Corte de Internet al descargar archivos de mas de 1GB

Sistemas Operativos
1

Hola amigos.

Les cuento mi problema que ya creía solucionado hace unos días.

Cada vez que intento descargar por ejemplo cualquier distribución de Linux o Windows 10 de su respectiva Web a los pocos minutos se me corta Internet.

Según tengo visto la descarga suele llegar hasta los 1,6 MBs, que es el tope que tengo según mi compañía: Movistar.

El error que siempre me da es: fallo en el DNS.

Por probar ahora mismo no tengo puesto en mi sistema ninguna en particular,pero puse las de mi compañía,las de Google,etc…

Siempre con el mismo fallo.

Otra cosa interesante es que en mi ordenador tengo instalado tanto Windows 10 como Linux.

Cuando accedo a Linux no tengo este problema.

En mi casa tengo varios ordenadores y solo me pasa esto en mi ordenador de sobremesa.

En todos ellos ya intenté descargar el mismo archivo y otros similares. Solo tengo este problema en el de sobremesa.

Utilizo Windows 10 recién instalado en limpio y antes de instalar cualquier programa tengo el mismo problema.

El antivirus que utilizo es Windows Defender.

Tengo pasado este antivirus y no encuentra nada raro.

Tengo pasado Scaner Online de ESED, Malwarebytes, Adwcleaner,Cristal Security,Roguekiller,tdsskiller,Superantispyware y varios mas.

No me encuentran nada ninguno.

Lo que yo pensaba que era es el módem router. Al cambiarle por otro parece que el problema se había solucionado,pero ahora pasa de vez en cuando y no siempre.

Me podrían ayudar a solucionar o quizás darme alguna orientación para este problema.

Gracias anticipadas.

2

Hola @3patastienelgat

En tu próxima respuesta puedes ponernos los reportes de las herramientas que ejecutaste?

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Salu2.

6

Hola SanMar, ahora mismo estoy descargando una iso de 18GB a 1MBs y de momento no se corta. En caso que se cortara pasare otra vez todas las herramientas que pasé y te mandare todos los reportes. Gracias

Malwarebytes

www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 22/4/19
Hora del análisis: 15:39
Archivo de registro: 027c71c0-6504-11e9-a9c8-309c239ddb64.json

-Información del software-
Versión: 3.7.1.2839
Versión de los componentes: 1.0.563
Versión del paquete de actualización: 1.0.10272
Licencia: Prueba

-Información del sistema-
SO: Windows 10 (Build 17763.437)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-Q6IDI0J\jjap5

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 271708
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 1 min, 24 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 0
(No hay elementos maliciosos detectados)

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

Malwarebytes Anti-Rootkit BETA 1.10.3.1001

www.malwarebytes.org

Database version:
  main:    v2019.04.22.03
  rootkit: v2019.04.22.03

Windows 10 x64 NTFS
Internet Explorer 11.437.17763.0
jjap5 :: DESKTOP-Q6IDI0J [administrator]

22/04/2019 15:56:41
mbar-log-2019-04-22 (15-56-41).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 181858
Time elapsed: 4 minute(s), 25 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

-------------------------------

# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build:    04-04-2019
# Database: 2019-04-18.2 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    04-22-2019
# Duration: 00:00:13
# OS:       Windows 10 Home
# Scanned:  27356
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [1568 octets] - [20/04/2019 16:54:24]
AdwCleaner[C00].txt - [1680 octets] - [20/04/2019 16:56:17]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########
14 
RogueKiller Anti-Malware V13.1.9.0 (x64) [Mar 27 2019] (Gratuito) por Adlice Software
correo : https://adlice.com/contact/
Página Web : https://adlice.com/download/roguekiller/
Sistema Operativo : Windows 10 (10.0.17763) 64 bits
Iniciado en : Modo Normal
Usuario : jjap5 [Administrador]
Iniciado desde : C:\Users\jjap5\Desktop\Mantenimiento\Antibichos\RogueKiller_portable64.exe
Firmas : 20190326_132530, Conductor : Cargado
Modo : Análisis estandar, Análisis -- Fecha : 2019/04/22 16:10:48 (Duración : 00:02:39)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Procesos ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Procesar Módulos ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Servicios ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Tareas ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Registro ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ WMI ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Archivo Hosts ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Archivos ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Navegadores Web ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

