Como eliminar Autoit V3 script definitivamente?

Agohi · 8 Enero, 2019 18:17

Buenas a todos.

{Presentación} Puesto que me dirijo por primera vez a este foro, pido de antemano disculpas por cualquier incursión en la normativa que pueda realizar por desconocimiento. He visitado la web y el foro en repetidas ocasiones ultimamente y por eso me he decidido por intentar solucionar los problemas que he encontrado y quizá poder aportar mi granito de arena a otros usuarios. Has aquuí la presentación.

{Planteamiento del problema} En resumen, mi problema és que, como muchos otros usuarios, de alguna forma mi PC fue infectado con el malware AutoIt (visible en la pestaña inicio del administrador de tareas de windows con el nombre "AutoIt v3 script "y se notaba una ralentización considerable del dispositivo. Después de utilizar varios softwares antimalware automáticos y no obtener ningun resultado, seguí (parcialmente) un tutorial(enlace al final del mensaje) sobre como eliminarlo donde mencionaba que este tipo de malware no se podía eliminar con un antimalware automático y que se debía hacer con varios programas de forma manual.

Después de seguir los primeros pasos (utilizando HijackThis y Farbar Recovery Scan Tool) este segundo ya me dio algun mensaje de error aunque pareció que habia realizado su función, al pasar al siguiente paso, descargar Delfix en esta misma página y ehecutarlo para crear una backup del registro, volvió a dar un error aparentemente había finalizado el proceso.

Llegado a este punto, después de estos 2 errores y sabiendo que mis conocimientos de informática són bastante básicos, decidí desistir y hacer una consulta personal en un foro o a un profesional en el campo, entonces para mi sorpresa, vi que Autoit ya no aparecía en la venana de inicio (y noté un pequeño incremento en el rendimiento/velocidad de la máquina).

{Planteamiento de la duda} Llegado a este punto, me gustaría saber hasta que punto ha sido solucionado el problema o como confirmar que así haya sido. Como he dicho, después de todo, la utilización de software de detección de malware parece no ser útil en este caso y puesto que ahí practicamente terminan mis conocimientos de seguridad informática, me gustaría cerciorarme de alguna manera.

Gracias de antemano a quien dedique su tiempo a leer este mensaje, he intentado ser lo más conciso posible aunque temo no haberlo logrado.

Tutorial foro microsoft: https://answers.microsoft.com/es-es/protect/forum/all/autoit-v3-script/83a1d49a-3ce1-4d65-af82-bef24af9841b

Miguelgrado · 8 Enero, 2019 18:25

Hola

Frst (Fabar Recovery…), no es una herramienta destinada al uso , si no que debe ser guiada por alguien con conocimientos.

Ademas No SE PUEDEN USAR códigos de otros usuarios, pues te puedes cargar el pc

Para verificar tu pc realizas en orden:

sin cambiar el orden

1) Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware,

Manual Malwarebytes, para que sepas usarlo y configurarlo.

Realiza un Análisis Personalizado,marcando Todas las casillas de la derecha y de la Izquierda actualizando si te lo pide.
Pulsar en “Eliminar Seleccionados” para enviarlo a la cuarentena y Reinicias el sistema.
Para acceder posteriormente al informe del análisis : Informes >> Registro de análisis >> Pulsar en >> Exportar >> Copiar al Portapapeles, y lo pegas en tu respuesta

2) Descarga Adwcleaner en el escritorio.

Desactiva tu antivirus Como deshabilitar temporalmente un antivirus y cualquier programa de seguridad.
Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")
Pulsar en el botón Analizar Ahora, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Iniciar Reparacion.
Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
Si no encuentra nada, pulsamos “Omitir Reparación”
El log lo encontramos en la pestaña “Informes”, volviendo a abrir el programa, si es necesario o en"C:\AdwCleaner\Logs\AdwCleaner[C0].txt"

Puedes mirar su manual >> Manual de Adwcleaner

3) Descarga Ccleaner

Instalalo y ejecútalo. En la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine > clic en ejecutar limpiador. Clic en la pestaña Registro > clic en buscar problemas esperas que termine > clic en Reparar Seleccionadas y haces una copia de seguridad.

Pega los reportes de Malwarebytes, AdwCleaner y comentas como va el problema.

Agohi · 8 Enero, 2019 18:42

Buenas Miguel Imaginaba que ese paso era algo arriesgado y quizá no fué una buena decisión muy meditada aunque por suerte creo que acerté. Me basé en que, al hacer click derecho en “AutoIt v3 script” en la ventana del administrador de tareas e ir a la ubicación del archivo me mostró una carpeta; el nombre de esa carpeta, era el único elemento que cambiaba en la linea de codigo que le indicaba modificar al otro usuario. En cualquier caso, tomo nota de esto y agradezco tu respuesta, solo quería demostrar cierta coherencia en mis pasos previos.

Voy a realizar la verificación que arriba me mencionas y comento el resultado.

Un saludo y gracias

Miguelgrado · 9 Enero, 2019 06:11

Ok, esperamos los logs

Agohi · 9 Enero, 2019 07:00

Buenas, os dejo aquí los informes: Malwarebytes:

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 8/1/19
Hora del análisis: 19:26
Archivo de registro: e172ee74-1372-11e9-bb53-2cfda17651b3.json

-Información del software-
Versión: 3.6.1.2711
Versión de los componentes: 1.0.463
Versión del paquete de actualización: 1.0.8678
Licencia: Gratis

-Información del sistema-
SO: Windows 10 (Build 17763.195)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-OMPK35G\aitor

-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 512267
Amenazas detectadas: 3
Amenazas en cuarentena: 3
Tiempo transcurrido: 2 hr, 4 min, 27 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Activado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 3
PUP.Optional.SpyHunter, C:\USERS\AITOR\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\K22OKABJ.DEFAULT-1546543073148\CACHE2\ENTRIES\EFF8DBE3C148D27DEF5F35F7D21E3802741743D3, En cuarentena, [3905], [552698],1.0.8678
PUP.Optional.WinThruster, C:\USERS\AITOR\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\K22OKABJ.DEFAULT-1546543073148\CACHE2\ENTRIES\5A413B2DA64BADECA77F8FAABC30EEABF3998FA8, En cuarentena, [1494], [461226],1.0.8678
MachineLearning/Anomalous.100%, C:\USERS\AITOR\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\K22OKABJ.DEFAULT-1546543073148\CACHE2\ENTRIES\958BF3B6FDF8D1E2833020463A43D7042616E763, En cuarentena, [0], [392687],1.0.8678

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

AdwCleaner:

# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build:    12-18-2018
# Database: 2019-01-07.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    01-09-2019
# Duration: 00:00:05
# OS:       Windows 10 Home
# Scanned:  32250
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Miguelgrado · 9 Enero, 2019 19:09

Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.
Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits) ¿Cómo saber si mi Windows es de 32 o 64 bits?
Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Yes.
En la nueva ventana que se abre, presiona el botón Scan y espera a que concluya el análisis.
Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.

En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST

Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.

Agohi · 9 Enero, 2019 22:51

Buenas, después de desactivar windows defender como muestra el tutorial de esta página, al ejecutar frst.exe aparece el siguiente error:

También tengo la versión gratuita de Malwarebytes que he utilizado en los pasos anteriores (junto con acwCleaner y CCleaner). Espero tu respuesta sobre esto antes de continuar.

Miguelgrado · 10 Enero, 2019 05:55

El Frst debes descargarlo directamente al escritorio y ejecutarlo desde ahi como administrador ( boton derecho- ejecutar como admin)

Agohi · 10 Enero, 2019 15:35

Vale, hecho sin incidencias esta vez. Aquí cuelgo el resultado:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09.01.2019 01
Ran by aitor (administrator) on DESKTOP-OMPK35G (10-01-2019 16:27:16)
Running from C:\Users\aitor\Desktop
Loaded Profiles: aitor (Available Profiles: aitor)
Platform: Windows 10 Home Version 1809 17763.253 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\DriverStore\FileRepository\c0319992.inf_amd64_753d3e0fe1fe1a7b\atiesrxx.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MsMpEng.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingKey.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2UILauncher.exe
() C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2Svc32.exe
() C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2Svc64.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1811.3241.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingCenterAppService.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SS2UILauncher] => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2UILauncher.exe [1153896 2017-07-06] (ASUSTeK COMPUTER INC.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [4050752 2019-01-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-21-3097134251-2190473256-1528245456-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19589208 2018-12-10] (Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2019-01-09] (Google Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 80.58.61.254 80.58.61.250
Tcpip\..\Interfaces\{a90287e9-bb38-47d0-ae00-58e6b0c8a5b4}: [DhcpNameServer] 80.58.61.254 80.58.61.250

Internet Explorer:
==================
HKU\S-1-5-21-3097134251-2190473256-1528245456-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE
HKU\S-1-5-21-3097134251-2190473256-1528245456-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
SearchScopes: HKU\S-1-5-21-3097134251-2190473256-1528245456-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3097134251-2190473256-1528245456-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-10-12] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-10-12] (Oracle Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} -  No File

