdateTaskMachineDaily
2019-08-08 19:21 - 2015-06-05 10:27 - 000003270 _____ C:\windows\System32\Tasks\GyazoUpdateTaskMachine
2019-08-08 19:21 - 2012-10-01 12:08 - 000000000 ____D C:\Program Files (x86)\Gyazo
2019-08-08 11:02 - 2015-09-14 22:26 - 000002182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-07-29 10:51 - 2014-12-10 15:15 - 000000000 ____D C:\windows\system32\appraiser
2019-07-29 10:51 - 2014-05-06 16:59 - 000000000 ___SD C:\windows\system32\CompatTel
2019-07-29 10:51 - 2009-07-14 05:20 - 000000000 ____D C:\windows\SysWOW64\Dism
2019-07-29 10:51 - 2009-07-14 05:20 - 000000000 ____D C:\windows\system32\Dism
2019-07-29 10:47 - 2013-02-05 18:09 - 001663562 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2019-07-27 12:13 - 2017-09-15 14:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google

==================== Files in the root of some directories ================

2013-01-09 01:53 - 2013-01-09 01:53 - 000000132 _____ () C:\Users\Ana\AppData\Roaming\Adobe GIF Format CS5 Prefs
2012-11-04 18:57 - 2018-09-30 21:26 - 000000132 _____ () C:\Users\Ana\AppData\Roaming\Adobe PNG Format CS5 Prefs
2012-12-04 00:20 - 2012-12-05 15:04 - 000000132 _____ () C:\Users\Ana\AppData\Roaming\Adobe Targa Format CS5 Prefs
2013-07-28 15:43 - 2013-07-28 20:55 - 000000101 _____ () C:\Users\Ana\AppData\Roaming\Camdata.ini
2013-07-28 15:43 - 2013-07-28 20:55 - 000000408 _____ () C:\Users\Ana\AppData\Roaming\CamLayout.ini
2013-07-28 15:43 - 2013-07-28 20:55 - 000000408 _____ () C:\Users\Ana\AppData\Roaming\CamShapes.ini
2013-07-28 15:43 - 2013-07-28 20:55 - 000004521 _____ () C:\Users\Ana\AppData\Roaming\CamStudio.cfg
2018-11-25 15:13 - 2018-12-06 14:16 - 000012259 _____ () C:\Users\Ana\AppData\Roaming\downloads.json
2012-12-03 15:56 - 2016-08-08 19:11 - 000011264 _____ () C:\Users\Ana\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-01-06 23:11 - 2013-01-06 23:11 - 000003072 _____ () C:\Users\Ana\AppData\Local\file__0.localstorage
2013-01-06 23:11 - 2013-01-06 23:25 - 000003072 _____ () C:\Users\Ana\AppData\Local\https_drm.youdagames.com_0.localstorage

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-07-04 15:27
==================== End of FRST.txt ============================

Gracias :smile:

Hola.

Realizá un scan con Eset Online, siguiendo su manual de uso:

Elimina Todo lo que encuentre.

En Tu próxima respuesta, pegas el reporte. Envuelvelo con una etiqueta escrita CODE_Inicial al inicio del informe y otra como este CODE_Final al final del mismo.

Nos comentas como sigue el problema original por el que abriste el tema.

Saludos

Hola de nuevo! Allá va el reporte:

 23/08/2019 17:09:24
Archivos explorados: 430965
Archivos infectados: 5
Amenazas eliminadas: 5
Tiempo total de exploración 04:17:48
Estado de la exploración: Finalizado


C:\Users\Ana\Downloads\ccsetup551.exe	Win32/Bundled.Toolbar.Google.D aplicación potencialmente no segura	desinfectado por eliminación
C:\Users\Ana\Downloads\FYDLoad_inflvto_12.exe	una variante de MSIL/FlytoYoutubeDownloader.A aplicación potencialmente no deseada	desinfectado por eliminación
C:\Users\Ana\Downloads\uTorrent (1).exe	una variante de MSIL/WebCompanion.A aplicación potencialmente no deseada,una variante de Win32/WebCompanion.B aplicación potencialmente no deseada	desinfectado por eliminación
C:\_OTL\MovedFiles\09132015_180023\C_Users\Ana\AppData\Roaming\mozilla\Firefox\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6}\chrome\CT3220468\content\popup.js	JS/Toolbar.Conduit.B aplicación potencialmente no deseada	desinfectado por eliminación
C:\_OTL\MovedFiles\09132015_180023\C_Users\Ana\AppData\Roaming\mozilla\Firefox\extensions\{db131c55-60c8-4adc-84dc-9e76ab06e2dc}\chrome\CT2851619\content\popup.js	JS/Toolbar.Conduit.B aplicación potencialmente no deseada	desinfectado por eliminación

En un par de horas trabajaré con el laptop para ver cómo siguen los problemas originales y os cuento. Gracias de nuevo! :smile:

Hola de nuevo! Lo que hasta ahora he podido observar es que sigue apareciendo el mensaje de “forzar apagado” cuando quiero apagar el ordenador. Además, pone que “los siguientes programas quieren cerrarse” (o algo similar) y sin embargo no hay ninguno. Espero haberme explicado. Por otro lado, sigue apareciendo la ventana de “Click to run”. En esta ventana pone que hay una actualización de microsoft office starter 2010, que si la quiero descargar. No obstante, me atrevo a decir que ahora funciona todo más rápido que antes y los programas o el navegador no tardan tanto ni se bloquean. Al menos de momento…

Gracias!!

Hola

Del primer programa que ejecutaste (FRST) solo pegaste el reporte Addition.txt, pero Yo necesito ver el reporte Frst.txt que debe estar en Tu escritorio.