BC2C2AC51AC5B346C526FD9DC213CD9BEFB57E480ACD88C06F0AA3D10 ] WinVerbs        C:\Windows\System32\drivers\winverbs.sys
16:15:38.0648 0x2144  WinVerbs - ok
16:15:38.0663 0x2144  [ 8412671AADE74110F385242CD2BAEA1D, 7E6B600398484A761D79078ED68F500F4376D421C9A36BE8F93F52E50499F775 ] wisvc           C:\Windows\system32\flightsettings.dll
16:15:38.0675 0x2144  wisvc - ok
16:15:38.0715 0x2144  [ 0FCFB1E16D9097934FB28E3543657405, E0EE3D20B1C1D5A9718EBF30B3F3212A00EC110DE0C92E8F8AAD8CA6322E88F5 ] WlanSvc         C:\Windows\System32\wlansvc.dll
16:15:38.0749 0x2144  WlanSvc - ok
16:15:38.0784 0x2144  [ 80118C73ED5E5FB800875585DE4370C3, 7DC96D6137732D23F6A83E14AC2311EE6A9FCBE5B851FE009AACCDBB7AAF2A97 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
16:15:38.0813 0x2144  wlidsvc - ok
16:15:38.0836 0x2144  [ C15F987B6DB39A33B67FCF4EF5CE8066, B1FE67CC466791E66D4CD792B0DC99A025C52C35429C847D083D6BA08AC5F031 ] wlpasvc         C:\Windows\System32\lpasvc.dll
16:15:38.0853 0x2144  wlpasvc - ok
16:15:38.0863 0x2144  [ 09C7796D31DCFF582064829CB59E35BF, C5DEFD31E5B10A6DCA8A7EC076727DC9444EA8EE8CAE9ED531C48AD97959A220 ] WManSvc         C:\Windows\system32\Windows.Management.Service.dll
16:15:38.0870 0x2144  WManSvc - ok
16:15:38.0873 0x2144  [ 8943C52909164A64195645C618C276BE, 8FF7B41A68CD4E2D6C5553E224C59C8F5A6C20B2508940D5F0E8E64EA85051AC ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
16:15:38.0874 0x2144  WmiAcpi - ok
16:15:38.0883 0x2144  [ D0A901EE141FE5AD78A12AE6A6378990, DBA5D56949BA383DAB17C3AB95EAC8B3F1B693729676D1A5637790F6E7F01ABD ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:15:38.0885 0x2144  wmiApSrv - ok
16:15:38.0889 0x2144  WMPNetworkSvc - ok
16:15:38.0896 0x2144  [ 7BDD8CD05D67CDC66E00D061F0F5F010, E80B5FF710AF9F6502822470A5FE6EED21889F039052B2E8CAC4866F74500838 ] Wof             C:\Windows\system32\drivers\Wof.sys
16:15:38.0899 0x2144  Wof - ok
16:15:38.0935 0x2144  [ 3EFA1DCA6A3731ECC84F024B0DF17CEB, 1C685B1A7CEB9DF4B747B80CB1D4EADDF2C70EB1861A2B5F6AA27813D66F5DCE ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
16:15:38.0964 0x2144  workfolderssvc - ok
16:15:38.0988 0x2144  [ 56A1AC9C2DB9B440743C7F13DCEDD4F1, E88B614633543E1929AC143FDE57240D7A0BA373E46B6494EA349C2B8A8BF293 ] WpcMonSvc       C:\Windows\System32\WpcDesktopMonSvc.dll
16:15:39.0008 0x2144  WpcMonSvc - ok
16:15:39.0014 0x2144  [ B4F8ED117D5120009972A470AF4FA323, 61BF1500B54145B7CFB8461078A14735DB617B7EDA82AA5250CA0D10865ED865 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:15:39.0017 0x2144  WPDBusEnum - ok
16:15:39.0021 0x2144  [ 4D5E154DE168E4A3B90F86A1966CE5D1, BA21BF38DD0AE9CC2017BC013053ABECB9CA3C20A6C39CDF8EE4B9C66E796438 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
16:15:39.0022 0x2144  WpdUpFltr - ok
16:15:39.0029 0x2144  [ 96142856700EC9BD02D2EA30208D1934, 1C8050DA53DFA42551BB4637632AA0110B06575CA1AAAFD94AE8AE37E815BE8E ] WpnService      C:\Windows\system32\WpnService.dll
16:15:39.0034 0x2144  WpnService - ok
16:15:39.0040 0x2144  [ 48FB3FFACCD2194CDD6B04CE84361C29, 3095991A288A977E203256B87AEDD6A4B3B54E4C0726FC47AD5BDD6DDBEB6151 ] WpnUserService  C:\Windows\System32\WpnUserService.dll
16:15:39.0043 0x2144  WpnUserService - ok
16:15:39.0049 0x2144  [ C4229EDA839055DAB514F74D3860C23E, 95DD0D2EC46BFDC1523B96396E8C85643871D5B14DDD384FF074E9317FF9FBBD ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:15:39.0050 0x2144  ws2ifsl - ok
16:15:39.0058 0x2144  [ ADAD15298AD0D593FAF61BB89D538D73, 8E636F9BA12D8E53D6214D7F84687694F32E2EFABC2E22818A59D6D656207E11 ] wscsvc          C:\Windows\System32\wscsvc.dll
16:15:39.0064 0x2144  wscsvc - ok
16:15:39.0067 0x2144  WSearch - ok
16:15:39.0114 0x2144  [ 7F229027E1F8BD02FAF7E64DCB8F7DDC, B0AAFBD4BDFF8B3CEF3BB49CF9792A670C1576DB7F07499D2E1707C1EAF5CCF9 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:15:39.0153 0x2144  wuauserv - ok
16:15:39.0161 0x2144  [ 5A632AFC20B5BCF9D33A60AA3F2B85A6, 65F999083C7B78D0AA753B882A50D9EEFEA6A29D5A2EB7882F8B5177B47D1935 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:15:39.0163 0x2144  WudfPf - ok
16:15:39.0170 0x2144  [ 6C3D8C8C991B62588C52336C5F60423C, 7388249315DFFF87045E55CE79CA1764E5E305C6F0418BD5077957B2E32F5569 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
16:15:39.0174 0x2144  WUDFRd - ok
16:15:39.0181 0x2144  [ 6C3D8C8C991B62588C52336C5F60423C, 7388249315DFFF87045E55CE79CA1764E5E305C6F0418BD5077957B2E32F5569 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
16:15:39.0185 0x2144  WUDFWpdFs - ok
16:15:39.0213 0x2144  [ 3D09A46ED76C076CA6B10DAEF8395845, A4EFA62651733ED50DC9AC2E407B3D0A544B4A51F1979CA2DB09397ED2F864F1 ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:15:39.0237 0x2144  WwanSvc - ok
16:15:39.0256 0x2144  [ 5F69A7DE728668CD6A80FCB0EB3B7EB2, D2A1CAE8B7D8B4B89F85023ADD16F00D7CCBC7B936CBF958073C329CF9732E28 ] XblAuthManager  C:\Windows\System32\XblAuthManager.dll
16:15:39.0271 0x2144  XblAuthManager - ok
16:15:39.0293 0x2144  [ 9AD74ADD767D1FF755F52E4F5778C641, 2FB3187FA1BE7B10C3E832D913267513F5616C4ADAE7DD466C9393EF8B5EE92E ] XblGameSave     C:\Windows\System32\XblGameSave.dll
16:15:39.0310 0x2144  XblGameSave - ok
16:15:39.0320 0x2144  [ A56ABFB5B8FC315A63B599B2273B7444, 576CDEF854DAB6C459E07439626074E1636F4AC0AA382EB299CB995356A56439 ] xboxgip         C:\Windows\System32\drivers\xboxgip.sys
16:15:39.0324 0x2144  xboxgip - ok
16:15:39.0329 0x2144  [ 9266191829E944E4E7F474C9A8FC3947, 4B7D64E596BFE2FCCA65FCFB4F024E68A9966D049530B33E75775ED9433BDE48 ] XboxGipSvc      C:\Windows\System32\XboxGipSvc.dll
16:15:39.0332 0x2144  XboxGipSvc - ok
16:15:39.0352 0x2144  [ 42DCAA6173FC1447A298637C16C973FC, 48BAA58EBC579812C3C6B1C1AD9DE4193B24167D3A708E96C49ADFFC58566568 ] XboxNetApiSvc   C:\Windows\system32\XboxNetApiSvc.dll
16:15:39.0369 0x2144  XboxNetApiSvc - ok
16:15:39.0374 0x2144  [ 30FE2A17957C4D5466FBE684F83730E6, 6FE0736320A3E44DA654B37D157DE0E04545288ABBD1E8DE0AD56D8558F8847E ] xinputhid       C:\Windows\System32\drivers\xinputhid.sys
16:15:39.0375 0x2144  xinputhid - ok
16:15:39.0391 0x2144  ================ Scan global ===============================
16:15:39.0394 0x2144  [ DBB2180297DAE7D0FC57EECACB2029F4, 5EAEC2E0162CC8A83848D8D8EA6121BD5B3FF4EEE0F458171C2DB0D78FE0F1DE ] C:\Windows\system32\basesrv.dll
16:15:39.0398 0x2144  [ BD37FD9CEA66D6649333997383DBB829, 601B32297E6159FC82A93633A93CE240A1D20A06CB22AF8E332E3DEC6513B65F ] C:\Windows\system32\winsrv.dll
16:15:39.0403 0x2144  [ B08257DDEACDEFFFCF91A743795CBF11, 6935D53B5F05833E76F87CA3A2A5C5B5D0EE05DD7953487492C8EDCC9E5F6F8F ] C:\Windows\system32\sxssrv.dll
16:15:39.0415 0x2144  [ 7A20DA1F1406492A70E9C8243634467B, BF74B5707C2F035DA0A348658A60E22C32D0F57340826FC4EFCBA3B41EA9C8F3 ] C:\Windows\system32\services.exe
16:15:39.0425 0x2144  [ Global ] - ok
16:15:39.0426 0x2144  ================ Scan MBR ==================================
16:15:39.0447 0x2144  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
16:15:39.0454 0x2144  \Device\Harddisk0\DR0 - ok
16:15:39.0456 0x2144  [ 6EE793E7E9B1E106A0C0D0FB56385BC3 ] \Device\Harddisk1\DR1
16:15:39.0476 0x2144  \Device\Harddisk1\DR1 - ok
16:15:39.0479 0x2144  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
16:15:39.0484 0x2144  \Device\Harddisk2\DR2 - ok
16:15:39.0487 0x2144  [ E5FA06ACA0D60BA9C870D0EF3D9898C9 ] \Device\Harddisk3\DR3
16:15:39.0490 0x2144  \Device\Harddisk3\DR3 - ok
16:15:39.0490 0x2144  ================ Scan VBR ==================================
16:15:39.0492 0x2144  [ 783B8C8B021967F9FDD377CE090AA7A1 ] \Device\Harddisk0\DR0\Partition1
16:15:39.0493 0x2144  \Device\Harddisk0\DR0\Partition1 - ok
16:15:39.0495 0x2144  [ 89BFBAE6C7D2D4DB87597ACB90C15682 ] \Device\Harddisk1\DR1\Partition1
16:15:39.0496 0x2144  \Device\Harddisk1\DR1\Partition1 - ok
16:15:39.0498 0x2144  [ 1375F46F00AACD0F260C0A3EAFA92EFE ] \Device\Harddisk1\DR1\Partition2
16:15:39.0498 0x2144  \Device\Harddisk1\DR1\Partition2 - ok
16:15:39.0518 0x2144  [ 04D123F6F25F3DE2AB3899823B7CEECA ] \Device\Harddisk1\DR1\Partition3
16:15:39.0518 0x2144  \Device\Harddisk1\DR1\Partition3 - ok
16:15:39.0533 0x2144  [ 83E31C22D00BBA99B8FE986370D88B9F ] \Device\Harddisk1\DR1\Partition4
16:15:39.0534 0x2144  \Device\Harddisk1\DR1\Partition4 - ok
16:15:39.0550 0x2144  [ 276C84EA1314568AB2DF398B9779BDC0 ] \Device\Harddisk1\DR1\Partition5
16:15:39.0551 0x2144  \Device\Harddisk1\DR1\Partition5 - ok
16:15:39.0552 0x2144  [ 0442EEC53791D3F89B6F06EBDE1862BD ] \Device\Harddisk2\DR2\Partition1
16:15:39.0554 0x2144  \Device\Harddisk2\DR2\Partition1 - ok
16:15:39.0555 0x2144  [ 2431460843B437FB9267BC952CD6AC2E ] \Device\Harddisk2\DR2\Partition2
16:15:39.0556 0x2144  \Device\Harddisk2\DR2\Partition2 - ok
16:15:39.0557 0x2144  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk2\DR2\Partition3
16:15:39.0558 0x2144  \Device\Harddisk2\DR2\Partition3 - ok
16:15:39.0560 0x2144  [ 0429B9DB2A9D7D037FC944219B7C3941 ] \Device\Harddisk2\DR2\Partition4
16:15:39.0561 0x2144  \Device\Harddisk2\DR2\Partition4 - ok
16:15:39.0563 0x2144  [ E704E8878DD96EF05D44DE228FC65DD2 ] \Device\Harddisk3\DR3\Partition1
16:15:39.0564 0x2144  \Device\Harddisk3\DR3\Partition1 - ok
16:15:39.0564 0x2144  ================ Scan generic autorun ======================
16:15:39.0567 0x2144  [ 09F3F2298DDA6EBB57B12C530D35C52C, 48F852164EF4747FCDDFF463034CAD33167E341D241536B122AE74FC8841C941 ] C:\Windows\system32\SecurityHealthSystray.exe
16:15:39.0569 0x2144  SecurityHealth - ok
16:15:39.0696 0x2144  [ 6BEBBD3706182C8186796DFDC7F8E702, C12FC56413E549BDCD6329AF482EF3193DDFB79EAD117C180A895C84C0CE752E ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
16:15:39.0804 0x2144  RTHDVCPL - ok
16:15:39.0822 0x2144  [ AD351B67BD2B89264586924D3BAC007A, 5E98049F1AF70235D1256C8A5B03C00643F4FA9CA95753795BDBA545417F6D46 ] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
16:15:39.0829 0x2144  Acronis Scheduler2 Service - ok
16:15:39.0838 0x2144  [ 5A78A72CD94B32A9A17E4F675EDAD831, 7BCCFA8F83AE00A5018A3503C8307DC875415540E647A70AF8002406E20779C3 ] C:\Program Files\TMeter\trafmonitor.exe
16:15:39.0845 0x2144  TrafMonitor - ok
16:15:39.0909 0x2144  [ 8D3304D41CD239A2A1BB56A178A51D04, C664620A436FC54701AEBF3A224F8E5EAEE4805A6BF4367E0976B5F3F42AD786 ] C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
16:15:39.0963 0x2144  Dropbox - ok
16:15:39.0968 0x2144  Live Update - ok
16:15:39.0985 0x2144  [ D5DDC3EC0BF960389E9A964D7CC8CC30, 02C06CF596B33B1883C371EA9B61B1EC41319EFF853A54864329129699534769 ] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe
16:15:39.0995 0x2144  StartCCC - ok
16:15:40.0003 0x2144  [ FF3CE4EDC1BEC7C8AD3CC3ABCCCF621C, B2E35EF29A5D8E7A6E7633ACD27624EBC3A9CA307780B593876B45033E31B7A2 ] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
16:15:40.0008 0x2144  AcronisTibMounterMonitor - ok
16:15:40.0075 0x2144  [ 2F829445BC4B888DF7A03483236867BB, BA95411741C27301146868D5960649F508908A264C57FDC3CB779A33EE62D81D ] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
16:15:40.0132 0x2144  TrueImageMonitor.exe - ok
16:15:40.0147 0x2144  [ BAC15D03EFC8249216D1D610F3B1E67F, 34B5439ACF8DE5F20F988177180EF8BD124A4A96CCB908BE9B46890E98E1A9E9 ] C:\Program Files (x86)\USB Disk Security\USBGuard.exe
16:15:40.0156 0x2144  USB Security - ok
16:15:40.0178 0x2144  OneDriveSetup - ok
16:15:40.0182 0x2144  OneDriveSetup - ok
16:15:40.0185 0x2144  CCleaner Smart Cleaning - ok
16:15:40.0190 0x2144  Spotify - ok
16:15:40.0193 0x2144  Waiting for KSN requests completion. In queue: 155
16:15:41.0211 0x2144  AV detected via SS2: Windows Defender, windowsdefender:// (  ), 0x61100 ( enabled : updated )
16:15:41.0216 0x2144  Win FW state via NFP2: enabled ( trusted )
16:15:41.0475 0x2144  ============================================================
16:15:41.0475 0x2144  Scan finished
16:15:41.0475 0x2144  ============================================================
16:15:41.0484 0x150c  Detected object count: 0
16:15:41.0484 0x150c  Actual detected object count: 0