FireFox:
========
FF DefaultProfile: k22okabj.default-1546543073148
FF ProfilePath: C:\Users\aitor\AppData\Roaming\Mozilla\Firefox\Profiles\k22okabj.default-1546543073148 [2019-01-10]
FF Extension: (uBlock Origin) - C:\Users\aitor\AppData\Roaming\Mozilla\Firefox\Profiles\k22okabj.default-1546543073148\Extensions\[email protected] [2019-01-05]
FF Extension: (Bitwarden - Gestor de contraseñas gratuito) - C:\Users\aitor\AppData\Roaming\Mozilla\Firefox\Profiles\k22okabj.default-1546543073148\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2019-01-05]
FF Extension: (Pocket Select All) - C:\Users\aitor\AppData\Roaming\Mozilla\Firefox\Profiles\k22okabj.default-1546543073148\Extensions\{68a267e1-f384-4356-9f1e-511ec5807858}.xpi [2019-01-03]
FF Extension: (Adblock Plus (versión de desarrollo)) - C:\Users\aitor\AppData\Roaming\Mozilla\Firefox\Profiles\k22okabj.default-1546543073148\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-01-03]
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-10-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-10-12] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-09] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-09] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR Profile: C:\Users\aitor\AppData\Local\Google\Chrome\User Data\Default [2019-01-09]
CHR Extension: (Presentaciones) - C:\Users\aitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-01-09]
CHR Extension: (Documentos) - C:\Users\aitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-01-09]
CHR Extension: (Google Drive) - C:\Users\aitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-01-09]
CHR Extension: (YouTube) - C:\Users\aitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-01-09]
CHR Extension: (Adobe Acrobat) - C:\Users\aitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-01-09]
CHR Extension: (Hojas de cálculo) - C:\Users\aitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-01-09]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\aitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-01-09]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\aitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-01-09]
CHR Extension: (Gmail) - C:\Users\aitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-01-09]
CHR Extension: (Chrome Media Router) - C:\Users\aitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-01-09]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0319992.inf_amd64_753d3e0fe1fe1a7b\atiesrxx.exe [489888 2017-11-07] (AMD)
R2 AsHidService; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsHidSrv.exe [127864 2017-07-28] (ASUSTek Computer Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-03] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-03] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-01-08] (Dropbox, Inc.)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] ()
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1293936 2018-11-15] (Bitdefender)
R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [678376 2018-05-24] (Realtek Semiconductor Corp.)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2018-09-15] ()
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-11] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-11] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe [495720 2018-08-29] (Wondershare)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34696 2017-10-10] (Advanced Micro Devices, Inc)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33144 2017-10-10] (Advanced Micro Devices, Inc)
R3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [52680 2017-10-10] (Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-16] (Advanced Micro Devices, Inc. )
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0319992.inf_amd64_753d3e0fe1fe1a7b\atikmdag.sys [40051104 2017-11-07] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0319992.inf_amd64_753d3e0fe1fe1a7b\atikmpag.sys [553888 2017-11-07] (Advanced Micro Devices, Inc.)
R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [31592 2018-04-25] (Advanced Micro Devices)
R0 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [137104 2017-11-07] (Advanced Micro Devices, Inc. )
R1 AMDRyzenMasterDriverForROGGC; C:\Program Files\ASUS\ROG Gaming Center Core\AMDRyzenMasterDriver.sys [70312 2017-03-27] (Advanced Micro Devices)
R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [102280 2017-05-09] (ASUS Corporation)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [31112 2017-05-02] (ASUS)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [260384 2019-01-09] (Malwarebytes)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [79504 2016-09-18] (Windows (R) Win 7 DDK provider)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [984032 2017-06-29] (Realtek )
R3 RtkBtFilter; C:\WINDOWS\System32\drivers\RtkBtfilter.sys [766896 2018-05-24] (Realtek Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [8336208 2018-05-30] (Realtek Semiconductor Corporation )
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [222864 2018-08-14] (Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46680 2018-12-11] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [330936 2018-12-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-11] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-10 16:27 - 2019-01-10 16:27 - 000014058 _____ C:\Users\aitor\Desktop\FRST.txt
2019-01-09 23:45 - 2019-01-09 23:45 - 000260384 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-01-09 23:42 - 2019-01-10 16:27 - 000000000 ____D C:\FRST
2019-01-09 23:41 - 2019-01-09 23:41 - 002425856 _____ (Farbar) C:\Users\aitor\Desktop\FRST64.exe
2019-01-09 08:06 - 2019-01-09 08:06 - 000000000 ____D C:\Users\aitor\AppData\LocalLow\Temp
2019-01-09 07:58 - 2019-01-09 07:58 - 000001250 _____ C:\Users\aitor\Desktop\AdwCleaner[S00].txt
2019-01-09 07:54 - 2019-01-09 07:54 - 000202522 _____ C:\Users\aitor\Desktop\cc_20190109_075426.reg
2019-01-09 07:49 - 2019-01-09 07:54 - 000003620 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-09 07:49 - 2019-01-09 07:54 - 000003496 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-01-09 07:49 - 2019-01-09 07:49 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-01-09 07:49 - 2019-01-09 07:49 - 000002888 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-01-09 07:49 - 2019-01-09 07:49 - 000002377 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-01-09 07:49 - 2019-01-09 07:49 - 000002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-01-09 07:49 - 2019-01-09 07:49 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-01-09 07:49 - 2019-01-09 07:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-01-09 07:49 - 2019-01-09 07:49 - 000000000 ____D C:\Program Files\CCleaner
2019-01-09 07:48 - 2019-01-09 07:48 - 019299120 _____ (Piriform Software Ltd) C:\Users\aitor\Desktop\ccsetup551.exe
2019-01-09 07:44 - 2019-01-09 07:44 - 000000000 ____D C:\AdwCleaner
2019-01-09 07:41 - 2019-01-09 07:41 - 007320272 _____ (Malwarebytes) C:\Users\aitor\Desktop\adwcleaner_7.2.6.0.exe
2019-01-08 21:57 - 2019-01-08 21:58 - 000002124 _____ C:\Users\aitor\Desktop\registroMalwarebytes.txt
2019-01-08 21:56 - 2019-01-08 21:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-01-08 19:50 - 2019-01-08 19:50 - 026806784 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 023440384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 020811776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 019024384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 012858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 012151808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 009677352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-08 19:50 - 2019-01-08 19:50 - 007857152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 007645600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 006544800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 006057984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 005440016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-01-08 19:50 - 2019-01-08 19:50 - 003952952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 003550592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 003380224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 003338328 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 003270144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 002986352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 002777432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 002626360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-01-08 19:50 - 2019-01-08 19:50 - 002594872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 002469648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 002437552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 002275896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 002186752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 002021584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 001641616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 001602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-08 19:50 - 2019-01-08 19:50 - 001212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 001201136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 001058848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-01-08 19:50 - 2019-01-08 19:50 - 001050936 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-08 19:50 - 2019-01-08 19:50 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000662528 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Pipeline.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000387384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000178696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-08 19:50 - 2019-01-08 19:50 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000140808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-08 19:50 - 2019-01-08 19:50 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000098816 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Broker.dll
2019-01-08 19:50 - 2019-01-08 19:50 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-08 19:50 - 2019-01-08 19:50 - 000047112 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-01-08 19:50 - 2019-01-08 19:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-01-08 19:50 - 2019-01-08 19:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-01-08 19:50 - 2019-01-08 19:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-01-08 19:50 - 2019-01-08 19:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-01-08 19:50 - 2019-01-08 19:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-01-08 19:50 - 2019-01-08 19:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-01-08 19:50 - 2019-01-08 19:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-01-08 19:50 - 2019-01-08 19:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-01-08 18:12 - 2019-01-08 18:22 - 000000491 _____ C:\DelFix.txt
2019-01-08 18:12 - 2019-01-08 18:12 - 000000000 ____D C:\WINDOWS\ERUNT
2019-01-08 18:03 - 2019-01-08 18:19 - 000000000 ____D C:\Users\aitor\Downloads\solucion autoit
2019-01-08 17:42 - 2019-01-08 17:46 - 000000000 ____D C:\Program Files (x86)\Wondershare
2019-01-08 17:42 - 2019-01-08 17:45 - 000000000 ____D C:\ProgramData\Wondershare
2019-01-08 17:42 - 2017-09-27 17:29 - 000000232 _____ C:\WINDOWS\SysWOW64\dllhost.exe.config
2019-01-08 17:41 - 2019-01-08 17:42 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2019-01-08 17:41 - 2019-01-08 17:41 - 001407592 _____ C:\Users\aitor\Downloads\recoverit_setup_full4144.exe
2019-01-08 17:12 - 2019-01-08 17:12 - 000000000 ____D C:\Users\aitor\AppData\Local\mbam
2019-01-08 17:11 - 2019-01-08 17:11 - 000001914 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-01-08 17:11 - 2019-01-08 17:11 - 000000000 ____D C:\Users\aitor\AppData\Local\mbamtray
2019-01-08 17:11 - 2019-01-08 17:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-01-08 17:11 - 2019-01-08 17:11 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-01-08 17:11 - 2019-01-08 17:11 - 000000000 ____D C:\Program Files\Malwarebytes
2019-01-08 17:11 - 2018-09-11 13:18 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-01-08 17:09 - 2019-01-08 17:16 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2019-01-08 17:08 - 2019-01-08 17:17 - 000000000 ____D C:\WINDOWS\pss