Por favor, pega ese reporte

Saludos

Disculpa, estaba convencida de que lo había pegado. Espero que todo lo demás esté correcto, de no ser así ya me dices. Te pego el Frst.txt en varios mensajes, ya que no me cabe:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-08-2019
Ran by Ana (administrator) on ANA-PC (SAMSUNG ELECTRONICS CO., LTD. 305V4A/305V5A/3415VA) (22-08-2019 21:01:05)
Running from C:\Users\Ana\Desktop
Loaded Profiles: Ana (Available Profiles: Ana)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(AppEx Networks Corporation -> AppEx Networks Corporation) C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Atheros Communications Inc. -> Atheros Commnucations) [File not signed] C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Atheros Communications Inc. -> Atheros Communications) [File not signed] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Communications Inc. -> Atheros) [File not signed] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(CyberLink -> ) [File not signed] C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(CyberLink -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink -> CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company -> ArcSoft, Inc.) C:\Users\Ana\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\avpui.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Nota Inc. -> Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(pdfforge GmbH -> © pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Samsung Control Center\MovieColorEnhancer.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Control Center\dmhkcore.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Control Center\EasySpeedUpManager.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Control Center\SmartSetting.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics) [File not signed] C:\Program Files (x86)\Samsung\Eco Mode\SmartEco.exe
(Samsung Electronics CO., LTD. -> SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics) C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe
(Samsung Electronics CO., LTD. -> SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11895400 2011-06-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [790688 2011-06-15] (Atheros Communications Inc. -> Atheros Communications) [File not signed]
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [657568 2011-06-15] (Atheros Communications Inc. -> Atheros Commnucations) [File not signed]
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2588968 2010-11-13] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-05-07] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [912776 2019-08-01] (Nota Inc. -> Nota Inc.)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46993264 2019-06-27] (Google LLC -> )
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [Spotify] => C:\Users\Ana\AppData\Roaming\Spotify\Spotify.exe [25828256 2019-08-02] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [488640 2015-04-06] (AppEx Networks Corporation -> AppEx Networks Corporation)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19589208 2018-12-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\MountPoints2: {2cee3b63-0b22-11e2-a7e8-e8039a8082d3} - F:\HPLauncher.exe
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\MountPoints2: {b4c82a67-cdcd-11e7-87a3-e8039a8082d3} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\MountPoints2: {cb384ac6-56fb-11e5-902d-e8039a8082d3} - F:\setup.exe
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKLM\...\Drivers32: [VIDC.FPS1] => C:\windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [155648 2004-12-20] () [File not signed]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\SysWOW64\pdvcodec.dll [265797 2010-03-12] (Matsushita Electric Industrial Co., Ltd.) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\windows\SysWOW64\vp6vfw.dll [442368 2005-02-26] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\windows\SysWOW64\vp6vfw.dll [442368 2005-02-26] (On2.com) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.100\Installer\chrmstp.exe [2019-08-08] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {05142308-AEA3-426C-B276-11CD57252671} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\Overseer.exe [2045832 2019-08-20] (AVAST Software s.r.o. -> AVAST Software)
Task: {39A7EB5C-59F5-4003-AEC8-062395A9003A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14636224 2018-12-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3EC8477E-4C56-4ABF-8A2E-876ECE06FB7F} - \EPUpdater -> No File <==== ATTENTION
Task: {6B13C1FB-CCDD-4606-94D6-BC194C921057} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-14] (Google Inc -> Google Inc.)
Task: {75E6C989-5165-4EDD-82EB-5A9CC54005C5} - System32\Tasks\advSRS5 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [4399696 2011-03-29] (Samsung Electronics CO., LTD. -> SEC)
Task: {8E8A1F14-E616-4977-940A-37DAAF20EBC5} - System32\Tasks\MovieColorEnhancer => C:\Program Files (x86)\Samsung\Samsung Control Center\MovieColorEnhancer.exe [775848 2011-02-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) [File not signed]
Task: {970B8590-D99F-4DA0-AB85-81BDFD991EC4} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-08-01] (Nota Inc. -> Nota Inc.)
Task: {A2A55F13-8230-4004-B906-35D9F5EEFA65} - System32\Tasks\SmartSetting => C:\Program Files (x86)\Samsung\Samsung Control Center\SmartSetting.exe [2213968 2011-06-04] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {AF3A331E-BAD3-4631-BA9E-9930CE472450} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-14] (Google Inc -> Google Inc.)
Task: {B25AA6A2-1878-466F-96BD-4EC102FE1193} - System32\Tasks\SUPBackground => C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe [2782064 2011-01-12] (Samsung Electronics CO., LTD. -> Samsung Electronics)
Task: {B635957A-938C-4D8B-B497-CB5D8DA020A1} - \BrowserDefendert -> No File <==== ATTENTION
Task: {BD09A8C9-4AE0-42EF-8E74-6F376DE46510} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {C2421444-0EB6-489E-AB89-4540DDDD85E9} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2019-08-01] (Nota Inc. -> Nota Inc.)
Task: {C2C1471B-3C53-4CFA-8968-975C81A9F121} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Samsung Control Center\dmhkcore.exe [2158160 2011-06-15] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {C8D338A7-0AF5-4DC9-AEBC-7FE2109FC582} - System32\Tasks\SamsungSupportCenter => C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe [3398736 2011-09-04] (Samsung Electronics CO., LTD. -> SAMSUNG Electronics)
Task: {C9A48647-3938-4242-A922-87655C713DA6} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488 2011-08-17] (CyberLink -> CyberLink)
Task: {D00F3BB1-CA74-41AD-988D-BCF14026DD0B} - System32\Tasks\EcoMode => C:\Program Files (x86)\Samsung\Eco Mode\SmartEco.exe [3870112 2011-06-06] (Samsung Electronics CO., LTD. -> Samsung Electronics) [File not signed]
Task: {D0D33214-2833-486F-BA95-A57F735FC105} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-08-20] (Adobe Inc. -> Adobe)
Task: {D206D0B7-2490-4C84-8D11-5030C0A5DD30} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {DEF2127F-45A2-45D6-8315-E6BB24D637A9} - System32\Tasks\SvcDelay => C:\windows\temp\SvcDelay.exe <==== ATTENTION
Task: {E55CF88C-0EBF-4169-A47A-16494F3123C1} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {F5A982A4-C3B0-4078-BB46-32DBE7672422} - System32\Tasks\SCCSpeedBoot => Command(1): "%programfiles(x86)%\Samsung\Samsung Control Center\SCCSpeedBoot.exe" -> /s
Task: {F5A982A4-C3B0-4078-BB46-32DBE7672422} - System32\Tasks\SCCSpeedBoot => Command(2): C:\Program Files (x86)\Samsung\Samsung Control Center\EasySpeedUpManager.exe [727120  [727120 2011-04-14]] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
Task: {F68F1B8D-3CBA-4389-80EE-E9686121F17E} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\Samsung Control Center\EBM\EasyBatteryMgr4.exe [1701456 2011-05-09] (Samsung Electronics CO., LTD. -> SAMSUNG Electronics co., LTD.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{6F42BB7F-991B-4DA8-8216-75A04656AD0F}: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{F2147347-DDF4-4D9D-A09E-B48D48DBA9E2}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SMSTDF&pc=MASM&src=IE-SearchBox
BHO: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\x64\IEExt\ie_plugin.dll [2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2011-06-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\IEExt\ie_plugin.dll [2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-06-15] (Atheros Communications Inc. -> Atheros Commnucations) [File not signed]
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Samsung BHO Class -> {AA609D72-8482-4076-8991-8CDAE5B93BCB} -> C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll [2010-10-25] () [File not signed]
Toolbar: HKLM - Kaspersky Protection Toolbar - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\x64\IEExt\ie_plugin.dll [2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\IEExt\ie_plugin.dll [2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)