EST-NOD32 22/04/2019 17:27:46 Files scanned: 182237 Infected files: 0 Cleaned threats: 0 Total scan time: 00:25:37 Scan status: Finished

Zemana Antimalware
### Scan Information

|**Product Name**|:|Zemana AntiMalware|
| --- | --- | --- |
|**Scan Status**|:|Completed|
|**Scan Date**|:|4/22/2019 6:15:58 PM|
|**Scan Type**|:|Smart Scan|
|**Scan Duration**|:|00:00:13|
|**Scanned Objects**|:|1769|
|**Detected Objects**|:|1|
|**Excluded Objects**|:|0|
|**Auto Upload**|:|True|
|**OS**|:|Windows 10 x64|
|**Processor**|:|8X AMD Ryzen 5 2400G with Radeon Vega Graphics|
|**BIOS Mode**|:|UEFI|
|**Domain Info**|:|WORKGROUP,False,NetSetupWorkgroupName|
|**CUID**|:|142856CC1BDF12AFD4AD06|

### Detections

|**MD5**|:||
| --- | --- | --- |
|**Status**|:|Scanned|
|**Object**|:|http://www.adslzone.net/|
|**Publisher**|:||
|**Size**|:|0|
|**Detection**|:|Hijack:Browser/FirefoxHomepage|
|**Action**|:|Delete|
|-----------------------------------------------------------------------|
15

Hola @3patastienelgat

No comentaste que paso pero supongo que te corto las descargas.

1.- Inicia tu ordenador en Modo Seguro con Red, e intentar descargar algo de mas de un Giga, nos comentas que pasa.

2.- Para eliminar las herramientas utilizadas ya en Modo Normal:

Descargas >> Delfix, a tu escritorio.

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7 /8 /10,presiona clic derecho y selecciona >> “Ejecutar como Administrador”)
  • Marca las casilla **Remove disinfection tools **
  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), lo pegas en tu próxima respuesta.

3.- Luego realiza lo siguiente:

Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

4.- Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. >> Como saber si mi Windows es de 32 o 64 bits.?

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Guía: Como Ejecutar FRST

5.- En tu próxima respuesta, pega los reportes generados.

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Salu2.

16

Hola, noticias frescas, estoy en modo seguro con red y descargado una iso de ubuntu de casi 2GB para ver que tal y no se me cortó Internet. Seguidamente me pondre en modo normal y pasare esos programas que me decis para mandaros los reportes necesarios. A ver si tengo algo de suerte y sigue asi de bien esto.

17 
# DelFix v1.013 - Logfile created 23/04/2019 at 11:20:35
# Updated 17/04/2016 by Xplode
# Username : jjap5 - DESKTOP-Q6IDI0J
# Operating System : Windows 10 Home  (64 bits)

~ Removing disinfection tools ...