2019-01-08 16:54 - 2019-01-08 16:54 - 080022264 _____ (Malwarebytes ) C:\Users\aitor\Downloads\mb3-setup-35891.35891-3.6.1.2711-1.0.463-1.0.6913.exe
2019-01-08 14:07 - 2019-01-08 14:07 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-01-08 14:07 - 2019-01-08 14:07 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-01-08 14:07 - 2019-01-08 14:07 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-01-08 14:07 - 2019-01-08 14:07 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-01-08 00:35 - 2019-01-08 00:35 - 000076716 _____ C:\ProgramData\agent.update.1546904124.bdinstall.v2.bin
2019-01-08 00:10 - 2019-01-08 00:10 - 151840120 _____ (Microsoft Corporation) C:\Users\aitor\Downloads\msert.exe
2019-01-06 19:22 - 2019-01-06 19:22 - 000017715 _____ C:\ProgramData\agent.uninstall.1546798928.bdinstall.bin
2019-01-06 19:08 - 2019-01-06 19:08 - 000001198 _____ C:\Users\aitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bitdefender Antivirus Free.lnk
2019-01-06 19:06 - 2019-01-06 19:06 - 000000000 ____D C:\ProgramData\Bitdefender
2019-01-06 19:04 - 2019-01-06 19:04 - 000000000 ____D C:\Users\aitor\AppData\Roaming\QuickScan
2019-01-06 18:57 - 2019-01-06 18:57 - 000003802 _____ C:\WINDOWS\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2019-01-06 18:55 - 2019-01-08 00:35 - 000000000 ____D C:\Program Files\Bitdefender Agent
2019-01-06 18:55 - 2019-01-06 18:55 - 000103744 _____ C:\ProgramData\agent.1546797343.bdinstall.v2.bin
2019-01-06 18:55 - 2019-01-06 18:55 - 000000000 ____D C:\ProgramData\Bitdefender Agent
2019-01-06 16:41 - 2019-01-06 16:41 - 000000000 ____D C:\Users\aitor\Documents\My Games
2019-01-06 16:40 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2019-01-06 16:40 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2019-01-06 16:40 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2019-01-06 16:40 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2019-01-06 16:40 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2019-01-06 16:40 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2019-01-06 16:40 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2019-01-06 16:40 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2019-01-06 16:40 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2019-01-06 16:40 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2019-01-06 16:40 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2019-01-06 16:40 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2019-01-06 16:40 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2019-01-06 16:40 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2019-01-06 16:40 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2019-01-06 16:40 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2019-01-06 16:40 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2019-01-06 16:40 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2019-01-06 16:40 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2019-01-06 16:40 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2019-01-06 16:40 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2019-01-06 16:40 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2019-01-06 16:40 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2019-01-06 16:40 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2019-01-06 16:40 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2019-01-06 16:40 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2019-01-06 16:40 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2019-01-06 16:40 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2019-01-06 16:40 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2019-01-06 16:40 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2019-01-06 16:40 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2019-01-06 16:40 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2019-01-06 16:39 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2019-01-06 16:39 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2019-01-06 16:39 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2019-01-06 16:39 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2019-01-06 16:39 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2019-01-06 16:39 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2019-01-06 16:39 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2019-01-06 16:39 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2019-01-06 16:39 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2019-01-06 16:39 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2019-01-06 16:39 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2019-01-06 16:39 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2019-01-06 16:39 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2019-01-06 16:39 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2019-01-06 16:39 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2019-01-06 16:39 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2019-01-06 16:39 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2019-01-06 16:39 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2019-01-06 16:39 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2019-01-06 16:39 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2019-01-06 16:39 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2019-01-06 16:39 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2019-01-06 16:39 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2019-01-06 16:39 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2019-01-06 16:39 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2019-01-06 16:39 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2019-01-06 16:39 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2019-01-06 16:39 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2019-01-06 16:39 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2019-01-06 16:39 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2019-01-06 16:39 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2019-01-06 16:39 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2019-01-06 16:39 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2019-01-06 16:39 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2019-01-06 16:39 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2019-01-06 16:39 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2019-01-06 16:39 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2019-01-06 16:39 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2019-01-06 16:39 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2019-01-06 16:39 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2019-01-06 16:39 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2019-01-06 16:39 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2019-01-06 16:39 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2019-01-06 16:39 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2019-01-06 16:39 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2019-01-06 16:39 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2019-01-06 16:39 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2019-01-06 16:39 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2019-01-06 16:39 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2019-01-06 16:39 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2019-01-06 16:39 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2019-01-06 16:39 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2019-01-06 16:39 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2019-01-06 16:39 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2019-01-06 16:39 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2019-01-06 16:39 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2019-01-06 16:39 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2019-01-06 16:39 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2019-01-06 16:39 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2019-01-06 16:39 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2019-01-06 16:39 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2019-01-06 16:39 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2019-01-06 16:39 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2019-01-06 16:39 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2019-01-06 16:39 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2019-01-06 16:39 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2019-01-06 16:39 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2019-01-06 16:39 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2019-01-06 16:39 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2019-01-06 16:38 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2019-01-06 16:38 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2019-01-06 16:38 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2019-01-06 16:38 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2019-01-06 16:38 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2019-01-06 16:38 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2019-01-06 16:38 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2019-01-06 16:38 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2019-01-06 16:38 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2019-01-06 16:38 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2019-01-06 16:38 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2019-01-06 16:38 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2019-01-06 16:38 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2019-01-06 16:38 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2019-01-06 16:38 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2019-01-06 16:38 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2019-01-06 16:38 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2019-01-06 16:38 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2019-01-06 16:38 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2019-01-06 16:38 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2019-01-06 16:38 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2019-01-06 16:38 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2019-01-06 16:38 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2019-01-06 16:38 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2019-01-06 16:38 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2019-01-06 16:38 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2019-01-06 16:38 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2019-01-06 16:38 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2019-01-06 16:38 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2019-01-06 16:38 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2019-01-06 16:38 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2019-01-06 16:38 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2019-01-06 16:38 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2019-01-06 16:38 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2019-01-06 16:38 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2019-01-06 16:38 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2019-01-06 16:38 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2019-01-06 16:38 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2019-01-06 16:38 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2019-01-06 16:38 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2019-01-06 16:38 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2019-01-06 16:38 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2019-01-06 16:38 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2019-01-06 16:38 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2019-01-06 16:38 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2019-01-06 16:38 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2019-01-06 16:38 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2019-01-06 16:38 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2019-01-06 16:38 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2019-01-06 16:38 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2019-01-06 16:38 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll

Agohi · 10 Enero, 2019 15:35

2019-01-06 16:38 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2019-01-06 16:38 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2019-01-06 16:38 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2019-01-06 16:38 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2019-01-06 16:38 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2019-01-06 16:38 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2019-01-06 16:38 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2019-01-06 16:37 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2019-01-06 16:37 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2019-01-06 16:37 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2019-01-06 16:37 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2019-01-06 16:37 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2019-01-06 16:37 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2019-01-06 16:37 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2019-01-06 16:37 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2019-01-06 16:37 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2019-01-06 16:37 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2019-01-06 16:37 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2019-01-06 16:37 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2019-01-06 16:37 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2019-01-06 16:37 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2019-01-06 16:37 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2019-01-06 16:37 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2019-01-06 16:37 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2019-01-06 16:37 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2019-01-06 14:59 - 2019-01-06 14:59 - 000000000 ____D C:\Users\aitor\AppData\LocalLow\Human Head Studios
2019-01-03 22:23 - 2019-01-09 07:45 - 078905344 _____ C:\WINDOWS\system32\config\SOFTWARE
2019-01-03 22:17 - 2019-01-03 22:23 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2019-01-03 20:47 - 2019-01-03 20:48 - 001269539 _____ C:\Users\aitor\Downloads\20172_examenes.zip
2019-01-03 20:16 - 2019-01-03 20:16 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-01-03 20:16 - 2019-01-03 20:16 - 000000995 _____ C:\Users\Public\Desktop\Firefox.lnk
2019-01-03 20:16 - 2019-01-03 20:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-01-03 20:15 - 2019-01-03 20:16 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-01-02 22:32 - 2019-01-10 16:24 - 000000000 ____D C:\Users\aitor\AppData\LocalLow\Mozilla
2019-01-02 22:32 - 2019-01-02 22:39 - 000000000 ____D C:\Users\aitor\AppData\Local\Mozilla
2019-01-02 22:32 - 2019-01-02 22:32 - 000000000 ____D C:\Users\aitor\AppData\Roaming\Mozilla
2019-01-02 13:44 - 2019-01-02 13:44 - 000000000 ____D C:\Users\aitor\BrawlhallaReplays
2019-01-02 12:39 - 2019-01-02 12:40 - 000000000 ____D C:\Users\aitor\AppData\Roaming\BrawlhallaAir
2019-01-01 22:05 - 2019-01-01 22:10 - 000000000 ____D C:\Users\aitor\AppData\Local\Frantic_Dimension
2019-01-01 21:59 - 2019-01-06 16:55 - 000000000 ____D C:\Users\aitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-01-01 21:59 - 2019-01-01 21:59 - 000000222 _____ C:\Users\aitor\Desktop\Brawlhalla.url
2018-12-30 16:04 - 2019-01-09 07:49 - 001773362 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-12-30 15:58 - 2018-12-30 15:58 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2018-12-30 15:56 - 2019-01-10 16:21 - 000003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2018-12-30 15:56 - 2019-01-10 16:21 - 000003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2018-12-30 15:56 - 2019-01-09 07:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-12-30 15:56 - 2018-12-30 15:56 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2018-12-30 15:56 - 2018-12-30 15:56 - 000007623 _____ C:\WINDOWS\diagerr.xml
2018-12-30 15:56 - 2018-12-30 15:56 - 000003536 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2018-12-30 15:56 - 2018-12-30 15:56 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-12-30 15:56 - 2018-12-30 15:56 - 000003312 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2018-12-30 15:56 - 2018-12-30 15:56 - 000002968 _____ C:\WINDOWS\System32\Tasks\Update Checker
2018-12-30 15:56 - 2018-12-30 15:56 - 000002924 _____ C:\WINDOWS\System32\Tasks\ATK Package 36D18D69AFC3
2018-12-30 15:56 - 2018-12-30 15:56 - 000002686 _____ C:\WINDOWS\System32\Tasks\ROG Gaming Center App Service
2018-12-30 15:56 - 2018-12-30 15:56 - 000002520 _____ C:\WINDOWS\System32\Tasks\ROG Gaming Center
2018-12-30 15:56 - 2018-12-30 15:56 - 000002404 _____ C:\WINDOWS\System32\Tasks\SS2UILauncherRun
2018-12-30 15:56 - 2018-12-30 15:56 - 000002392 _____ C:\WINDOWS\System32\Tasks\SS2Svc64Run
2018-12-30 15:56 - 2018-12-30 15:56 - 000002384 _____ C:\WINDOWS\System32\Tasks\SS2Svc32Run
2018-12-30 15:56 - 2018-12-30 15:56 - 000002346 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2018-12-30 15:56 - 2018-12-30 15:56 - 000002282 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2018-12-30 15:56 - 2018-12-30 15:56 - 000002214 _____ C:\WINDOWS\System32\Tasks\ATK Package A22126881260
2018-12-30 15:56 - 2018-12-30 15:56 - 000002146 _____ C:\WINDOWS\System32\Tasks\StartCN
2018-12-30 15:56 - 2018-12-30 15:56 - 000001984 _____ C:\WINDOWS\System32\Tasks\ASUS Splendid ACMON
2018-12-30 15:56 - 2018-12-30 15:56 - 000000020 ___SH C:\Users\aitor\ntuser.ini
2018-12-30 15:56 - 2018-12-30 15:56 - 000000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2018-12-30 15:56 - 2018-12-30 15:56 - 000000000 ____D C:\WINDOWS\System32\Tasks\ASUSTek Computer Inc
2018-12-30 15:56 - 2018-12-30 15:56 - 000000000 ____D C:\WINDOWS\System32\Tasks\ASUS
2018-12-30 15:56 - 2018-12-30 15:56 - 000000000 ____D C:\ProgramData\USOShared
2018-12-30 15:56 - 2018-09-15 08:28 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2018-12-30 15:54 - 2018-12-30 15:54 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2018-12-30 15:53 - 2019-01-02 13:44 - 000000000 ____D C:\Users\aitor
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\Reciente
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\Plantillas
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\Mis documentos
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\Menú Inicio
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\Impresoras
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\Entorno de red
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\Documents\Mis vídeos
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\Documents\Mis imágenes
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\Documents\Mi música
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\Datos de programa
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\Configuración local
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\AppData\Local\Historial
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\AppData\Local\Datos de programa
2018-12-30 15:53 - 2018-12-30 15:53 - 000000000 _SHDL C:\Users\aitor\AppData\Local\Archivos temporales de Internet
2018-12-30 15:53 - 2018-09-15 08:29 - 000001105 _____ C:\Users\aitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-30 15:52 - 2019-01-09 23:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-12-30 15:52 - 2019-01-08 17:47 - 000643560 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-12-30 15:52 - 2018-12-30 15:56 - 000000000 ____D C:\Windows.old
2018-12-29 00:12 - 2018-12-30 15:52 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2018-12-29 00:08 - 2018-12-29 00:12 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2018-12-29 00:03 - 2018-12-29 00:03 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 005113008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-12-29 00:03 - 2018-12-29 00:03 - 003566080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-12-29 00:03 - 2018-12-29 00:03 - 001289400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 001073448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 001057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 001024920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 000854784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 000763032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 000301096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 000241680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2018-12-29 00:03 - 2018-12-29 00:03 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 024617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 019284992 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 015224832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 007724776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 006306152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 005585056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 004918784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 004886016 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 004306432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 003744256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 003730352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2018-12-29 00:02 - 2018-12-29 00:02 - 003577856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 003427328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 003108864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 002883584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 002832896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 002429752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2018-12-29 00:02 - 2018-12-29 00:02 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2018-12-29 00:02 - 2018-12-29 00:02 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001749504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001675712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001590288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001483264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001476096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001467344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001456736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001294864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001282432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001279024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2018-12-29 00:02 - 2018-12-29 00:02 - 001259000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-12-29 00:02 - 2018-12-29 00:02 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2018-12-29 00:02 - 2018-12-29 00:02 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2018-12-29 00:02 - 2018-12-29 00:02 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2018-12-29 00:02 - 2018-12-29 00:02 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001097312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001026992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000964976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-12-29 00:02 - 2018-12-29 00:02 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000604248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000373768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2018-12-29 00:02 - 2018-12-29 00:02 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-12-29 00:02 - 2018-12-29 00:02 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2018-12-29 00:02 - 2018-12-29 00:02 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastingShellExt.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CastingShellExt.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000114344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2018-12-29 00:02 - 2018-12-29 00:02 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 022112072 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 005565440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 005312512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 004765184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 004300800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-12-29 00:01 - 2018-12-29 00:01 - 003983360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 003662336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 003504640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 003379000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 003092480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 002927104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 002843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 002702536 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 002689536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 002630656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 002488320 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 002185728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 002085168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 002072384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001863168 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001842600 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001830912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001824768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001797128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001696216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-12-29 00:01 - 2018-12-29 00:01 - 001688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001674688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001672056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001466872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-12-29 00:01 - 2018-12-29 00:01 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001395248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2018-12-29 00:01 - 2018-12-29 00:01 - 001360696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 001341376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-12-29 00:01 - 2018-12-29 00:01 - 001331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001315840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001287776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001249792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001199104 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001180760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001177632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-12-29 00:01 - 2018-12-29 00:01 - 001162280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-12-29 00:01 - 2018-12-29 00:01 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000863752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 000836096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000818832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000604336 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-12-29 00:01 - 2018-12-29 00:01 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2018-12-29 00:01 - 2018-12-29 00:01 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000566584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000514112 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-12-29 00:01 - 2018-12-29 00:01 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000294072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000252536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2018-12-29 00:01 - 2018-12-29 00:01 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000175096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2018-12-29 00:01 - 2018-12-29 00:01 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 000151872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000114648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000094224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2018-12-29 00:01 - 2018-12-29 00:01 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000091640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2018-12-29 00:01 - 2018-12-29 00:01 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2018-12-29 00:00 - 2018-12-29 00:00 - 007685016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 006132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 005130752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 002988544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 002721792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 002654208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 002149352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 001520208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 001387496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 001219584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 001051960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000897848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000850960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000756640 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-12-29 00:00 - 2018-12-29 00:00 - 000752128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000660496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000650040 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-12-29 00:00 - 2018-12-29 00:00 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000582240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2018-12-29 00:00 - 2018-12-29 00:00 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000402576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000306704 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000300024 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000298536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000193016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000164344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000130088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000102392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000083472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2018-12-29 00:00 - 2018-12-29 00:00 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2018-12-29 00:00 - 2018-12-29 00:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-12-29 00:00 - 2018-12-29 00:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-12-28 23:34 - 2018-12-28 23:34 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2018-12-28 23:34 - 2018-12-28 23:34 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2018-12-28 23:34 - 2018-12-28 23:34 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2018-12-28 23:34 - 2018-12-28 23:34 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2018-12-28 23:34 - 2018-12-28 23:34 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2018-12-28 23:34 - 2018-12-28 23:34 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2018-12-28 23:33 - 2019-01-02 13:21 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2018-12-28 23:33 - 2018-12-28 23:33 - 000000000 ____D C:\Program Files\Reference Assemblies
2018-12-28 23:33 - 2018-12-28 23:33 - 000000000 ____D C:\Program Files\MSBuild
2018-12-28 23:33 - 2018-12-28 23:33 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2018-12-28 23:33 - 2018-12-28 23:33 - 000000000 ____D C:\Program Files (x86)\MSBuild
2018-12-28 23:32 - 2018-12-28 23:32 - 001167960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2018-12-28 23:32 - 2018-12-28 23:32 - 000780376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2018-12-28 23:32 - 2018-12-28 23:32 - 000126064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2018-12-28 23:32 - 2018-12-28 23:32 - 000104560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2018-12-28 23:32 - 2018-12-28 23:32 - 000036896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2018-12-28 23:32 - 2018-12-28 23:32 - 000035440 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2018-12-28 23:13 - 2018-12-28 23:13 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2018-12-28 22:41 - 2019-01-09 07:51 - 000000000 ___DC C:\WINDOWS\Panther
2018-12-19 21:50 - 2019-01-08 00:15 - 000000000 ____D C:\Users\aitor\AppData\Roaming\749637f62452354efb76753b2e4358c4