FireFox:
========
FF ProfilePath: C:\Users\Ana\AppData\Roaming\Mozilla\Firefox\Profiles\5s6tjayi.default-1442222326095 [2019-08-22]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\FFExt\light_plugin_firefox\addon.xpi [2019-05-24]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-17] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-17] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-1231317149-393754485-1902646098-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\Ana\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2018-10-10] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default [2019-08-22]
CHR Extension: (Google Drive) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-19]
CHR Extension: (YouTube) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Búsqueda de Google) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-30]
CHR Extension: (Botón Guardar de Pinterest) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2019-08-22]
CHR Extension: (Player para ver Movistar+) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\kenfcfndncbbggmafjjeihkdclggbojn [2019-03-13]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-11-18]
CHR Extension: (Kaspersky Protection) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\mchjnmdbdlkdbfliogedbnpnanfjnolk [2018-02-21]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-05]
CHR Extension: (Gmail) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-07]
CHR Extension: (Chrome Media Router) - C:\Users\Ana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-08]
CHR HKLM\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk
CHR HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Ana\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-11-18]
CHR HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\windows\system32\atiesrxx.exe [246784 2015-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-06-15] (Atheros Communications Inc. -> Atheros) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [91296 2011-06-15] (Atheros Communications Inc. -> Atheros Commnucations) [File not signed]
R2 AVP18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\avp.exe [354672 2017-01-24] (Kaspersky Lab -> AO Kaspersky Lab)
R2 BackupService; C:\Users\Ana\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe [83512 2010-07-01] (Hewlett-Packard Company -> ArcSoft, Inc.)
S3 klvssbridge64_18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\x64\vssbridge64.exe [424080 2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119176 2017-01-14] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2181648 2017-01-14] (Electronic Arts, Inc. -> Electronic Arts)
R2 PDF Architect 5 Manager; C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985904 2017-02-01] (pdfforge GmbH -> © pdfforge GmbH.)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2009-12-01] (CyberLink -> ) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\windows\System32\DRIVERS\atikmdag.sys [21622784 2015-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\windows\System32\DRIVERS\atikmpag.sys [665088 2015-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\windows\System32\DRIVERS\amd_sata.sys [79488 2011-06-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\windows\System32\DRIVERS\amd_xata.sys [40064 2011-06-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 Apowersoft_AudioDevice; C:\windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (APOWERSOFT LIMITED -> Wondershare)
R2 APXACC; C:\windows\System32\DRIVERS\appexDrv.sys [229056 2015-04-03] (AppEx Networks Corporation -> AppEx Networks Corporation)
R3 athr; C:\windows\System32\DRIVERS\athrx.sys [2797056 2011-12-13] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\windows\System32\drivers\AtihdW76.sys [104976 2016-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 clwvd; C:\windows\System32\DRIVERS\clwvd.sys [31216 2011-08-17] (CyberLink -> CyberLink Corporation)
R0 cm_km; C:\windows\System32\DRIVERS\cm_km.sys [247008 2016-12-26] (Kaspersky Lab -> AO Kaspersky Lab)
S3 dtlitescsibus; C:\windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-09-09] (Disc Soft Ltd -> Disc Soft Ltd)
R0 kl1; C:\windows\System32\DRIVERS\kl1.sys [554408 2016-10-01] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klbackupdisk; C:\windows\System32\DRIVERS\klbackupdisk.sys [70880 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\windows\System32\DRIVERS\klbackupflt.sys [119608 2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
R2 kldisk; C:\windows\System32\DRIVERS\kldisk.sys [85704 2018-07-25] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klflt; C:\windows\System32\DRIVERS\klflt.sys [206024 2018-05-06] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\windows\System32\DRIVERS\klhk.sys [1093248 2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\windows\System32\DRIVERS\klif.sys [1075024 2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIM6; C:\windows\System32\DRIVERS\klim6.sys [56520 2018-05-06] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\windows\System32\DRIVERS\klkbdflt.sys [57568 2016-12-23] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\windows\System32\DRIVERS\klmouflt.sys [58592 2016-12-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\windows\System32\DRIVERS\klpd.sys [50672 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kltdi; C:\windows\System32\DRIVERS\kltdi.sys [81904 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 Klwtp; C:\windows\System32\DRIVERS\klwtp.sys [141952 2019-05-24] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\windows\System32\DRIVERS\kneps.sys [199392 2017-12-24] (Kaspersky Lab -> AO Kaspersky Lab)
S3 rtport; C:\windows\SysWOW64\drivers\rtport.sys [15144 2012-02-14] (Realtek Semiconductor Corp -> Windows (R) 2003 DDK 3790 provider)
R1 SABI; C:\windows\system32\Drivers\SABI.sys [13824 2009-05-28] (Microsoft Windows Hardware Compatibility Publisher -> SAMSUNG ELECTRONICS)
S3 USBAAPL64; C:\windows\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 mbamchameleon; \??\C:\windows\system32\drivers\mbamchameleon.sys [X]
S3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 SBIOSIO; \??\C:\Users\Ana\AppData\Local\Temp\__Samsung_Update\SBIOSIO64.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-22 21:01 - 2019-08-22 21:04 - 000033281 _____ C:\Users\Ana\Desktop\FRST.txt
2019-08-22 21:00 - 2019-08-22 21:01 - 000000000 ____D C:\FRST
2019-08-22 20:57 - 2019-08-22 20:57 - 001612800 _____ (Farbar) C:\Users\Ana\Desktop\FRST64.exe
2019-08-22 16:38 - 2019-08-22 16:38 - 000000000 ___RD C:\Users\Ana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2019-08-22 12:09 - 2019-08-06 00:58 - 000397432 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2019-08-22 12:09 - 2019-08-05 23:55 - 000348800 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2019-08-22 12:09 - 2019-08-04 04:02 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2019-08-22 12:09 - 2019-08-04 03:51 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2019-08-22 12:09 - 2019-08-04 03:51 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2019-08-22 12:09 - 2019-08-04 03:43 - 000969216 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2019-08-22 12:09 - 2019-08-04 03:34 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2019-08-22 12:09 - 2019-08-04 03:21 - 020291584 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2019-08-22 12:09 - 2019-08-04 03:14 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2019-08-22 12:09 - 2019-08-04 03:04 - 000496128 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2019-08-22 12:09 - 2019-08-04 03:03 - 000062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2019-08-22 12:09 - 2019-08-04 03:00 - 002301952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2019-08-22 12:09 - 2019-08-04 02:57 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2019-08-22 12:09 - 2019-08-04 02:54 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2019-08-22 12:09 - 2019-08-04 02:50 - 001566208 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2019-08-22 12:09 - 2019-08-04 02:41 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-08-22 12:09 - 2019-08-04 02:40 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2019-08-22 12:09 - 2019-08-04 02:37 - 000076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2019-08-22 12:09 - 2019-08-04 02:36 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2019-08-22 12:09 - 2019-08-04 02:28 - 002058752 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2019-08-22 12:09 - 2019-08-04 02:28 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2019-08-22 12:09 - 2019-08-04 02:06 - 001331200 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2019-08-22 12:08 - 2019-08-04 05:37 - 025754624 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2019-08-22 12:08 - 2019-08-04 04:16 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2019-08-22 12:08 - 2019-08-04 04:16 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2019-08-22 12:08 - 2019-08-04 04:04 - 002909184 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2019-08-22 12:08 - 2019-08-04 04:03 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2019-08-22 12:08 - 2019-08-04 04:02 - 000578560 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2019-08-22 12:08 - 2019-08-04 04:02 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2019-08-22 12:08 - 2019-08-04 04:01 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2019-08-22 12:08 - 2019-08-04 03:55 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2019-08-22 12:08 - 2019-08-04 03:54 - 005775872 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2019-08-22 12:08 - 2019-08-04 03:54 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2019-08-22 12:08 - 2019-08-04 03:52 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2019-08-22 12:08 - 2019-08-04 03:51 - 000790528 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2019-08-22 12:08 - 2019-08-04 03:50 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2019-08-22 12:08 - 2019-08-04 03:40 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2019-08-22 12:08 - 2019-08-04 03:33 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2019-08-22 12:08 - 2019-08-04 03:33 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2019-08-22 12:08 - 2019-08-04 03:30 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2019-08-22 12:08 - 2019-08-04 03:29 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2019-08-22 12:08 - 2019-08-04 03:27 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2019-08-22 12:08 - 2019-08-04 03:25 - 000152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2019-08-22 12:08 - 2019-08-04 03:16 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2019-08-22 12:08 - 2019-08-04 03:15 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2019-08-22 12:08 - 2019-08-04 03:14 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2019-08-22 12:08 - 2019-08-04 03:12 - 002132480 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2019-08-22 12:08 - 2019-08-04 03:12 - 001359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2019-08-22 12:08 - 2019-08-04 03:11 - 015390720 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2019-08-22 12:08 - 2019-08-04 03:03 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2019-08-22 12:08 - 2019-08-04 03:03 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2019-08-22 12:08 - 2019-08-04 03:02 - 000064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2019-08-22 12:08 - 2019-08-04 03:01 - 004859392 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2019-08-22 12:08 - 2019-08-04 02:57 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2019-08-22 