Deleted : C:\AdwCleaner
Deleted : C:\InfoSat.txt
Deleted : C:\TDSSKiller.3.1.0.28_22.04.2019_16.15.09_log.txt
Deleted : C:\Users\jjap5\Desktop\AdwCleaner[S01].txt
Deleted : C:\Users\jjap5\Desktop\RogueKiller.txt
Deleted : C:\Users\jjap5\Desktop\TDSSKILLER.txt

########## - EOF - ##########
18 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22.04.2019
Ran by jjap5 (23-04-2019 11:26:37)
Running from C:\Users\jjap5\Desktop\Scannear
Windows 10 Home Version 1809 17763.437 (X64) (2019-04-16 08:48:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-1819132632-2593063688-1292532904-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1819132632-2593063688-1292532904-503 - Limited - Disabled)
Invitado (S-1-5-21-1819132632-2593063688-1292532904-501 - Limited - Disabled)
jjap5 (S-1-5-21-1819132632-2593063688-1292532904-1001 - Administrator - Enabled) => C:\Users\jjap5
WDAGUtilityAccount (S-1-5-21-1819132632-2593063688-1292532904-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acronis True Image (HKLM-x32\...\{9BB8598B-C237-446F-AD4E-8F0FA6A93D10}) (Version: 22.6.15470 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{9BB8598B-C237-446F-AD4E-8F0FA6A93D10}Visible) (Version: 22.6.15470 - Acronis)
AMD Catalyst Install Manager (HKLM\...\{66AFB595-BC05-2913-7696-6D58F9B733E1}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
Balanced (HKLM-x32\...\{EFD0705E-598B-46D4-8D5B-4539431764B8}) (Version: 2.02.0000 - Nombre de su organización) Hidden
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 73.0.62.51 - Los creadores de Brave)
CCEnhancer versión 4.5.4 (HKLM-x32\...\{D621766C-B5EC-42BD-9E10-774C02C17B44}_is1) (Version: 4.5.4 - SingularLabs)
CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
Combined Community Codec Pack 64bit 2015-10-18 (HKLM\...\Combined Community Codec Pack 64bit_is1) (Version: 2015.10.19.0 - CCCP Project)
CPUID CPU-Z MSI 1.81.1 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 1.81.1 - CPUID, Inc.)
CrystalDiskInfo 8.0.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 8.0.0 - Crystal Dew World)
CrystalDiskMark 6.0.2 (HKLM\...\CrystalDiskMark6_is1) (Version: 6.0.2 - Crystal Dew World)
Dropbox (HKLM-x32\...\Dropbox) (Version: 70.4.93 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.189.1 - Dropbox, Inc.) Hidden
EaseUS Partition Master 13.0 (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version:  - EaseUS)
FormatFactory 4.6.0.1 (HKLM-x32\...\FormatFactory) (Version: 4.6.0.1 - Free Time)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.5.0.20721 - Foxit Software Inc.)
Galaxy Strike (HKLM-x32\...\Galaxy Strike_is1) (Version: 1.0 - GameTop Pte. Ltd.)
Google Earth Pro (HKLM-x32\...\{9D524A1E-F2FC-444D-B12A-7592CEB56EB5}) (Version: 7.3.2.5776 - Google)
Hauppauge English Help Files and Resources (HKLM-x32\...\Hauppauge English Help Files and Resources) (Version:  - )
Hauppauge WinTV (HKLM-x32\...\Hauppauge WinTV) (Version:  - )
Hauppauge WinTV Radio (HKLM-x32\...\Hauppauge WinTV Radio) (Version:  - )
Hauppauge WinTV Scheduler (HKLM-x32\...\Hauppauge WinTV Scheduler) (Version:  - )
Hauppauge WinTV TV Services (HKLM-x32\...\Hauppauge WinTV TV Services) (Version:  - )
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
InterVideo FilterSDK for Hauppauge (HKLM-x32\...\{2227E1FA-01F5-483C-AB0E-2A308E900B3D}) (Version:  - InterVideo Inc.)
K-Lite Codec Pack 14.8.8 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.8.8 - KLCP)
LibreOffice 6.2.2.2 (HKLM\...\{7B486711-D8E3-41F4-A518-D709CD62C3D1}) (Version: 6.2.2.2 - The Document Foundation)
Microsoft OneDrive (HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\OneDriveSetup.exe) (Version: 19.043.0304.0007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
Motorola Driver Installation 4.6.5 (HKLM\...\{D2DEDB95-B070-4180-97F3-2A75E8FB03CC}) (Version: 4.6.5 - Motorola Inc.)
Mozilla Firefox 66.0.3 (x64 es-ES) (HKLM\...\Mozilla Firefox 66.0.3 (x64 es-ES)) (Version: 66.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.3 - Mozilla)
Mozilla Thunderbird 60.6.1 (x86 es-ES) (HKLM-x32\...\Mozilla Thunderbird 60.6.1 (x86 es-ES)) (Version: 60.6.1 - Mozilla)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.54 - MSI)
OEM Application Profile (HKLM-x32\...\{7F5DCD33-1039-C3B2-9538-B645B65BBA63}) (Version: 1.00.0000 - Nombre de su organización) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenJDK JDK with Hotspot 8.0.202.8 (x86) (HKLM-x32\...\AdoptOpenJDK.jdk8u202-b08) (Version: 8.0.202.8 - AdoptOpenJDK)
Oracle VM VirtualBox 6.0.6 (HKLM\...\{6C89B405-9910-446E-A6A9-7B15A09513D3}) (Version: 6.0.6 - Oracle Corporation)
PeaZip 6.7.2 (WIN64) (HKLM\...\{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version: 6.7.2 - Giorgio Tani)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.31.828.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8302 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.6 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.6 - VS Revo Group, Ltd.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.3.0.1910 - Samsung Electronics)
Samsung NVM Express Driver (HKLM-x32\...\{bfb0503a-76b9-415a-b0a3-dd55d2a01ebe}) (Version: 3.0.0.1802 - Samsung Electronics)
Samsung NVM Express Driver 3.0.0.1802 (HKLM\...\{03FE2BA9-9538-4195-83E3-09B43901141E}) (Version: 3.0.0.1802 - Samsung Electronics Co., Ltd) Hidden
SmartDefender (HKLM-x32\...\{A58CAEF6-D78F-4E0C-8598-ECD5901F4AC2}) (Version: 1.0.0.0 - Vondos Media GmbH)
Software Update Pro 5.45.0.43 (HKLM-x32\...\Software Update Pro) (Version: 5.45.0.43 - Glarysoft Ltd)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
Spotify (HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\Spotify) (Version: 1.1.4.197.g92d52c4f - Spotify AB)
SpywareBlaster 5.5 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.5.0 - BrightFort LLC)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1038 - SUPERAntiSpyware.com)
TeraCopy version 3.26 (HKLM\...\TeraCopy_is1) (Version: 3.26 - Code Sector)
USB Disk Security (HKLM-x32\...\USB Disk Security_is1) (Version:  - Zbshareware Lab)
WhatsApp (HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\WhatsApp) (Version: 0.3.2848 - WhatsApp)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [     AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-02-01] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [     AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-02-01] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [     AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-02-01] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [     AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-02-01] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_105.dll [2019-04-09] (Free Time) [File not signed]
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2019-03-28] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers2: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_105.dll [2019-04-09] (Free Time) [File not signed]
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers4: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2019-03-28] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2019-04-09 17:19 - 2019-04-09 17:19 - 000300032 _____ (Free Time) [File not signed] C:\Program Files (x86)\FormatFactory\ShellEx64_105.dll
2015-08-04 00:25 - 2015-08-04 00:25 - 000344064 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
2019-04-16 15:15 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\Live Update\unrar.dll
2019-04-16 17:31 - 2015-01-31 10:08 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\USB Disk Security\MFC80U.DLL
2019-04-16 17:31 - 2015-01-31 10:08 - 006062080 _____ (BCGSoft Ltd) [File not signed] C:\Program Files (x86)\USB Disk Security\BCGCBPRO1500u80.dll
2019-04-16 17:31 - 2013-06-25 11:03 - 000036864 _____ () [File not signed] C:\Program Files (x86)\USB Disk Security\locales\spanish.dll
2019-04-16 17:31 - 2010-12-08 15:21 - 000753664 _____ (BCGSoft Co Ltd) [File not signed] C:\Program Files (x86)\USB Disk Security\BCGPStyle2010Blue150.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [125]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\1001movie.com -> 1001movie.com

There are 6091 more sites.