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-10 16:21 - 2018-09-03 19:14 - 000000182 _____ C:\Users\aitor\AppData\Roaming\sp_data.sys
2019-01-10 16:18 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-09 18:40 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-09 18:39 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\servicing
2019-01-09 18:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-09 07:52 - 2018-09-04 15:18 - 000000000 ____D C:\Program Files (x86)\Steam
2019-01-09 07:51 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-09 07:51 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-01-09 07:50 - 2018-09-03 19:20 - 000000000 ____D C:\Users\aitor\AppData\Local\Google
2019-01-09 07:49 - 2018-09-15 17:36 - 000789634 _____ C:\WINDOWS\system32\perfh00A.dat
2019-01-09 07:49 - 2018-09-15 17:36 - 000155888 _____ C:\WINDOWS\system32\perfc00A.dat
2019-01-09 07:49 - 2018-09-03 19:20 - 000000000 ____D C:\Program Files (x86)\Google
2019-01-09 07:45 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-01-09 07:45 - 2017-10-24 16:37 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-01-08 21:57 - 2018-09-03 20:49 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-01-08 21:36 - 2018-09-15 17:38 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-01-08 21:36 - 2018-09-15 17:38 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-01-08 21:36 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-08 19:47 - 2018-09-05 21:12 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-08 19:44 - 2018-09-05 21:12 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-08 18:06 - 2018-09-03 19:11 - 000000000 ____D C:\Users\aitor\AppData\Local\VirtualStore
2019-01-08 00:14 - 2018-09-24 23:22 - 000000000 ____D C:\Users\aitor\.VirtualBox
2019-01-06 19:42 - 2018-09-09 21:25 - 000000000 ____D C:\Users\aitor\AppData\Roaming\vlc
2019-01-06 19:23 - 2018-09-15 08:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-01-06 18:59 - 2017-10-24 16:43 - 000000000 ____D C:\ProgramData\McAfee
2019-01-05 21:46 - 2018-09-18 20:53 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-01-05 21:46 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-05 21:43 - 2018-09-16 09:24 - 000000000 ____D C:\Users\aitor\AppData\Local\D3DSCache
2019-01-02 20:48 - 2018-09-15 08:36 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-02 20:48 - 2018-09-15 08:36 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-01-02 13:21 - 2018-09-15 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2019-01-02 13:21 - 2018-09-15 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2019-01-02 13:21 - 2018-09-15 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2019-01-02 13:21 - 2018-09-15 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2019-01-02 13:21 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2019-01-02 13:21 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-01-02 13:21 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-01-02 13:20 - 2018-09-15 17:36 - 000000000 ____D C:\WINDOWS\system32\winrm
2019-01-02 13:20 - 2018-09-15 17:36 - 000000000 ____D C:\WINDOWS\system32\WCN
2019-01-02 13:20 - 2018-09-15 17:36 - 000000000 ____D C:\WINDOWS\system32\slmgr
2019-01-02 13:20 - 2018-09-15 17:36 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\F12
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\dsc
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ___RD C:\Program Files\Windows Defender
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\IME
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\system
2019-01-02 13:20 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-01-02 13:20 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2019-01-01 22:00 - 2018-09-03 19:11 - 000000000 ____D C:\Users\aitor\AppData\Local\Packages
2019-01-01 20:46 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\appcompat
2018-12-30 16:01 - 2018-09-06 23:29 - 000000000 ____D C:\ProgramData\Packages
2018-12-30 15:58 - 2018-09-09 21:21 - 000000000 ____D C:\Users\aitor\AppData\Local\PlaceholderTileLogoFolder
2018-12-30 15:57 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Registration
2018-12-30 15:56 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\USOPrivate
2018-12-30 15:56 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\windows nt
2018-12-30 15:56 - 2018-09-15 07:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-12-30 15:56 - 2018-09-06 23:21 - 000000000 ___RD C:\Users\aitor\3D Objects
2018-12-30 15:56 - 2018-09-03 19:11 - 000000000 ____D C:\Users\aitor\AppData\Local\ConnectedDevicesPlatform
2018-12-30 15:56 - 2017-10-24 16:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2018-12-30 15:56 - 2017-10-24 16:34 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-12-30 15:55 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-12-30 15:55 - 2018-09-06 23:13 - 000023172 _____ C:\WINDOWS\system32\emptyregdb.dat
2018-12-30 15:54 - 2018-09-03 19:16 - 000000000 ____D C:\Users\aitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-30 15:53 - 2017-10-24 16:38 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-12-30 15:53 - 2017-10-24 16:38 - 000000000 ____D C:\WINDOWS\system32\DAX3
2018-12-30 15:53 - 2017-10-24 16:38 - 000000000 ____D C:\WINDOWS\system32\DAX2
2018-12-30 15:52 - 2018-10-23 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.1
2018-12-30 15:52 - 2018-10-12 10:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-12-30 15:52 - 2018-09-24 23:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2018-12-30 15:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-12-30 15:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\spool
2018-12-30 15:52 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ServiceState
2018-12-30 15:52 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-12-30 15:52 - 2018-09-15 08:31 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2018-12-30 15:52 - 2018-09-09 21:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2018-12-30 15:52 - 2018-09-09 10:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2018-12-30 15:52 - 2018-09-04 15:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2018-12-30 15:52 - 2018-09-03 19:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-12-30 15:52 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2018-12-30 15:52 - 2017-10-24 16:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sonic Suite 2
2018-12-30 15:52 - 2017-10-24 16:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameFirst IV
2018-12-30 15:52 - 2017-10-24 16:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2018-12-30 15:52 - 2017-10-24 16:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2018-12-30 15:52 - 2017-10-24 16:37 - 000000000 ____D C:\Program Files\AMD
2018-12-29 00:29 - 2018-09-15 08:36 - 000000000 ____D C:\WINDOWS\Setup
2018-12-29 00:18 - 2018-09-15 08:33 - 000000000 __RHD C:\Users\Public\Libraries
2018-12-29 00:18 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2018-12-29 00:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Resources
2018-12-29 00:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Help
2018-12-29 00:12 - 2017-10-24 16:38 - 000000000 ____D C:\Program Files\Realtek
2018-12-29 00:12 - 2017-10-24 16:37 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2018-12-29 00:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\TextInput
2018-12-29 00:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-12-29 00:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-12-29 00:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2018-12-28 23:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2018-12-28 23:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2018-12-28 23:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2018-12-28 23:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2018-12-28 23:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2018-12-28 23:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2018-12-28 23:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\et-EE
2018-12-28 23:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2018-12-17 20:08 - 2018-09-27 11:47 - 000000000 ____D C:\Users\aitor\Desktop\Maquina virtual Sharefolder
2018-12-17 10:17 - 2018-10-21 17:37 - 000001499 _____ C:\Users\aitor\Desktop\Fonaments dels computadors - Acceso directo.lnk
2018-12-17 10:16 - 2018-10-21 17:36 - 000001507 _____ C:\Users\aitor\Desktop\Fonaments de programació - Acceso directo.lnk
2018-12-11 17:25 - 2018-09-06 22:33 - 000592616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-12-11 17:25 - 2018-09-06 22:30 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd

==================== Files in the root of some directories =======

2018-09-03 19:14 - 2019-01-10 16:21 - 000000182 _____ () C:\Users\aitor\AppData\Roaming\sp_data.sys

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

Agohi · 10 Enero, 2019 15:46

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09.01.2019 01 Ran by aitor (10-01-2019 16:27:44) Running from C:\Users\aitor\Desktop Windows 10 Home Version 1809 17763.253 (X64) (2018-12-30 14:56:55) Boot Mode: Normal