12:08 - 2019-08-04 02:55 - 000476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2019-08-22 12:08 - 2019-08-04 02:54 - 000663040 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2019-08-22 12:08 - 2019-08-04 02:53 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2019-08-22 12:08 - 2019-08-04 02:45 - 000416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2019-08-22 12:08 - 2019-08-04 02:41 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2019-08-22 12:08 - 2019-08-04 02:40 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2019-08-22 12:08 - 2019-08-04 02:38 - 000168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2019-08-22 12:08 - 2019-08-04 02:35 - 000130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2019-08-22 12:08 - 2019-08-04 02:32 - 004494848 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2019-08-22 12:08 - 2019-08-04 02:29 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2019-08-22 12:08 - 2019-08-04 02:27 - 001155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2019-08-22 12:08 - 2019-08-04 02:23 - 013791744 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2019-08-22 12:08 - 2019-08-04 02:09 - 004387840 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2019-08-22 12:08 - 2019-08-04 02:04 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2019-08-22 12:08 - 2019-07-30 04:25 - 000627424 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2019-08-22 12:08 - 2019-07-30 04:23 - 005552568 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2019-08-22 12:08 - 2019-07-30 04:23 - 000710072 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2019-08-22 12:08 - 2019-07-30 04:23 - 000264120 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2019-08-22 12:08 - 2019-07-30 04:23 - 000155576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2019-08-22 12:08 - 2019-07-30 04:23 - 000097208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2019-08-22 12:08 - 2019-07-30 04:22 - 001671000 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 002072576 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 001472512 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 001211392 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 001162752 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000878080 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000733184 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000517632 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000408576 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000361984 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000317440 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000236032 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2019-08-22 12:08 - 2019-07-30 04:20 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\sscore.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 004058848 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2019-08-22 12:08 - 2019-07-30 04:19 - 003965664 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2019-08-22 12:08 - 2019-07-30 04:19 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\comcat.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:17 - 001319488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 001425920 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000583680 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000555520 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000261632 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleres.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2019-08-22 12:08 - 2019-07-30 04:16 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 03:56 - 000556032 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthport.sys
2019-08-22 12:08 - 2019-07-30 03:56 - 000229376 _____ (Microsoft Corporation) C:\windows\system32\fsquirt.exe
2019-08-22 12:08 - 2019-07-30 03:56 - 000080384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\BTHUSB.SYS
2019-08-22 12:08 - 2019-07-30 03:56 - 000041984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthenum.sys
2019-08-22 12:08 - 2019-07-30 03:54 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\comcat.dll
2019-08-22 12:08 - 2019-07-30 03:53 - 000009728 _____ (Microsoft Corporation) C:\windows\SysWOW64\sscore.dll
2019-08-22 12:08 - 2019-07-30 03:52 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2019-08-22 12:08 - 2019-07-30 03:51 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2019-08-22 12:08 - 2019-07-30 03:51 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2019-08-22 12:08 - 2019-07-30 03:51 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2019-08-22 12:08 - 2019-07-30 03:51 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2019-08-22 12:08 - 2019-07-30 03:48 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2019-08-22 12:08 - 2019-07-30 03:48 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2019-08-22 12:08 - 2019-07-30 03:48 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2019-08-22 12:08 - 2019-07-30 03:48 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2019-08-22 12:08 - 2019-07-30 03:48 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2019-08-22 12:08 - 2019-07-30 03:48 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2019-08-22 12:08 - 2019-07-30 03:47 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2019-08-22 12:08 - 2019-07-30 03:47 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2019-08-22 12:08 - 2019-07-30 03:47 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 03:47 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 03:47 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 03:47 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-08-22 12:08 - 2019-07-30 03:44 - 000464384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2019-08-22 12:08 - 2019-07-30 03:44 - 000406016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2019-08-22 12:08 - 2019-07-30 03:44 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2019-08-22 12:08 - 2019-07-30 03:44 - 000169984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2019-08-22 12:08 - 2019-07-30 03:44 - 000161280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2019-08-22 12:08 - 2019-07-30 03:44 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2019-08-22 12:08 - 2019-07-30 03:43 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2019-08-22 12:08 - 2019-07-30 03:43 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2019-08-22 12:08 - 2019-07-30 03:43 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2019-08-22 12:08 - 2019-07-30 03:43 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2019-08-22 12:08 - 2019-07-30 03:43 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2019-08-22 12:08 - 2019-07-30 03:43 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\npfs.sys
2019-08-22 12:08 - 2019-07-30 03:43 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2019-08-22 12:08 - 2019-07-24 02:37 - 003187712 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2019-08-22 12:08 - 2019-07-19 05:30 - 003231744 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2019-08-22 12:08 - 2019-07-13 10:37 - 000311008 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2019-08-22 12:08 - 2019-07-13 10:36 - 000289720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2019-08-22 12:08 - 2019-07-13 10:35 - 001894840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2019-08-22 12:08 - 2019-07-13 10:35 - 000385464 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2019-08-22 12:08 - 2019-07-13 10:35 - 000378808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2019-08-22 12:08 - 2019-07-13 10:34 - 001391616 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000836608 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000335360 _____ (Microsoft Corporation) C:\windows\SysWOW64\P2PGraph.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000217600 _____ (Microsoft Corporation) C:\windows\SysWOW64\P2P.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000180736 _____ (Microsoft Corporation) C:\windows\SysWOW64\xmllite.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\t2embed.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000039936 _____ (Microsoft Corporation) C:\windows\SysWOW64\ssdpapi.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2019-08-22 12:08 - 2019-07-13 10:34 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll
2019-08-22 12:08 - 2019-07-13 10:33 - 000256512 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore.dll
2019-08-22 12:08 - 2019-07-13 10:33 - 000194560 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore6.dll
2019-08-22 12:08 - 2019-07-13 10:33 - 000071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2019-08-22 12:08 - 2019-07-13 10:33 - 000061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc.dll
2019-08-22 12:08 - 2019-07-13 10:33 - 000043520 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc6.dll
2019-08-22 12:08 - 2019-07-13 10:33 - 000010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 002009600 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 001077760 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000408576 _____ (Microsoft Corporation) C:\windows\system32\P2PGraph.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000405504 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000327168 _____ (Microsoft Corporation) C:\windows\system32\pnrpsvc.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000264704 _____ (Microsoft Corporation) C:\windows\system32\P2P.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000198656 _____ (Microsoft Corporation) C:\windows\system32\xmllite.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000193024 _____ (Microsoft Corporation) C:\windows\system32\ssdpsrv.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000151552 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000101376 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000071680 _____ (Microsoft Corporation) C:\windows\system32\Groupinghc.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000051200 _____ (Microsoft Corporation) C:\windows\system32\ssdpapi.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2019-08-22 12:08 - 2019-07-13 10:32 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000318976 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000226304 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000086528 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc6.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2019-08-22 12:08 - 2019-07-13 10:31 - 000013824 _____ (Microsoft Corporation) C:\windows\system32\dhcpcmonitor.dll
2019-08-22 12:08 - 2019-07-13 10:22 - 000353280 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll
2019-08-22 12:08 - 2019-07-13 10:22 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msexcl40.dll
2019-08-22 12:08 - 2019-07-13 10:22 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd2x40.dll
2019-08-22 12:08 - 2019-07-13 10:15 - 006135808 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2019-08-22 12:08 - 2019-07-13 10:13 - 000011264 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcmonitor.dll
2019-08-22 12:08 - 2019-07-13 10:07 - 000034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2019-08-22 12:08 - 2019-07-11 02:05 - 007082496 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2019-08-22 12:08 - 2019-07-04 03:56 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2019-08-22 12:08 - 2019-07-04 03:14 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2019-08-22 11:27 - 2019-08-22 11:28 - 000000000 ____D C:\Users\Ana\Documents\CV 2019 pre Opo