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 09:31 - 2019-04-20 18:57 - 000000027 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1       localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\AdoptOpenJDK\jdk8u202-b08\bin;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\FileProtector\;C:\Program Files (x86)\Common Files\Acronis\FileProtector64\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jjap5\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: )
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "StartCCC"
HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "Live Update"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKLM\...\StartupApproved\Run32: => "hcw88prx.ax"
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\StartupApproved\Run: => "Spotify"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{92303559-0F80-4F54-9521-638236797C4E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{63742C5B-997B-4517-BA69-B0ACD158A7C1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{3D9EDAEE-F494-4720-B584-4602837FDE82}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{12A419FD-1805-420E-838B-4DF6A93646FE}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0A337CBD-E945-4787-9775-2A0B8CD67C8D}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{E2EA1778-49F1-4AD0-8B5B-8F8114DB6F22}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> )
FirewallRules: [{884360E7-6AC4-4D35-9F27-B95B848E9856}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{4550B349-5CB1-4668-B459-E6DA6565D5AB}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{74C502AE-46B5-475E-B6D0-BF5C1C37D7CD}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{F1B67533-CBC0-4FC1-833B-56E0369C4163}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{0310172C-7DC5-4DEB-9A32-6724DEC17E88}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{5E3FFC8D-8E83-41AA-907E-66B9D452AAFB}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{86D751B4-C48B-4A4D-8500-DC8C2303F280}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{7622DAB1-5CE5-4243-9096-F641617124C6}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> )
FirewallRules: [{CD1B3E27-6E90-4642-A396-8BCC7FDC68CC}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{B1652697-2241-40AD-95DE-D73A60544B70}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> )
FirewallRules: [{9BA7F877-4B1F-4658-A2CE-80606A00038C}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{A00FF661-2502-43BA-8FF1-DD9FC74428D2}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{8AE31D10-19EC-4FDA-816E-4726BF982C8B}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{7C4B7C1C-D714-41E6-826B-D6477B4919A0}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{C78DFBA0-0787-45C0-98D7-127CC383E362}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{48844003-070B-4DDC-B95E-1E05DB43D74C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{39CD94F2-7582-4196-A549-3D39D78A0E67}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{BE871873-254D-4316-A648-2A73EBAC1D14}C:\program files (x86)\glarysoft\software update pro\softwareupdatepro.exe] => (Allow) C:\program files (x86)\glarysoft\software update pro\softwareupdatepro.exe (Glarysoft LTD -> Glarysoft Ltd)
FirewallRules: [UDP Query User{69AE2A65-7A23-425D-B449-28EEC53323F3}C:\program files (x86)\glarysoft\software update pro\softwareupdatepro.exe] => (Allow) C:\program files (x86)\glarysoft\software update pro\softwareupdatepro.exe (Glarysoft LTD -> Glarysoft Ltd)
FirewallRules: [{AE4BB299-0E3C-432D-BAB2-51FFE430CED2}] => (Allow) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)

==================== Restore Points =========================

19-04-2019 12:12:59 Revo Uninstaller's restore point - Bonjour
19-04-2019 12:13:09 Removed Bonjour
19-04-2019 12:14:42 Revo Uninstaller's restore point - Tiny Tales - Heart of the Forest EC 1.00
19-04-2019 12:16:45 Revo Uninstaller's restore point - WinPcap 4.1.2
19-04-2019 14:07:56 Revo Uninstaller's restore point - Microsoft Edge Dev
20-04-2019 19:44:06 Revo Uninstaller's restore point - Freemake Video Converter versión 4.1.10
20-04-2019 19:45:20 Revo Uninstaller's restore point - aTube Catcher

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/23/2019 10:52:07 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/23/2019 10:46:07 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/23/2019 10:46:07 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/23/2019 10:45:53 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: No se pudo crear el punto de restauración (proceso = C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe" ; descripción = Revo Uninstaller's restore point - TMeter 18.0.875; error = 0x8007043c).

Error: (04/23/2019 10:44:56 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: No se pudo crear el punto de restauración (proceso = C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe" ; descripción = Revo Uninstaller's restore point - Zemana AntiMalware versión 3.1.66; error = 0x8007043c).

Error: (04/23/2019 10:44:07 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: No se puede abrir el objeto de rendimiento del servicio del servidor. Los primeros cuatro bytes (DWORD) de la sección de datos contienen el código de estado.

Error: (04/23/2019 10:44:06 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: No se pudo crear el punto de restauración (proceso = C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe" ; descripción = Revo Uninstaller's restore point - Microsoft Edge Dev; error = 0x8007043c).

Error: (04/23/2019 10:43:45 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: No se pudo crear el punto de restauración (proceso = C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe" ; descripción = Revo Uninstaller's restore point - Malwarebytes versión 3.7.1.2839; error = 0x8007043c).


System errors:
=============
Error: (04/23/2019 11:18:18 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
Windows.SecurityCenter.SecurityAppBroker
 y APPID 
No disponible
 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (04/23/2019 11:18:18 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
Windows.SecurityCenter.WscDataProtection
 y APPID 
No disponible
 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (04/23/2019 11:18:18 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos específico de la aplicación no concede el permiso Iniciar Local para la aplicación de servidor COM con CLSID 
Windows.SecurityCenter.WscBrokerManager
 y APPID 
No disponible
 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (04/23/2019 11:16:09 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Error en la inicialización del archivo de volcado

Error: (04/23/2019 11:15:48 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-Q6IDI0J)
Description: Error de DCOM "1084" al intentar iniciar el servicio camsvc con argumentos "No disponible" para ejecutar el servidor:
Windows.Internal.CapabilityAccess.Management.CapabilityConsentManager

Error: (04/23/2019 11:15:48 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-Q6IDI0J)
Description: Error de DCOM "1084" al intentar iniciar el servicio camsvc con argumentos "No disponible" para ejecutar el servidor:
Windows.Internal.CapabilityAccess.Management.CapabilityConsentManager

Error: (04/23/2019 11:11:29 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-Q6IDI0J)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (04/23/2019 11:10:13 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-Q6IDI0J)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}


Windows Defender:
===================================
Date: 2019-04-20 18:27:09.978
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Unwaders.A!ml&threatid=242872&enterprise=0
Nombre: Program:Win32/Unwaders.A!ml
Id.: 242872
Gravedad: Grave
Categoría: Software potencialmente no deseado
Ruta de acceso: file:_C:\Users\jjap5\Desktop\Scannear\EliStarA.exe
Origen de detección: Equipo local
Tipo de detección: FastPath
Fuente de detección: Protección en tiempo real
Usuario: DESKTOP-Q6IDI0J\jjap5
Nombre de proceso: C:\Users\jjap5\Desktop\Mantenimiento\Antibichos\Crystal Security.exe
Versión de firma: AV: 1.291.2350.0, AS: 1.291.2350.0, NIS: 1.291.2350.0
Versión de motor: AM: 1.1.15800.1, NIS: 1.1.15800.1

Date: 2019-04-20 18:27:02.945
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Unwaders.A!ml&threatid=242872&enterprise=0
Nombre: Program:Win32/Unwaders.A!ml
Id.: 242872
Gravedad: Grave
Categoría: Software potencialmente no deseado
Ruta de acceso: file:_C:\Users\jjap5\Desktop\Scannear\EliStarA.exe
Origen de detección: Equipo local
Tipo de detección: FastPath
Fuente de detección: Protección en tiempo real
Usuario: DESKTOP-Q6IDI0J\jjap5
Nombre de proceso: C:\Users\jjap5\Desktop\Mantenimiento\Antibichos\Crystal Security.exe
Versión de firma: AV: 1.291.2350.0, AS: 1.291.2350.0, NIS: 1.291.2350.0
Versión de motor: AM: 1.1.15800.1, NIS: 1.1.15800.1

Date: 2019-04-20 18:26:48.944
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Unwaders.A!ml&threatid=242872&enterprise=0
Nombre: Program:Win32/Unwaders.A!ml
Id.: 242872
Gravedad: Grave
Categoría: Software potencialmente no deseado
Ruta de acceso: file:_C:\Users\jjap5\Desktop\Scannear\EliStarA.exe
Origen de detección: Equipo local
Tipo de detección: FastPath
Fuente de detección: Protección en tiempo real
Usuario: DESKTOP-Q6IDI0J\jjap5
Nombre de proceso: C:\Users\jjap5\Desktop\Mantenimiento\Antibichos\Crystal Security.exe
Versión de firma: AV: 1.291.2350.0, AS: 1.291.2350.0, NIS: 1.291.2350.0
Versión de motor: AM: 1.1.15800.1, NIS: 1.1.15800.1