==================== Accounts: =============================

Administrador (S-1-5-21-3097134251-2190473256-1528245456-500 - Administrator - Disabled)
aitor (S-1-5-21-3097134251-2190473256-1528245456-1001 - Administrator - Enabled) => C:\Users\aitor
DefaultAccount (S-1-5-21-3097134251-2190473256-1528245456-503 - Limited - Disabled)
Invitado (S-1-5-21-3097134251-2190473256-1528245456-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3097134251-2190473256-1528245456-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
ASUS Device Activation (HKLM-x32\...\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}) (Version: 1.0.4.0 - ASUSTeK COMPUTER INC.)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
ASUS PTP Driver (HKLM-x32\...\{7618E419-9124-4E6C-9AF4-487A6DDEC1C5}) (Version: 11.0.18 - ASUS)
Asus Sonic Suite Plugins (HKLM-x32\...\{bcacc296-fc7b-44ba-802c-bbfc643ac383}) (Version: 2.4.9 - ASUSTeKcomputer.Inc)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.19.0004 - ASUS)
ATK Package (ASUS Keyboard Hotkeys) (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0057 - ASUSTeK COMPUTER INC.)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 1.0.1 - Bitdefender)
calibre (HKLM-x32\...\{A7D3A0B5-FC41-4C92-BF3E-3064B61CEBB0}) (Version: 3.30.0 - Kovid Goyal)
Catalyst Control Center Next Localization BR (HKLM\...\{4524B31F-51CF-6C14-5E5D-3065A6CAB10F}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{89BC1D1D-79E2-C91F-22B1-122F983BFFB0}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{5858E6AE-75EA-B745-7BDE-C626418A0332}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{0301FB20-0507-E59B-EC72-F72E4732DE2D}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{DD878E69-CAE1-5DF8-C3FE-09F2648E0D56}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{A192DBB8-05B5-A715-9006-B2E5D99810EE}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{18B158C1-C1E2-F9E0-C1D0-E54065978A7C}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{52C1ED58-78D5-166C-1064-F1E1E5FD7DCE}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{88712A39-61DC-CE60-5FF8-9C344CD10908}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{B81B04E7-0927-3B57-F28F-D9A7E677305F}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{8127F05A-53B5-1746-6CCF-854E289CE2C9}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{EE415B72-0CB7-2EE8-FEA4-044A7CE18A18}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{88C35B9A-AD4B-9B6D-2DF6-BC835675599C}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{94A9FEB0-B1FE-A67A-F153-FC7AF46BD053}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{0C69BBD8-6FB1-958C-3D15-01B8C277CE56}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{3F9B512A-4D45-7A22-2775-0D66EF30B6F7}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{67E51C89-8187-A758-3525-22FB031BBC6D}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{72CBAD0D-039A-C1B6-BFDB-BDA6E846CBEC}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{AC9944AE-B9EC-2845-29F7-E05B485262DD}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{3DE9520A-A0FC-F4CF-99CC-95CDF67667C3}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{DE47AF2C-3D23-A0B6-5C32-A3B71B5178CE}) (Version: 2017.0819.126.746 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.51 - Piriform)
CheckDevicesConfigurator (HKLM\...\{7C147844-6F12-499D-A50C-4313378874F7}) (Version: 2.4.901 - ASUSTeKcomputer.Inc) Hidden
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.2.7 - ASUSTek COMPUTER INC.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 64.4.141 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.141.1 - Dropbox, Inc.) Hidden
GameFirst IV (HKLM-x32\...\{370651DD-8ABF-4807-9533-0869FDF79BFA}) (Version: 1.5.31 - ASUSTeK COMPUTER INC.) Hidden
GameFirst IV (HKLM-x32\...\GameFirst IV 1.5.31) (Version: 1.5.31 - ASUSTeK COMPUTER INC.)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.5.1.7.1001 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
LauncherSetup (HKLM\...\{2CE801B6-8E70-4166-8A1E-A87C03489F6C}) (Version: 2.4.901 - ASUSTeKcomputer.Inc) Hidden
LibreOffice 6.1.2.1 (HKLM\...\{E5FC66AA-995A-488A-BEBE-8B5C351F939A}) (Version: 6.1.2.1 - The Document Foundation)
Malwarebytes versión 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 64.0 (x64 es-ES) (HKLM\...\Mozilla Firefox 64.0 (x64 es-ES)) (Version: 64.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
NahimicSettingsConfigurator (HKLM\...\{D4EF756B-3BAC-44AA-9DCB-B3A6E20544D5}) (Version: 2.4.901 - ASUSTeKcomputer.Inc) Hidden
Oracle VM VirtualBox 5.2.18 (HKLM\...\{F96A4E32-02CB-40E9-91C1-EE679237E107}) (Version: 5.2.18 - Oracle Corporation)
ProductDaemonSetup (HKLM\...\{0F2D05CE-A571-49B9-A536-848FD0B8A050}) (Version: 2.4.901 - ASUSTeKcomputer.Inc) Hidden
ProfileSwitcherCleanup (HKLM\...\{3D93023D-A6E6-410B-93ED-270187CC574F}) (Version: 2.4.901 - ASUSTeKcomputer.Inc) Hidden
PX Profile Update (HKLM-x32\...\{F338D815-B477-36AB-8722-58AE1C05FD3B}) (Version: 1.00.1. - AMD) Hidden
REALTEK Bluetooth Filter Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AD}) (Version: 1.4.1000.170710 - REALTEK Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.19.627.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8152 - Realtek Semiconductor Corp.)
Realtek PCI-E Wireless LAN Driver (HKLM-x32\...\InstallShield_{70714FB7-4084-4202-A599-2D5935DECB67}) (Version: Drv_3.00.0017 - REALTEK Semiconductor Corp.)
ROG Gaming Center (HKLM\...\{CC182DBF-FC67-4F79-9930-6A2682E60BDD}) (Version: 2.1.2 - ASUS)
SonicRadarSetup (HKLM\...\{D677B52A-5D25-4CED-A9AF-228818905459}) (Version: 1.0.0.0 - ASUSTeKcomputer.Inc) Hidden
SonicStudioSetup (HKLM\...\{D660250D-DB2C-4A86-B5F2-103CAF08489C}) (Version: 2.4.901 - ASUSTeKcomputer.Inc) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sublime Text Build 3176 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
Windows Driver Package - ASUS (AsusPTPDrv) HIDClass  (04/21/2017 11.0.0.16) (HKLM\...\7517F958DC823EE4C12050C16EFF05886960ABEF) (Version: 04/21/2017 11.0.0.16 - ASUS)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.9.0 - ASUSTeK COMPUTER INC.)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2017-08-19] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2019-01-08] (Dropbox, Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {035F093A-B9F6-4FE0-A892-4262261BECCF} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2017-07-28] (ASUSTek Computer Inc.)
Task: {0772DA61-A2F8-4093-AFD4-5826C95CA9D0} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2017-05-11] (Realtek Semiconductor)
Task: {0D57C206-AAFF-4655-A2C8-03D0A8C47ECD} - System32\Tasks\ROG Gaming Center => C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingKey.exe [2017-05-10] (ASUSTek Computer Inc.)
Task: {12931F4B-0BA8-46A1-92D8-431AB5148AEB} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {16E897E0-567A-4070-8FD2-FD643660D813} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-09-03] (Dropbox, Inc.)
Task: {1E754C7F-2073-4D4B-A3E7-C2EE1365DC37} - System32\Tasks\SS2UILauncherRun => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2UILauncher.exe [2017-07-06] (ASUSTeK COMPUTER INC.)
Task: {255EA88F-C45D-4D97-A0DD-2390C88F3F9A} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2016-11-09] (ASUSTek COMPUTER INC.)
Task: {2CF91CBF-14C1-4D2D-89B6-AC800C24BF59} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-11] (Microsoft Corporation)
Task: {2E0EFC1A-3D89-4881-AED0-432D8CE51E77} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-01-09] (Google Inc.)
Task: {376C83DD-167F-4244-81BD-74E1EE1690CE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-12-10] (Piriform Software Ltd)
Task: {45DB3E78-D122-4E39-B1BF-CBCAC26C0F7F} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2017-07-28] (ASUSTek Computer Inc.)
Task: {6139549A-1076-464A-AD42-491B064F429E} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2018-11-15] (Bitdefender)
Task: {8497E208-B489-42A1-AE51-C5B37D68D5F5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-11] (Microsoft Corporation)
Task: {87333A4E-9AC5-4FC7-AACF-38167F7C5EA9} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2016-10-12] (ASUS)
Task: {88167407-D71F-4B85-A518-8D280AFCB77C} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {9C90847E-8390-4546-BBB9-848803B44E91} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-05-11] (Realtek Semiconductor)
Task: {B147BC43-8682-42A8-BD55-854E32C24C05} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-01-09] (Google Inc.)
Task: {C12FEF77-B0DF-46F4-B1CB-2A201E0600E6} - System32\Tasks\SS2Svc64Run => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2Svc64.exe [2017-07-06] ()
Task: {C13025AC-9323-4D0F-A983-3CC9349F5D20} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-11] (Microsoft Corporation)
Task: {C86B511C-5A60-4EBE-B9A8-81558879B496} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-12-10] (Piriform Ltd)
Task: {D88106A3-0234-43DD-BE40-5EC7223A17B1} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-08-19] (Advanced Micro Devices, Inc.)
Task: {D99DBC1D-DCB2-497B-B5F9-2CD41E9666AA} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-09-03] (Dropbox, Inc.)
Task: {DA38191E-B96B-4375-9BAC-18435AECF4CB} - System32\Tasks\SS2Svc32Run => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2Svc32.exe [2017-07-06] ()
Task: {E39F8E32-F4B6-44B2-B8AF-D84A6CFEB7B8} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-09-15] ()
Task: {E84FDC7D-0DB1-4744-8395-63849FBAE6DF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {F17EDEA2-C53F-4898-BE2D-F58FDA3C0EFF} - System32\Tasks\ROG Gaming Center App Service => C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingCenterAppService.exe [2017-05-11] (ASUSTeK COMPUTER INC.)
Task: {FB45560B-D0BB-4FFD-BCA5-D4AA87202640} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MpCmdRun.exe [2018-12-11] (Microsoft Corporation)
Task: {FDA4B7FA-36E0-4FDB-8FD2-A0192E0B44A2} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-09-15 08:28 - 2018-09-15 08:28 - 000834088 _____ () C:\Windows\System32\InputHost.dll
2019-01-08 17:11 - 2018-09-12 11:35 - 002701064 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-07-06 04:35 - 2017-07-06 04:35 - 000289640 _____ () C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2OSD.dll
2017-07-06 04:35 - 2017-07-06 04:35 - 000208232 _____ () C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2DevProps.dll
2018-09-15 08:28 - 2018-09-15 08:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-29 00:01 - 2018-12-29 00:01 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-09-15 08:28 - 2018-09-15 08:28 - 001740288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-07-06 04:32 - 2017-07-06 04:32 - 002759168 _____ () C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2svc32.exe
2017-07-06 04:36 - 2017-07-06 04:36 - 000486400 _____ () C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2svc64.exe
2018-11-07 17:31 - 2018-11-07 17:31 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-07 17:31 - 2018-11-07 17:31 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-07 17:31 - 2018-11-07 17:31 - 001754112 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-12-06 22:37 - 2018-12-06 22:37 - 004220928 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1811.3241.0_x64__8wekyb3d8bbwe\Calculator.exe
2018-12-06 22:37 - 2018-12-06 22:37 - 004380232 _____ () C:\Program Files\WindowsApps\Microsoft.UI.Xaml.2.0_2.1810.18003.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-06-24 08:49 - 2017-06-24 08:49 - 000014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2017-06-24 08:49 - 2017-06-24 08:49 - 000739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2017-06-24 08:49 - 2017-06-24 08:49 - 000014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2017-06-24 08:49 - 2017-06-24 08:49 - 000071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2017-06-24 08:49 - 2017-06-24 08:49 - 000011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2017-06-24 08:49 - 2017-06-24 08:49 - 002013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2017-06-24 08:49 - 2017-06-24 08:49 - 000191488 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2017-07-06 04:35 - 2017-07-06 04:35 - 000312680 _____ () C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\OvlDynExt.dll
2017-07-06 04:32 - 2017-07-06 04:32 - 000098816 _____ () C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\sradarlauncher.dll
2017-07-06 04:32 - 2017-07-06 04:32 - 000256872 _____ () C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2OSD.dll
2017-07-06 04:32 - 2017-07-06 04:32 - 000177000 _____ () C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2DevProps.dll
2013-04-27 10:24 - 2013-04-27 10:24 - 000071680 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\checkmetro.dll
2016-10-12 22:17 - 2016-10-12 22:17 - 000033280 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2016-10-12 22:17 - 2016-10-12 22:17 - 000125440 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2016-10-12 22:17 - 2016-10-12 22:17 - 000029184 _____ () C:\Program Files (x86)\ASUS\Splendid\VideoEnhance.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 22:03 - 2017-03-18 22:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Calibre2\
HKU\S-1-5-21-3097134251-2190473256-1528245456-1001\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 80.58.61.254 - 80.58.61.250
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3097134251-2190473256-1528245456-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_524A4CDBFAFB0D10B913685F4429D0E5"
HKU\S-1-5-21-3097134251-2190473256-1528245456-1001\...\StartupApproved\Run: => "utweb"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{6242B1F4-2056-4E3D-A2ED-70FB08B2D715}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{E25C0877-1B89-4499-99AA-66013957C7C9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{F74F035B-44AD-4907-9427-DB3E30BF726E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{E482D557-BB45-4694-AADB-2CE556B0C3A6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{992A0DAA-4671-40BB-B0A2-0B6875793618}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{62AB6A16-740B-4989-B675-0CEF93952823}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{99B4BFDF-CA7E-482E-9C86-B00DFF17F6EB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{8579EA31-9AC1-4DFA-9B60-D958209C3C61}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{F8390319-6916-44F6-8FEE-F57D25717655}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation)
FirewallRules: [{7B8D81B2-DFF8-4A7B-A738-E729729A4E05}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation)
FirewallRules: [{F6B0B2D1-CE8D-4E58-8692-AE3C89E6DBD6}] => (Allow) C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGCAndroidService.exe (ASUSTeK COMPUTER INC.)
FirewallRules: [{3BAF3BD9-0F42-4840-AEF5-8558EB310E3C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
FirewallRules: [{AD3DDA6D-5289-4CCE-903C-97F2C90CC68E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
FirewallRules: [{5A426A46-B156-4103-BA04-AC0EEDAFAB58}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe ()
FirewallRules: [{D3DF3C51-AB57-4761-AC28-7A8B225EEB34}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe ()
FirewallRules: [{031348B5-3A1F-4477-8B0E-A8DFB8E2A60D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{5C3ED19C-73DC-4123-BBF6-E14692107B1F}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc.)
FirewallRules: [{BAE7F64B-1684-4F7C-B8A6-DFD6A737BCAE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
FirewallRules: [{9D830EA8-EA13-4673-85E2-CA00967A24E2}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd)
FirewallRules: [{E40A132B-849C-4801-B0F2-286769C4C9AA}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd)