2019-07-27 12:58 - 2019-07-13 10:14 - 000334848 _____ (Microsoft Corporation) C:\windows\system32\sipnotify.exe
2019-07-27 12:57 - 2019-06-28 07:24 - 000887808 _____ (Microsoft Corporation) C:\windows\system32\wlansvc.dll
2019-07-27 12:57 - 2019-06-21 05:09 - 000806400 _____ (Microsoft Corporation) C:\windows\system32\usp10.dll
2019-07-27 12:57 - 2019-06-21 05:05 - 000628224 _____ (Microsoft Corporation) C:\windows\SysWOW64\usp10.dll
2019-07-27 12:57 - 2019-06-21 03:41 - 001251840 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2019-07-27 12:57 - 2019-06-18 08:41 - 001649664 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2019-07-27 12:57 - 2019-06-13 05:25 - 000160488 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2019-07-27 12:57 - 2019-06-13 05:21 - 000732160 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2019-07-27 12:57 - 2019-06-12 17:11 - 000094440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2019-07-27 12:57 - 2019-06-12 17:08 - 000782848 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2019-07-27 12:57 - 2019-06-12 17:07 - 004120576 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2019-07-27 12:57 - 2019-06-12 17:07 - 001202176 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2019-07-27 12:57 - 2019-06-12 17:07 - 000641024 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2019-07-27 12:57 - 2019-06-12 17:07 - 000206848 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2019-07-27 12:57 - 2019-06-12 17:06 - 000842240 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2019-07-27 12:57 - 2019-06-12 17:06 - 000680960 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2019-07-27 12:57 - 2019-06-12 16:49 - 000205312 _____ (Microsoft Corporation) C:\windows\SysWOW64\Dism.exe
2019-07-27 12:57 - 2019-06-12 16:37 - 000274944 _____ (Microsoft Corporation) C:\windows\system32\Dism.exe
2019-07-27 12:57 - 2019-06-11 04:59 - 002863104 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2019-07-27 12:57 - 2019-06-11 04:59 - 001712640 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2019-07-27 12:57 - 2019-06-11 04:59 - 000801792 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2019-07-27 12:57 - 2019-06-11 04:59 - 000634368 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2019-07-27 12:57 - 2019-06-11 04:59 - 000501760 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2019-07-27 12:57 - 2019-06-11 04:59 - 000456192 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2019-07-27 12:57 - 2019-06-11 04:59 - 000315904 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2019-07-27 12:57 - 2019-06-11 04:59 - 000257024 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2019-07-27 12:56 - 2019-06-28 07:24 - 000448512 _____ (Microsoft Corporation) C:\windows\system32\wlansec.dll
2019-07-27 12:56 - 2019-06-28 07:24 - 000414208 _____ (Microsoft Corporation) C:\windows\system32\wlanmsm.dll
2019-07-27 12:56 - 2019-06-28 07:24 - 000118784 _____ (Microsoft Corporation) C:\windows\system32\wlanhlp.dll
2019-07-27 12:56 - 2019-06-28 07:24 - 000113664 _____ (Microsoft Corporation) C:\windows\system32\wlanapi.dll
2019-07-27 12:56 - 2019-06-28 07:23 - 000428032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanmsm.dll
2019-07-27 12:56 - 2019-06-28 07:23 - 000392704 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlansec.dll
2019-07-27 12:56 - 2019-06-28 07:23 - 000083968 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanhlp.dll
2019-07-27 12:56 - 2019-06-28 07:23 - 000080896 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanapi.dll
2019-07-27 12:56 - 2019-06-12 17:21 - 012574208 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2019-07-27 12:56 - 2019-06-12 17:21 - 011411968 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2019-07-27 12:56 - 2019-06-12 17:21 - 000617984 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmdrmsdk.dll
2019-07-27 12:56 - 2019-06-12 17:21 - 000179712 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 003207168 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 001329664 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000988160 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmv2clt.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000504320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msscp.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000489984 _____ (Microsoft Corporation) C:\windows\SysWOW64\evr.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\AUDIOKSE.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000406016 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmmgrtn.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000354816 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfplat.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000265216 _____ (Microsoft Corporation) C:\windows\SysWOW64\msnetobj.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000103424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfps.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000046592 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssign32.dll
2019-07-27 12:56 - 2019-06-12 17:20 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\mferror.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 001177088 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 001005056 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptui.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 000744960 _____ (Microsoft Corporation) C:\windows\SysWOW64\blackbox.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 000373248 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioEng.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 000195072 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioSes.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 000106496 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2019-07-27 12:56 - 2019-06-12 17:19 - 000080896 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsp.dll
2019-07-27 12:56 - 2019-06-12 17:08 - 014637568 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2019-07-27 12:56 - 2019-06-12 17:08 - 012574720 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2019-07-27 12:56 - 2019-06-12 17:08 - 000229376 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2019-07-27 12:56 - 2019-06-12 17:08 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2019-07-27 12:56 - 2019-06-12 17:08 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 001574400 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 001484800 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 001068544 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000632320 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000499712 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000497664 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000433152 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000371712 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000325632 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000284672 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000190976 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000187904 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000141824 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000081920 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\mssign32.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000037376 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2019-07-27 12:56 - 2019-06-12 17:07 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2019-07-27 12:56 - 2019-06-12 17:06 - 000438784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2019-07-27 12:56 - 2019-06-12 17:06 - 000295936 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2019-07-27 12:56 - 2019-06-12 17:06 - 000008192 _____ (Microsoft Corporation) C:\windows\SysWOW64\spwmp.dll
2019-07-27 12:56 - 2019-06-12 17:06 - 000004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdxm.ocx
2019-07-27 12:56 - 2019-06-12 17:06 - 000004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxmasf.dll
2019-07-27 12:56 - 2019-06-12 17:05 - 000050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\rrinstaller.exe
2019-07-27 12:56 - 2019-06-12 17:04 - 000023040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfpmp.exe
2019-07-27 12:56 - 2019-06-12 17:01 - 000663552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2019-07-27 12:56 - 2019-06-12 16:50 - 000055808 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2019-07-27 12:56 - 2019-06-12 16:49 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2019-07-27 12:56 - 2019-06-12 16:49 - 000024576 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2019-07-27 12:56 - 2019-06-12 16:37 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\pcawrk.exe
2019-07-27 12:56 - 2019-06-12 16:37 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-22 21:03 - 2009-07-14 06:45 - 000029168 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-08-22 21:03 - 2009-07-14 06:45 - 000029168 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-08-22 21:00 - 2016-03-15 13:52 - 000000000 ____D C:\Users\Ana\AppData\Local\Spotify
2019-08-22 20:35 - 2016-03-15 13:51 - 000000000 ____D C:\Users\Ana\AppData\Roaming\Spotify
2019-08-22 19:06 - 2016-05-21 14:36 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2019-08-22 16:43 - 2012-01-07 01:10 - 000752074 _____ C:\windows\system32\perfh00A.dat
2019-08-22 16:43 - 2012-01-07 01:10 - 000160826 _____ C:\windows\system32\perfc00A.dat
2019-08-22 16:43 - 2009-07-14 07:13 - 001688976 _____ C:\windows\system32\PerfStringBackup.INI
2019-08-22 16:43 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2019-08-22 16:41 - 2016-10-08 15:54 - 000000000 ___RD C:\Users\Ana\iCloudDrive
2019-08-22 16:36 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-08-22 16:32 - 2009-07-14 06:45 - 000467424 _____ C:\windows\system32\FNTCACHE.DAT
2019-08-22 16:27 - 2009-07-14 05:20 - 000000000 ____D C:\windows\PolicyDefinitions
2019-08-22 11:26 - 2012-09-29 01:08 - 000000000 ____D C:\Users\Ana\AppData\Roaming\PhotoScape
2019-08-21 13:36 - 2017-11-09 11:57 - 000004128 _____ C:\windows\System32\Tasks\CCleaner Update
2019-08-20 12:22 - 2012-10-05 16:16 - 000000000 ____D C:\Users\Ana\AppData\Local\CrashDumps
2019-08-20 11:26 - 2013-07-10 20:30 - 000842296 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerApp.exe
2019-08-20 11:26 - 2013-07-10 20:30 - 000175160 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-08-20 11:26 - 2013-07-10 20:30 - 000004320 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2019-08-20 11:26 - 2013-07-10 20:29 - 000000000 ____D C:\windows\system32\Macromed
2019-08-20 11:26 - 2012-01-06 08:55 - 000000000 ____D C:\windows\SysWOW64\Macromed
2019-08-08 19:21 - 2015-07-08 09:18 - 000003396 _____ C:\windows\System32\Tasks\GyazoUpdateTaskMachineDaily
2019-08-08 19:21 - 2015-06-05 10:27 - 000003270 _____ C:\windows\System32\Tasks\GyazoUpdateTaskMachine
2019-08-08 19:21 - 2012-10-01 12:08 - 000000000 ____D C:\Program Files (x86)\Gyazo
2019-08-08 11:02 - 2015-09-14 22:26 - 000002182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-07-29 10:51 - 2014-12-10 15:15 - 000000000 ____D C:\windows\system32\appraiser
2019-07-29 10:51 - 2014-05-06 16:59 - 000000000 ___SD C:\windows\system32\CompatTel
2019-07-29 10:51 - 2009-07-14 05:20 - 000000000 ____D C:\windows\SysWOW64\Dism
2019-07-29 10:51 - 2009-07-14 05:20 - 000000000 ____D C:\windows\system32\Dism
2019-07-29 10:47 - 2013-02-05 18:09 - 001663562 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2019-07-27 12:13 - 2017-09-15 14:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google