Date: 2019-04-20 17:16:25.646
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {13F74319-AB3E-4E09-94D2-2DC7AE070AE0}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-20 17:10:24.231
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {DA3298F5-593D-4714-9D2B-4AF68809A63E}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-23 10:51:26.920
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.293.6.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.15900.4
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 

Date: 2019-04-23 10:41:25.708
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2019-04-20 18:55:49.726
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. M.F0 01/23/2019
Motherboard: Micro-Star International Co., Ltd. B350 GAMING PLUS (MS-7A34)
Processor: AMD Ryzen 5 2400G with Radeon Vega Graphics 
Percentage of memory in use: 18%
Total physical RAM: 16331.73 MB
Available physical RAM: 13233.75 MB
Total Virtual: 16331.73 MB
Available Virtual: 13272.39 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.28 GB) (Free:204.13 GB) NTFS
Drive d: (Copias de seguridad) (Fixed) (Total:298.09 GB) (Free:250.96 GB) NTFS
Drive e: (DATOS) (Fixed) (Total:221.61 GB) (Free:123.09 GB) NTFS

\\?\Volume{a98e2372-5b4b-4df1-9331-1b3d077d66ae}\ (Recuperación) (Fixed) (Total:0.49 GB) (Free:0.09 GB) NTFS
\\?\Volume{af023ca6-9dbc-4f08-a76b-0a8b66043d82}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: 024B3496)

Partition: GPT.

========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: B795A3C5)

Partition: GPT.

========================================================
Disk: 2 (Size: 232.9 GB) (Disk ID: 07321E63)

Partition: GPT.

==================== End of Addition.txt ============================
19 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22.04.2019
Ran by jjap5 (administrator) on DESKTOP-Q6IDI0J (Micro-Star International Co., Ltd. MS-7A34) (23-04-2019 11:26:00)
Running from C:\Users\jjap5\Desktop\Scannear
Loaded Profiles: jjap5 (Available Profiles: jjap5)
Platform: Windows 10 Home Version 1809 17763.437 (X64) Language: Español (España, internacional)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Code Sector -> Code Sector) C:\Program Files\TeraCopy\TeraCopyService.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1904.1-0\MsMpEng.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19032.731.0_x64__8wekyb3d8bbwe\YourPhone.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Lanzhou Itanium Software Technology Co., Ltd. -> Zbshareware Lab) C:\Program Files (x86)\USB Disk Security\USBGuard.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235936 2017-11-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [585336 2019-02-01] (Acronis International GmbH -> )
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [4426560 2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26254008 2019-02-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2019-02-01] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [4848280 2019-02-01] (Acronis International GmbH -> )
HKLM-x32\...\Run: [USB Security] => C:\Program Files (x86)\USB Disk Security\USBGuard.exe [695528 2015-01-31] (Lanzhou Itanium Software Technology Co., Ltd. -> Zbshareware Lab)
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\...\Run: [Spotify] => C:\Users\jjap5\AppData\Roaming\Spotify\Spotify.exe [25901288 2019-04-16] (Spotify AB -> Spotify Ltd)
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-19] (Fox Magic Software) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\73.0.62.51\Installer\chrmstp.exe [2019-04-16] (Brave Software, Inc.) [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {056E4A8C-977F-4CB9-8B18-78194FB75DDC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-04-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {15FF5E75-4A8C-4B95-B0F6-1D0A094BEC20} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {16C32D7E-C1DE-4318-963C-F68A6378B52A} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1179648 2019-03-22] () [File not signed]
Task: {34443FAF-B79B-4A18-AA4F-1BE362F2C806} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-04-16] (Brave Software, Inc. -> BraveSoftware Inc.) <==== ATTENTION
Task: {40B7E046-D2A2-44D7-A5A5-B6C1AE0630CA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-04-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {51481FAF-A96C-44AD-9765-2A38369AEF55} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5D1C83FA-F7CA-4C91-B0CE-BB552D2A1537} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\RadeonInstaller.exe [29305736 2018-10-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {6CB403A8-026E-45ED-9C3B-B7F9378B1A45} - System32\Tasks\AMHelper => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe
Task: {7A9CF946-A10A-4EAB-AA10-AE0342E92611} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [1146048 2018-10-05] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.)
Task: {99102FA6-0A49-4D0C-88E3-42E500665A3F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-04-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {A1CC1538-481A-4730-8312-FEBA1D18B32A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-04-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {B116774F-3D64-4B17-AE16-8FB92A2C7912} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <==== ATTENTION
Task: {BDFA3744-60A2-42F4-B4A9-D7C06E037AD4} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-04-16] (Brave Software, Inc. -> BraveSoftware Inc.) <==== ATTENTION
Task: {C7F1C1DF-DDF7-446A-81AF-2ADB5D036004} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E44078EA-F6E8-4C7C-BAB2-4A88118C96B0} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {F1E47C07-BA06-473E-AAA9-8122181767E2} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{10372de3-b85a-4485-95e4-5c68f3c2a721}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{5ef195ef-1513-43ac-b7e7-ed9ed2910979}: [DhcpNameServer] 80.58.61.250 80.58.61.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