==================== Restore Points =========================

01-01-2019 20:50:06 Windows Update
06-01-2019 16:35:41 Se ha instalado DirectX

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/08/2019 09:56:49 PM) (Source: DbxSvc) (EventID: 293) (User: )
Description: Failed to validate client process executable is signed: C:\Program Files (x86)\Dropbox\Client_64.4.141\Dropbox.exe

Error: (01/08/2019 09:56:49 PM) (Source: DbxSvc) (EventID: 282) (User: )
Description: Certificate mismatch for file: C:\Program Files (x86)\Dropbox\Client_64.4.141\Dropbox.exe

Error: (01/08/2019 09:39:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: WinStore.App.exe, versión: 11810.1001.12.0, marca de tiempo: 0x5bdcde4a
Nombre del módulo con errores: ntdll.dll, versión: 10.0.17763.194, marca de tiempo: 0xe8b54827
Código de excepción: 0xc0000374
Desplazamiento de errores: 0x00000000000faf49
Identificador del proceso con errores: 0x2e0
Hora de inicio de la aplicación con errores: 0x01d4a72da4e0779b
Ruta de acceso de la aplicación con errores: C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: cde205d2-21bb-4773-9244-d8633f58b9df
Nombre completo del paquete con errores: Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe
Identificador de aplicación relativa del paquete con errores: App

Error: (01/06/2019 07:08:08 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error al actualizar el estado de  a SECURITY_PRODUCT_STATE_SNOOZED.

Error: (01/06/2019 07:08:03 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Error al actualizar el estado de  a SECURITY_PRODUCT_STATE_ON.

Error: (01/06/2019 06:36:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa WindowsCamera.exe (versión 2018.824.60.0) dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible sobre el problema, comprueba el historial de problemas en el panel de control de seguridad y mantenimiento.

Id. de proceso: b720

Hora de Inicio: 01d4a5e65dcd30c1

Hora de finalización: 4294967295

Ruta de la aplicación: C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2018.824.60.0_x64__8wekyb3d8bbwe\WindowsCamera.exe

Id. de informe: ffb6a578-484a-4d82-9bb1-ade9a981b112

Nombre completo del paquete con errores: Microsoft.WindowsCamera_2018.824.60.0_x64__8wekyb3d8bbwe

Id. de la aplicación relativa al paquete con errores: App

Tipo de bloqueo: Quiesce

Error: (01/06/2019 03:16:01 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa SurvivedBy.exe (versión 5.4.1.40776) dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible sobre el problema, comprueba el historial de problemas en el panel de control de seguridad y mantenimiento.

Id. de proceso: 72c

Hora de Inicio: 01d4a5c800ccebe6

Hora de finalización: 22

Ruta de la aplicación: C:\Program Files (x86)\Steam\steamapps\common\Survived By\SurvivedBy.exe

Id. de informe: 87a88397-20b6-4cf8-95dc-4a631b5839a8

Nombre completo del paquete con errores: 

Id. de la aplicación relativa al paquete con errores: 

Tipo de bloqueo: Cross-thread

Error: (01/03/2019 08:34:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa firefox.exe (versión 64.0.0.6914) dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible sobre el problema, comprueba el historial de problemas en el panel de control de seguridad y mantenimiento.