==================== Files in the root of some directories ================

2013-01-09 01:53 - 2013-01-09 01:53 - 000000132 _____ () C:\Users\Ana\AppData\Roaming\Adobe GIF Format CS5 Prefs
2012-11-04 18:57 - 2018-09-30 21:26 - 000000132 _____ () C:\Users\Ana\AppData\Roaming\Adobe PNG Format CS5 Prefs
2012-12-04 00:20 - 2012-12-05 15:04 - 000000132 _____ () C:\Users\Ana\AppData\Roaming\Adobe Targa Format CS5 Prefs
2013-07-28 15:43 - 2013-07-28 20:55 - 000000101 _____ () C:\Users\Ana\AppData\Roaming\Camdata.ini
2013-07-28 15:43 - 2013-07-28 20:55 - 000000408 _____ () C:\Users\Ana\AppData\Roaming\CamLayout.ini
2013-07-28 15:43 - 2013-07-28 20:55 - 000000408 _____ () C:\Users\Ana\AppData\Roaming\CamShapes.ini
2013-07-28 15:43 - 2013-07-28 20:55 - 000004521 _____ () C:\Users\Ana\AppData\Roaming\CamStudio.cfg
2018-11-25 15:13 - 2018-12-06 14:16 - 000012259 _____ () C:\Users\Ana\AppData\Roaming\downloads.json
2012-12-03 15:56 - 2016-08-08 19:11 - 000011264 _____ () C:\Users\Ana\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-01-06 23:11 - 2013-01-06 23:11 - 000003072 _____ () C:\Users\Ana\AppData\Local\file__0.localstorage
2013-01-06 23:11 - 2013-01-06 23:25 - 000003072 _____ () C:\Users\Ana\AppData\Local\https_drm.youdagames.com_0.localstorage