FireFox:
========
FF DefaultProfile: epj57wvx.default
FF ProfilePath: C:\Users\jjap5\AppData\Roaming\Mozilla\Firefox\Profiles\epj57wvx.default [2019-04-23]
FF user.js: detected! => C:\Users\jjap5\AppData\Roaming\Mozilla\Firefox\Profiles\epj57wvx.default\user.js [2019-04-16]
FF Homepage: Mozilla\Firefox\Profiles\epj57wvx.default -> hxxp://www.adslzone.net/
FF Extension: (uBlock Origin) - C:\Users\jjap5\AppData\Roaming\Mozilla\Firefox\Profiles\epj57wvx.default\Extensions\[email protected] [2019-04-16]
FF Extension: (Malwarebytes Browser Extension) - C:\Users\jjap5\AppData\Roaming\Mozilla\Firefox\Profiles\epj57wvx.default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2019-04-16]
FF Extension: (Video DownloadHelper) - C:\Users\jjap5\AppData\Roaming\Mozilla\Firefox\Profiles\epj57wvx.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-04-16]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-03-28] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-03-28] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-03-28] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-03-28] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-04-16] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-04-16] (Brave Software, Inc. -> BraveSoftware Inc.)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [2725920 2019-02-01] (Acronis International GmbH -> Acronis International GmbH)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [255512 2015-08-09] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [File not signed]
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-04-16] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-04-16] (Brave Software, Inc. -> BraveSoftware Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-16] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-16] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\System32\DbxSvc.exe [51024 2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
S3 HauppaugeTVServer; C:\Program Files (x86)\WinTV\HCWTVServer.exe [823296 2008-06-02] (Hauppauge Computer Works) [File not signed]
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2019-02-01] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2019-02-01] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1745344 2019-02-01] (Acronis International GmbH -> )
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2191032 2018-12-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 TeraCopyService; C:\Program Files\TeraCopy\TeraCopyService.exe [110416 2017-05-05] (Code Sector -> Code Sector)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [692992 2019-04-16] (Oracle Corporation -> Oracle Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\NisSrv.exe [3851264 2019-04-23] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MsMpEng.exe [118144 2019-04-23] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [34568 2018-10-03] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [24288 2018-10-02] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [21631512 2015-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [673816 2015-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AMDPCIDev; C:\Windows\System32\drivers\AMDPCIDev.sys [31704 2018-10-03] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R0 amdpsp; C:\Windows\System32\DRIVERS\amdpsp.sys [137688 2018-10-02] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [34496 2018-10-18] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFlt; C:\Windows\System32\drivers\EPMVolFlt.sys [30416 2018-10-18] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R2 file_protector; C:\Windows\System32\DRIVERS\file_protector.sys [569392 2019-04-16] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [379664 2019-04-16] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R1 HCW88AUD; C:\Windows\system32\drivers\hcw88aud.sys [15744 2008-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Hauppauge Computer Works, Inc)
R3 HCW88BDA; C:\Windows\system32\drivers\hcw88bda.sys [214528 2008-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Hauppauge Computer Works, Inc)
R3 HCW88TSE; C:\Windows\system32\drivers\hcw88tse.sys [338304 2008-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Hauppauge Computer Works, Inc)
R3 HCW88TUNE; C:\Windows\system32\drivers\hcw88tun.sys [107392 2008-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Hauppauge Computer Works, Inc.)
R3 hcw88vid; C:\Windows\system32\drivers\hcw88vid.sys [437888 2008-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Hauppauge Computer Works, Inc)
R3 HCW88XBAR; C:\Windows\system32\drivers\HCW88BAR.sys [21120 2008-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Hauppauge Computer Works, Inc.)
S3 NPF; C:\Windows\System32\drivers\NPF.sys [35344 2011-02-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [1122200 2019-04-16] (Realtek Semiconductor Corp. -> Realtek )
S3 RtlWlanu_OldIC; C:\Windows\System32\drivers\rtwlanu_oldIC.sys [3814400 2018-09-15] (Microsoft Windows -> Realtek Semiconductor Corporation )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 secnvme; C:\Windows\System32\drivers\secnvme.sys [134120 2018-02-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1310552 2019-04-16] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [213336 2019-04-16] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\Windows\system32\DRIVERS\tnd.sys [690520 2019-04-16] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [236560 2019-04-16] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [247952 2019-04-16] (Oracle Corporation -> Oracle Corporation)
R2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [331976 2019-04-16] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 volume_tracker; C:\Windows\System32\DRIVERS\volume_tracker.sys [243472 2019-04-16] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-04-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [344544 2019-04-23] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [60896 2019-04-23] (Microsoft Windows -> Microsoft Corporation)
S1 amsdk; \??\C:\Windows\system32\drivers\amsdk.sys [X]
S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X]
S3 NTIOLib_DVDSetup; \??\G:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-23 11:25 - 2019-04-23 11:26 - 000000000 ____D C:\FRST
2019-04-23 11:20 - 2019-04-23 11:20 - 000000515 _____ C:\DelFix.txt
2019-04-22 18:11 - 2019-04-22 18:11 - 000008241 _____ C:\Users\jjap5\Desktop\CRISTAL SECURITY.xml
2019-04-22 17:28 - 2019-04-22 17:28 - 000000266 _____ C:\Users\jjap5\Desktop\ESED.txt
2019-04-22 17:06 - 2019-04-22 17:06 - 000000000 ____D C:\Users\jjap5\AppData\Local\ElevatedDiagnostics
2019-04-22 16:03 - 2019-04-22 16:03 - 000002124 _____ C:\Users\jjap5\Desktop\mbar-log-2019-04-22 (15-56-41).txt
2019-04-22 15:55 - 2019-04-22 15:55 - 000001549 _____ C:\Users\jjap5\Desktop\Malwarebytes.txt
2019-04-22 15:38 - 2019-04-22 15:38 - 000000000 ____D C:\Users\jjap5\AppData\Local\mbamtray
2019-04-22 15:38 - 2019-04-22 15:38 - 000000000 ____D C:\Users\jjap5\AppData\Local\mbam
2019-04-22 15:24 - 2019-04-22 15:56 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\46469569.sys
2019-04-22 14:50 - 2019-04-23 10:46 - 000000000 ____D C:\Program Files\TMeter
2019-04-22 14:50 - 2018-03-04 11:24 - 000054376 _____ (Trafficreg Software) C:\Windows\system32\Drivers\tmeter.sys
2019-04-21 16:23 - 2019-04-21 16:28 - 000000282 __RSH C:\ProgramData\ntuser.pol
2019-04-21 12:44 - 2019-04-21 12:45 - 000000000 ____D C:\ProgramData\TEMP
2019-04-20 20:33 - 2019-04-20 20:34 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\TeraCopy
2019-04-20 20:33 - 2019-04-20 20:33 - 000000000 ___HD C:\Users\jjap5\AppData\Roaming\Obsidium
2019-04-20 20:33 - 2019-04-20 20:33 - 000000000 ___HD C:\Users\jjap5\.obs32
2019-04-20 19:09 - 2019-04-20 19:09 - 000000000 ____D C:\Users\jjap5\AppData\Local\ESET
2019-04-20 18:57 - 2019-04-20 18:33 - 000004788 _____ C:\Windows\system32\Drivers\etc\Hosts(2019-04-20 165746)
2019-04-20 18:55 - 2019-04-23 10:45 - 000462450 _____ C:\Windows\ntbtlog.txt
2019-04-20 18:55 - 2019-04-23 10:41 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2019-04-20 18:38 - 2019-04-23 10:45 - 000027985 _____ C:\Windows\ZAM.krnl.trace
2019-04-20 18:38 - 2019-04-23 10:45 - 000000000 ____D C:\Users\jjap5\AppData\Local\AMSDK
2019-04-20 18:38 - 2019-04-20 18:38 - 000003558 _____ C:\Windows\System32\Tasks\AMHelper
2019-04-20 18:38 - 2019-04-20 18:38 - 000000000 ____D C:\Users\jjap5\AppData\Local\Zemana
2019-04-20 18:38 - 2019-04-20 18:38 - 000000000 ____D C:\Program Files (x86)\Zemana
2019-04-20 18:28 - 2019-04-20 18:37 - 000000000 ____D C:\ProgramData\RogueKiller
2019-04-20 16:58 - 2019-04-20 16:58 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Crystal Security
2019-04-20 16:57 - 2019-04-20 16:57 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Zbshareware Lab
2019-04-20 16:48 - 2019-04-23 10:43 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-04-20 16:48 - 2019-04-22 16:01 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2019-04-20 16:48 - 2019-04-20 16:48 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\7143829D.sys
2019-04-20 14:46 - 2019-04-20 14:46 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\ImgBurn