Id. de proceso: 60d0

Hora de Inicio: 01d4a39906009fda

Hora de finalización: 4294967295

Ruta de la aplicación: C:\Program Files\Mozilla Firefox\firefox.exe

Id. de informe: 38438f7e-fa90-480b-92dc-aa897ec62e78

Nombre completo del paquete con errores: 

Id. de la aplicación relativa al paquete con errores: 

Tipo de bloqueo: Top level window is idle


System errors:
=============
Error: (01/09/2019 05:33:37 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OMPK35G)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DESKTOP-OMPK35G\aitor con SID (S-1-5-21-3097134251-2190473256-1528245456-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (01/09/2019 05:33:37 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OMPK35G)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DESKTOP-OMPK35G\aitor con SID (S-1-5-21-3097134251-2190473256-1528245456-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (01/09/2019 05:33:36 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OMPK35G)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DESKTOP-OMPK35G\aitor con SID (S-1-5-21-3097134251-2190473256-1528245456-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (01/09/2019 05:33:36 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OMPK35G)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DESKTOP-OMPK35G\aitor con SID (S-1-5-21-3097134251-2190473256-1528245456-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (01/09/2019 05:31:42 PM) (Source: Tcpip) (EventID: 4199) (User: )
Description: El sistema ha detectado un conflicto por la dirección IP 192.168.1.35. La dirección 
de hardware de red es 04-B1-67-37-A2-5E, las operaciones de red en este sistema 
pueden verse afectadas por este problema.

Error: (01/09/2019 08:03:29 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OMPK35G)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DESKTOP-OMPK35G\aitor con SID (S-1-5-21-3097134251-2190473256-1528245456-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (01/09/2019 08:03:29 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OMPK35G)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DESKTOP-OMPK35G\aitor con SID (S-1-5-21-3097134251-2190473256-1528245456-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (01/09/2019 07:50:14 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-OMPK35G)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DESKTOP-OMPK35G\aitor con SID (S-1-5-21-3097134251-2190473256-1528245456-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.


Windows Defender:
===================================
Date: 2019-01-06 15:40:02.590
Description: 
El acceso controlado a carpetas bloqueó C:\Windows\System32\RuntimeBroker.exe para que no pueda modificar %userprofile%\Pictures.
Hora de detección: 2019-01-06T14:40:02.589Z
Usuario: DESKTOP-OMPK35G\aitor
Ruta de acceso: %userprofile%\Pictures
Nombre del proceso: C:\Windows\System32\RuntimeBroker.exe
Versión de la firma: 1.283.2322.0
Versión del motor: 1.1.15500.2
Versión del producto: 4.18.1812.3

Date: 2019-01-06 15:19:57.445
Description: 
El acceso controlado a carpetas bloqueó C:\Program Files (x86)\Steam\Steam.exe para que no pueda modificar %desktopdirectory%\.
Hora de detección: 2019-01-06T14:19:57.442Z
Usuario: DESKTOP-OMPK35G\aitor
Ruta de acceso: %desktopdirectory%\
Nombre del proceso: C:\Program Files (x86)\Steam\Steam.exe
Versión de la firma: 1.283.2322.0
Versión del motor: 1.1.15500.2
Versión del producto: 4.18.1812.3

Date: 2019-01-02 18:52:09.047
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {9AEF588C-6CBB-46C1-A9D8-8CDA2A1A743C}
Tipo de examen: Antimalware
Parámetros de examen: Examen completo
Usuario: DESKTOP-OMPK35G\aitor

Date: 2019-01-02 18:52:09.045
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:JS/CoinHive.A&threatid=2147729066&enterprise=0
Nombre: Trojan:JS/CoinHive.A
Id.: 2147729066
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: containerfile:_C:\Users\aitor\AppData\Local\Google\Chrome\User Data\Default\Cache\f_001606; file:_C:\Users\aitor\AppData\Local\Google\Chrome\User Data\Default\Cache\f_001606->(GZip)
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Usuario
Usuario: DESKTOP-OMPK35G\aitor
Nombre de proceso: Unknown
Versión de firma: AV: 1.283.2050.0, AS: 1.283.2050.0, NIS: 1.283.2050.0
Versión de motor: AM: 1.1.15500.2, NIS: 1.1.15500.2

Date: 2019-01-02 13:21:11.195
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {46553806-7C68-4AD7-B132-AC41A8C29D38}
Tipo de examen: Antimalware
Parámetros de examen: Examen completo
Usuario: DESKTOP-OMPK35G\aitor

Date: 2019-01-08 17:16:25.401
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2019-01-08 17:15:29.518
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2019-01-08 17:09:15.972
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

CodeIntegrity:
===================================

Date: 2019-01-10 16:18:47.398
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2OSD.dll that did not meet the Store signing level requirements.

Date: 2019-01-10 16:18:47.394
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2DevProps.dll that did not meet the Store signing level requirements.

Date: 2019-01-09 17:32:22.400
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2OSD.dll that did not meet the Store signing level requirements.

Date: 2019-01-09 17:32:22.394
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2DevProps.dll that did not meet the Store signing level requirements.

Date: 2019-01-09 07:46:47.442
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2OSD.dll that did not meet the Store signing level requirements.

Date: 2019-01-09 07:46:47.425
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2DevProps.dll that did not meet the Store signing level requirements.

Date: 2019-01-08 21:43:15.772
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2OSD.dll that did not meet the Store signing level requirements.

Date: 2019-01-08 21:43:15.767
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2DevProps.dll that did not meet the Store signing level requirements.

==================== Memory info =========================== 

Processor: AMD Ryzen 7 1700 Eight-Core Processor 
Percentage of memory in use: 22%
Total physical RAM: 16320.2 MB
Available physical RAM: 12591.93 MB
Total Virtual: 18752.2 MB
Available Virtual: 13342.81 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:237.42 GB) (Free:154.94 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:883.75 GB) NTFS

\\?\Volume{4f3dd190-6333-4535-932c-52e494128d70}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.38 GB) NTFS
\\?\Volume{db31c49e-444a-4f44-97f0-807300b35ce1}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 02944357)

Partition: GPT.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 9673EEEC)

Partition: GPT.

==================== End of Addition.txt ============================

Miguelgrado · 10 Enero, 2019 16:00

Esta todo correcto…alguna duda mas?

Agohi · 10 Enero, 2019 16:59

Pues si está todo correcto solo me quedaría la duda de si deberia mantener malwarebytes y desactivar windows defender o al contrario. Y con el resto de programas como CCleaner y adwCleaner? En un post similar he visto que como paso final descargar y ejecutar DelFix para eliminar todo lo utilizado anteriormente. Qué me recomiendas?

Miguelgrado · 10 Enero, 2019 18:56

Malwarebytes yo lo dejaría, pero si es la versión free, solo te sirve para escanear manualmente, pero incluso si tienes la de pago, déjalo junto al Defender.

Ccleaner yo lo uso regularmente y Adwcleaner lo vamos a eliminar , pues si se usa hay que descargar la ultima versión siempre

Para eliminar las herramientas usadas en la desinfección, realizas:

Descargas y Ejecutas >> Delfix, en tu escritorio.
Doble clic para ejecutarlo.(Si usas Windows Vista/7 /8 /10,presiona clic derecho y selecciona >>;Ejecutar como Administrador.)
Marca solamente la casilla Remove disinfection tools
Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

Si queda alguna herramienta, la desinstalas desde panel de Windows y aquellas que no estén listadas, se eliminan directamente.

Me alegro de haberte podido ayudar!

TEMA SOLUCIONADO

Agohi · 10 Enero, 2019 19:27

Pues entonces ya esta solucionado .

Solo me queda agradecer tu ayuda y felicitaros tanto a ti como al resto del equipo de esta web por vuestra labor.

Saludos!

Agohi · 11 Enero, 2019 15:36

Tenía una duda más, antes de cerrar el tema. Cuando estuve leyendo previamente sobre mi problema antes de llegar a este foro, leí en varios sitios sobre este programa y siempre era tildado de malware. Es algo de lo que deba preocuparme?

Miguelgrado · 11 Enero, 2019 17:34

Si parece que suele dar problemas, sobre todo de consumo de Ram y pienso que no es algo que se deba tener

Subelo a virus total y pega la URL del resultado

Agohi · 13 Enero, 2019 20:11

Ya lo solucioné. Me acordé de que habia descargado un programa de recuperación de archivos después de vaciar la papelera de reciclaje para recuperar un log que había eliminado (y vaciado la papelera posteriormente). Aunque habia desinstalado el programa habia dejado algunos elementos residuales que pude eliminar despues de detener el proceso wondershare_passport sin problemas.

system · 31 Enero, 2019 06:22

Este tema se cerró automáticamente 2 días después del último post. No se permiten nuevas respuestas.