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-07-04 15:27
==================== End of FRST.txt ============================
````

Hola

Abrí un nuevo archivo Notepad y copia y pega este contenido:

Start
CreateRestorePoint:
CloseProcesses
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\MountPoints2: {2cee3b63-0b22-11e2-a7e8-e8039a8082d3} - F:\HPLauncher.exe
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\MountPoints2: {b4c82a67-cdcd-11e7-87a3-e8039a8082d3} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\MountPoints2: {cb384ac6-56fb-11e5-902d-e8039a8082d3} - F:\setup.exe
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKLM\...\Drivers32: [VIDC.FPS1] => C:\windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [155648 2004-12-20] () [File not signed]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\SysWOW64\pdvcodec.dll [265797 2010-03-12] (Matsushita Electric Industrial Co., Ltd.) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\windows\SysWOW64\vp6vfw.dll [442368 2005-02-26] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\windows\SysWOW64\vp6vfw.dll [442368 2005-02-26] (On2.com) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
Task: {05142308-AEA3-426C-B276-11CD57252671} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\Overseer.exe [2045832 2019-08-20] (AVAST Software s.r.o. -> AVAST Software)
Task: {3EC8477E-4C56-4ABF-8A2E-876ECE06FB7F} - \EPUpdater -> No File <==== ATTENTION
Task: {B635957A-938C-4D8B-B497-CB5D8DA020A1} - \BrowserDefendert -> No File <==== ATTENTION
CHR HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Ana\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-11-18]
CHR HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk
R2 PDF Architect 5 Manager; C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985904 2017-02-01] (pdfforge GmbH -> © pdfforge GmbH.)
2019-08-22 16:38 - 2019-08-22 16:38 - 000113664 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_ctypes.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000173568 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_elementtree.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001800192 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_hashlib.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000032256 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_multiprocessing.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000046080 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_psutil_windows.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000047616 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_socket.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 002230784 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_ssl.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000026112 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_yappi.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000080896 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\bz2.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 006277632 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\cello.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000014848 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\common.time34.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000007680 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\hashobjs_ext.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000301568 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\PIL._imaging.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000169472 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\pyexpat.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001084416 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\pysqlite2._sqlite.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000548864 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\pythoncom27.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 000137728 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\pywintypes27.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 000010752 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\select.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000020992 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\thumbnails_ext.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000689664 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\unicodedata.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000118784 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\usb_ext.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000128512 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32api.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000438784 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32com.shell.shell.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000011776 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32crypt.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000023040 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32event.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000149504 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32file.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000223232 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32gui.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000048128 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32inet.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000029696 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32pdh.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000027648 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32pipe.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000044032 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32process.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000020480 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32profile.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000136192 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32security.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000026624 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32ts.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000034304 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.conditional.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000038400 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.connectivity.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000073216 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.device_monitor.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000110592 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.volumes.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000020480 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.winwrap.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001325056 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._controls_.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001489408 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._core_.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001007104 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._gdi_.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000103424 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._html2.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000916992 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._misc_.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001039872 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._windows_.pyd
AlternateDataStreams: C:\Users\Ana:gs5sys [2560]
AlternateDataStreams: C:\Users\Ana\Configuración local:gs5sys [2048]
AlternateDataStreams: C:\Users\Ana\Cookies:gs5sys [2560]
AlternateDataStreams: C:\Users\Ana\Datos de programa:gs5sys [3072]
AlternateDataStreams: C:\Users\Ana\Plantillas:gs5sys [2560]
AlternateDataStreams: C:\Users\Ana\AppData\Local:gs5sys [2048]
AlternateDataStreams: C:\Users\Ana\AppData\Roaming:gs5sys [3072]
AlternateDataStreams: C:\Users\Ana\AppData\Local\Datos de programa:gs5sys [2048]
AlternateDataStreams: C:\Users\Ana\AppData\Local\Historial:gs5sys [3072]
FirewallRules: [{0725B138-933B-45E2-A9FE-408C2088B030}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B09C75EE-6EE1-419A-982E-D60DD90E9D2C}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)





CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.

Saludos

Hola de nuevo,

Al hacer este último paso el ordenador se ha quedado un poco “colgado” y me ha pedido reiniciar, lo cual le ha costado un poco. A continuación pego el archivo Fixlog:

Fix result of Farbar Recovery Scan Tool (x64) Version: 22-08-2019
Ran by Ana (24-08-2019 10:31:14) Run:1
Running from C:\Users\Ana\Desktop
Loaded Profiles: Ana (Available Profiles: Ana)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\MountPoints2: {2cee3b63-0b22-11e2-a7e8-e8039a8082d3} - F:\HPLauncher.exe
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\MountPoints2: {b4c82a67-cdcd-11e7-87a3-e8039a8082d3} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\...\MountPoints2: {cb384ac6-56fb-11e5-902d-e8039a8082d3} - F:\setup.exe
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKLM\...\Drivers32: [VIDC.FPS1] => C:\windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [155648 2004-12-20] () [File not signed]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\SysWOW64\pdvcodec.dll [265797 2010-03-12] (Matsushita Electric Industrial Co., Ltd.) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\windows\SysWOW64\vp6vfw.dll [442368 2005-02-26] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\windows\SysWOW64\vp6vfw.dll [442368 2005-02-26] (On2.com) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
Task: {05142308-AEA3-426C-B276-11CD57252671} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\Overseer.exe [2045832 2019-08-20] (AVAST Software s.r.o. -> AVAST Software)
Task: {3EC8477E-4C56-4ABF-8A2E-876ECE06FB7F} - \EPUpdater -> No File <==== ATTENTION
Task: {B635957A-938C-4D8B-B497-CB5D8DA020A1} - \BrowserDefendert -> No File <==== ATTENTION
CHR HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Ana\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-11-18]
CHR HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk
R2 PDF Architect 5 Manager; C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985904 2017-02-01] (pdfforge GmbH -> © pdfforge GmbH.)
2019-08-22 16:38 - 2019-08-22 16:38 - 000113664 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_ctypes.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000173568 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_elementtree.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001800192 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_hashlib.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000032256 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_multiprocessing.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000046080 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_psutil_windows.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000047616 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_socket.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 002230784 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_ssl.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000026112 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\_yappi.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000080896 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\bz2.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 006277632 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\cello.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000014848 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\common.time34.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000007680 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\hashobjs_ext.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000301568 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\PIL._imaging.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000169472 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\pyexpat.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001084416 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\pysqlite2._sqlite.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000548864 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\pythoncom27.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 000137728 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\pywintypes27.dll
2019-08-22 16:38 - 2019-08-22 16:38 - 000010752 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\select.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000020992 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\thumbnails_ext.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000689664 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\unicodedata.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000118784 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\usb_ext.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000128512 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32api.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000438784 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32com.shell.shell.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000011776 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32crypt.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000023040 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32event.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000149504 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32file.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000223232 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32gui.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000048128 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32inet.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000029696 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32pdh.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000027648 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32pipe.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000044032 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32process.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000020480 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32profile.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000136192 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32security.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000026624 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32ts.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000034304 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.conditional.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000038400 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.connectivity.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000073216 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.device_monitor.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000110592 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.volumes.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000020480 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.winwrap.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001325056 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._controls_.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001489408 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._core_.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001007104 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._gdi_.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000103424 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._html2.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 000916992 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._misc_.pyd
2019-08-22 16:38 - 2019-08-22 16:38 - 001039872 _____ () [File not signed] C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._windows_.pyd
AlternateDataStreams: C:\Users\Ana:gs5sys [2560]
AlternateDataStreams: C:\Users\Ana\Configuración local:gs5sys [2048]
AlternateDataStreams: C:\Users\Ana\Cookies:gs5sys [2560]
AlternateDataStreams: C:\Users\Ana\Datos de programa:gs5sys [3072]
AlternateDataStreams: C:\Users\Ana\Plantillas:gs5sys [2560]
AlternateDataStreams: C:\Users\Ana\AppData\Local:gs5sys [2048]
AlternateDataStreams: C:\Users\Ana\AppData\Roaming:gs5sys [3072]
AlternateDataStreams: C:\Users\Ana\AppData\Local\Datos de programa:gs5sys [2048]
AlternateDataStreams: C:\Users\Ana\AppData\Local\Historial:gs5sys [3072]
FirewallRules: [{0725B138-933B-45E2-A9FE-408C2088B030}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B09C75EE-6EE1-419A-982E-D60DD90E9D2C}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)





CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
*****************

Restore point was successfully created.
CloseProcesses => Error: No automatic fix found for this entry.
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2cee3b63-0b22-11e2-a7e8-e8039a8082d3} => removed successfully
HKLM\Software\Classes\CLSID\{2cee3b63-0b22-11e2-a7e8-e8039a8082d3} => not found
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b4c82a67-cdcd-11e7-87a3-e8039a8082d3} => removed successfully
HKLM\Software\Classes\CLSID\{b4c82a67-cdcd-11e7-87a3-e8039a8082d3} => not found
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cb384ac6-56fb-11e5-902d-e8039a8082d3} => removed successfully
HKLM\Software\Classes\CLSID\{cb384ac6-56fb-11e5-902d-e8039a8082d3} => not found
"HKU\S-1-5-21-1231317149-393754485-1902646098-1000\Control Panel\Desktop\\SCRNSAVE.EXE" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\VIDC.FPS1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\vidc.XVID" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\vidc.dvsd" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\vidc.VP60" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\vidc.VP61" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32\\VIDC.FPS1" => not found
HKLM\Software\Microsoft\Active Setup\Installed Components\{2D46B6DC-2207-486B-B523-A557E6D54B47} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{05142308-AEA3-426C-B276-11CD57252671}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{05142308-AEA3-426C-B276-11CD57252671}" => removed successfully
C:\windows\System32\Tasks\Avast Software\Overseer => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Overseer" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3EC8477E-4C56-4ABF-8A2E-876ECE06FB7F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3EC8477E-4C56-4ABF-8A2E-876ECE06FB7F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B635957A-938C-4D8B-B497-CB5D8DA020A1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B635957A-938C-4D8B-B497-CB5D8DA020A1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BrowserDefendert" => not found
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Google\Chrome\Extensions\apdfllckaahabafndbhieahigkjlhalf => removed successfully
C:\Users\Ana\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx => moved successfully
HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Google\Chrome\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\mchjnmdbdlkdbfliogedbnpnanfjnolk => removed successfully
PDF Architect 5 Manager => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\PDF Architect 5 Manager => removed successfully
PDF Architect 5 Manager => service removed successfully
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\_ctypes.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\_elementtree.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\_hashlib.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\_multiprocessing.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\_psutil_windows.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\_socket.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\_ssl.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\_yappi.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\bz2.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\cello.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\common.time34.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\hashobjs_ext.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\PIL._imaging.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\pyexpat.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\pysqlite2._sqlite.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\pythoncom27.dll" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\pywintypes27.dll" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\select.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\thumbnails_ext.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\unicodedata.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\usb_ext.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32api.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32com.shell.shell.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32crypt.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32event.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32file.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32gui.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32inet.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32pdh.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32pipe.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32process.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32profile.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32security.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\win32ts.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.conditional.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.connectivity.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.device_monitor.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.volumes.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\windows.winwrap.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._controls_.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._core_.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._gdi_.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._html2.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._misc_.pyd" => not found
"C:\Users\Ana\AppData\Local\Temp\_MEI47922\wx._windows_.pyd" => not found
C:\Users\Ana => ":gs5sys" ADS removed successfully
C:\Users\Ana\Configuración local => ":gs5sys" ADS removed successfully
C:\Users\Ana\Cookies => ":gs5sys" ADS removed successfully
C:\Users\Ana\Datos de programa => ":gs5sys" ADS removed successfully
C:\Users\Ana\Plantillas => ":gs5sys" ADS removed successfully
"C:\Users\Ana\AppData\Local" => ":gs5sys" ADS not found.
"C:\Users\Ana\AppData\Roaming" => ":gs5sys" ADS not found.
"C:\Users\Ana\AppData\Local\Datos de programa" => ":gs5sys" ADS not found.
C:\Users\Ana\AppData\Local\Historial => ":gs5sys" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0725B138-933B-45E2-A9FE-408C2088B030}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B09C75EE-6EE1-419A-982E-D60DD90E9D2C}" => removed successfully

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Conexi¢n de red Bluetooth 5 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local mientras los medios
est‚n desconectados.

Adaptador de Ethernet Conexi¢n de red Bluetooth 5:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de red inal mbrica:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::9965:e68b:469b:2ebf%20
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.56
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.1.1

Adaptador de Ethernet Conexi¢n de  rea local:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : Home

Adaptador de t£nel 6TO4 Adapter:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel isatap.{C17898CD-B035-44F0-9670-AADBD1F34306}:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel Conexi¢n de  rea local* 17:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel Conexi¢n de  rea local* 14:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel Conexi¢n de  rea local* 18:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de t£nel isatap.Home:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to cancel {1CFB759D-C415-49E3-A7B6-48AC65E80368}.
Unable to cancel {21DFA5C3-7C75-4DF2-A068-5CF1F9038394}.
Unable to cancel {78D4C7A0-B3E6-42EE-A18A-0FC6DB17DBD7}.
0 out of 3 jobs canceled.

========= End of CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

Interfaz se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-1231317149-393754485-1902646098-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 3530672 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 5734350 B
Edge => 0 B
Chrome => 40934083 B
Firefox => 6550433 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 33186 B
systemprofile32 => 88614 B
LocalService => 0 B
NetworkService => 0 B
Ana => 86538447 B

RecycleBin => 38615 B
EmptyTemp: => 144.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 10:32:48 ====

Hola

1. Descarga CCleaner a Tu escritorio. Siguiendo Su manual, lo instalas y ejecutas y utiliza las dos opciones del Uso Simple (Limpiador y Registro) del mismo, tal como se explican en el manual.

2. Realiza un análisis completo del Disco duro, siguiendo esta guía: Análisis y Escaneo del Disco Duro

3. Libera espacio de los discos siguiendo esta guía: Liberar espacios en Discos y Particiones

4. Desfragmenta el/los discos duros y particiones del PC, siguiendo esta guía: Desfragmentar Discos y Particiones

Nos comentas como sigue el funcionamiento del PC.

Saludos

Hola de nuevo. Disculpa la tardanza, estaba de viaje en otro país. Voy a realizar todos los pasos que me dices y te cuento. Gracias! :slightly_smiling_face:

Hola!

El ordenador funciona más ligero, aunque la ventana de “Click to run” que te comentaba sigue apareciendo, al igual que el mensaje de “forzar apagado”.

Saludos!!

Hola

Click to run es un tipo de instalación alternativa para productos de Microsoft Office que utiliza tecnología de transmisión y virtualización para reducir el tiempo requerido para instalar Office y ayudar a ejecutar varias versiones de Office en la misma computadora.

Mirando los reportes anteriores veo que tenes esa instancia aca:

Hacer clic y ejecutar de Microsoft Office 2010 (HKLM…{90140000-006D-0C0A-1000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden

Hacer clic y ejecutar de Microsoft Office 2010 (HKLM-x32…\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)

Pero parece que hubo otras instalaciones de Office sobre instalaciones antiguas …

Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32…{90120000-0030-0000-0000-0000000FF1CE}ENTERPRISE{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)

Microsoft Office 2010 (HKLM-x32…{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Enterprise 2007 (HKLM-x32…\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)

Si miras el manual de CCleaner en su sección Uso Avanzado, hay dos apartados que son:

1.- Desinstalador de Programas

2.- Inicio (Muestra los programas que inician junto a Windows)

Segui esa guía para generarme esos dos reportes. El de los programas instalados y el de los programas que se inician con Windows.

Espero ambos reportes.

Saludos