2019-04-20 14:44 - 2019-04-20 14:44 - 000000000 ____D C:\Users\jjap5\AppData\Local\FreemakeVideoConverter
2019-04-19 14:09 - 2019-04-19 14:09 - 000003480 _____ C:\Windows\System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2019-04-19 14:09 - 2019-04-19 14:09 - 000003356 _____ C:\Windows\System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2019-04-18 13:09 - 2019-04-18 13:09 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Brave Giant
2019-04-18 13:02 - 2019-04-18 13:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2019-04-18 12:42 - 2019-04-18 12:42 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2019-04-18 12:42 - 2019-04-18 12:42 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-04-18 12:42 - 2019-04-18 12:42 - 000000000 ____D C:\Program Files\MSBuild
2019-04-18 12:42 - 2019-04-18 12:42 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-04-18 12:42 - 2019-04-18 12:42 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-04-18 12:42 - 2018-09-09 17:17 - 001167960 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2019-04-18 12:42 - 2018-09-09 17:16 - 000126064 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2019-04-18 12:42 - 2018-09-09 17:16 - 000035440 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2019-04-18 12:42 - 2018-08-29 17:56 - 000780376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2019-04-18 12:42 - 2018-08-29 17:56 - 000104560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-04-18 12:42 - 2018-08-29 17:56 - 000036896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2019-04-18 12:34 - 2019-04-18 12:34 - 000001116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCEnhancer.lnk
2019-04-18 12:34 - 2019-04-18 12:34 - 000000000 ____D C:\Program Files (x86)\CCEnhancer
2019-04-18 11:54 - 2019-04-18 11:54 - 000000000 ____D C:\Windows\System32\Tasks\WPD
2019-04-18 11:54 - 2019-04-18 11:54 - 000000000 ____D C:\Windows\System32\Tasks\Lenovo
2019-04-18 11:54 - 2019-04-18 11:54 - 000000000 ____D C:\Users\jjap5\AppData\Local\Safer-Networking Ltd
2019-04-17 18:52 - 2019-04-17 18:52 - 000000000 ____D C:\Users\jjap5\AppData\Local\cache
2019-04-17 13:10 - 2019-04-17 13:22 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\WhatsApp
2019-04-17 13:10 - 2019-04-17 13:10 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2019-04-17 13:09 - 2019-04-17 13:10 - 000000000 ____D C:\Users\jjap5\AppData\Local\WhatsApp
2019-04-17 10:32 - 2019-04-23 11:26 - 000000000 ___RD C:\Users\jjap5\Desktop\Scannear
2019-04-17 10:30 - 2019-04-17 10:30 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\SUPERAntiSpyware.com
2019-04-17 10:25 - 2019-04-17 10:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Driver Installer
2019-04-17 10:25 - 2019-04-17 10:25 - 000000000 ____D C:\Program Files\Motorola Inc
2019-04-17 10:25 - 2019-04-17 10:25 - 000000000 ____D C:\Program Files\Common Files\Motorola Shared
2019-04-17 10:25 - 2019-04-17 10:25 - 000000000 ____D C:\Program Files (x86)\Motorola
2019-04-17 10:15 - 2019-04-17 10:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2019-04-16 19:53 - 2019-04-16 19:53 - 000466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2019-04-16 19:53 - 2019-04-16 19:53 - 000444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2019-04-16 19:53 - 2019-04-16 19:53 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2019-04-16 19:53 - 2019-04-16 19:53 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2019-04-16 19:53 - 2019-04-16 19:53 - 000000000 ____D C:\Program Files (x86)\OpenAL
2019-04-16 19:17 - 2019-04-16 19:18 - 000000000 ____D C:\MyVideos
2019-04-16 19:17 - 2019-04-16 19:17 - 000001986 _____ C:\Windows\HCWPNP.INI
2019-04-16 19:17 - 2019-04-16 19:17 - 000000209 _____ C:\Windows\ODBCINST.INI
2019-04-16 19:17 - 2019-04-16 19:17 - 000000135 _____ C:\Windows\ODBC.INI
2019-04-16 19:17 - 2019-04-16 19:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hauppauge WinTV
2019-04-16 19:17 - 2019-04-16 19:17 - 000000000 ____D C:\Program Files (x86)\WinTV
2019-04-16 19:17 - 2008-06-06 11:24 - 000413696 _____ () C:\Windows\SysWOW64\HCWChMgr.ocx
2019-04-16 19:17 - 2008-06-02 15:55 - 000046680 _____ C:\Windows\SysWOW64\HCWTVServer.tlb
2019-04-16 19:17 - 2008-05-29 17:00 - 000806985 ____N (Hauppauge Computer Works) C:\Windows\SysWOW64\hcwtvwnd.dll
2019-04-16 19:17 - 2008-04-29 10:36 - 000204871 _____ (Hauppauge Computer Works, Inc.) C:\Windows\SysWOW64\HCWPsiParser.ax
2019-04-16 19:17 - 2008-04-22 14:53 - 000163840 _____ () C:\Windows\SysWOW64\hcwChDB.dll
2019-04-16 19:17 - 2008-03-26 14:54 - 000030720 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\hcwWinTVCI.dll
2019-04-16 19:17 - 2008-03-20 17:50 - 000282680 ____N (Hauppauge Computer Works) C:\Windows\SysWOW64\hcwpnp32.dll
2019-04-16 19:17 - 2008-03-11 18:36 - 000106552 _____ (Hauppauge Computer Works, Inc.) C:\Windows\SysWOW64\hcwi2c32.dll
2019-04-16 19:17 - 2008-02-26 15:32 - 000118851 _____ (Hauppauge Computer Works, Inc.) C:\Windows\SysWOW64\hcwNowNext.ax
2019-04-16 19:17 - 2007-12-04 11:13 - 000073728 _____ (Hauppauge Computer Works, Inc.) C:\Windows\SysWOW64\hcwSnap.ax
2019-04-16 19:17 - 2007-12-04 10:05 - 000053248 _____ (DScaler Project, see hxxp://www.dscaler.org/) C:\Windows\SysWOW64\HCWdlace.ax
2019-04-16 19:17 - 2007-09-18 18:24 - 000213066 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\hcwdvbsubtitles.ax
2019-04-16 19:17 - 2006-10-10 17:47 - 000036921 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\hcwutl32.dll
2019-04-16 19:17 - 2006-09-13 11:13 - 000023304 _____ C:\Windows\SysWOW64\HcwChDB.tlb
2019-04-16 19:17 - 2006-08-23 10:26 - 000081920 _____ (Hauppauge Computer Works, Inc.) C:\Windows\SysWOW64\hcwSplit.ax
2019-04-16 19:17 - 2006-07-21 15:07 - 000176197 _____ (Hauppauge Computer Works Inc.) C:\Windows\SysWOW64\hcwmux.ax
2019-04-16 19:17 - 2006-05-25 08:59 - 000073728 _____ (Hauppauge Computer Works, Inc.) C:\Windows\SysWOW64\hcwFRead.ax
2019-04-16 19:17 - 2006-05-08 09:55 - 000118784 _____ (Hauppauge Computer Works Inc) C:\Windows\SysWOW64\HCWSched.ocx
2019-04-16 19:17 - 2006-05-08 09:55 - 000040960 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\HcwTvTvOCX.ocx
2019-04-16 19:17 - 2006-05-08 09:55 - 000028672 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\hcwsched.dll
2019-04-16 19:17 - 2006-05-08 09:54 - 000647872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSComCt2.ocx
2019-04-16 19:17 - 2006-05-08 09:54 - 000244232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsFlxGrd.ocx
2019-04-16 19:17 - 2006-05-08 09:54 - 000204800 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\Mdcustoms.ocx
2019-04-16 19:17 - 2006-05-08 09:54 - 000132880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Msinet.ocx
2019-04-16 19:17 - 2006-05-08 09:54 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCAL.OCX
2019-04-16 19:17 - 2006-05-08 09:54 - 000073792 _____ (Hauppauge Computer Works, Inc) C:\Windows\SysWOW64\CHSUITE.OCX
2019-04-16 19:17 - 2006-05-08 09:54 - 000065536 _____ C:\Windows\SysWOW64\dmcrypto.dll
2019-04-16 19:17 - 2006-05-08 09:54 - 000053248 _____ (Hauppauge) C:\Windows\SysWOW64\MDCustomPanels.ocx
2019-04-16 19:17 - 2006-02-13 15:02 - 000057344 _____ (Hauppauge Computer Works, Inc.) C:\Windows\SysWOW64\hcwFWrit.ax
2019-04-16 19:17 - 2006-01-25 17:38 - 000069632 _____ (Hauppauge Computer Works ) C:\Windows\SysWOW64\3DES.dll
2019-04-16 19:17 - 2005-03-30 14:16 - 000069632 _____ (Hauppauge Computer Works, Inc.) C:\Windows\SysWOW64\hcwPP2PP.ocx
2019-04-16 19:17 - 2004-12-20 12:11 - 000213050 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\hcwChan.dll
2019-04-16 19:17 - 2004-09-10 15:58 - 000094208 _____ (Hauppuage Computer Works) C:\Windows\SysWOW64\hcwsstereo.ax
2019-04-16 19:17 - 2004-02-13 15:58 - 000065536 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\hcwDlg.ocx
2019-04-16 19:17 - 2004-01-26 14:49 - 000090190 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\Bt848WST.DLL
2019-04-16 19:17 - 2003-11-07 12:45 - 000106559 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\hcwTVDlg.dll
2019-04-16 19:17 - 2003-05-06 13:13 - 000081920 _____ (Hauppauge Computer Works, Inc.) C:\Windows\SysWOW64\hcwNull.ax
2019-04-16 19:17 - 2001-07-19 08:44 - 000393216 _____ (Snowbound Software Corporation (www.Snowbnd.com)) C:\Windows\SysWOW64\hcwsnbd9.dll
2019-04-16 19:17 - 1999-04-27 16:26 - 000011264 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\hcwhook.dll
2019-04-16 19:17 - 1998-05-22 00:00 - 000137736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COMDLG32.OCX
2019-04-16 19:16 - 2019-04-16 19:16 - 000000000 ____D C:\Hauppauge
2019-04-16 19:16 - 2008-04-18 19:27 - 000338304 _____ (Hauppauge Computer Works, Inc) C:\Windows\system32\Drivers\hcw88tse.sys
2019-04-16 19:16 - 2008-04-18 19:27 - 000214528 _____ (Hauppauge Computer Works, Inc) C:\Windows\system32\Drivers\hcw88bda.sys
2019-04-16 19:16 - 2008-04-18 19:27 - 000133632 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw88prx.ax
2019-04-16 19:16 - 2008-04-18 19:27 - 000107392 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw88tun.sys
2019-04-16 19:16 - 2008-04-18 19:27 - 000015872 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw88rc5.sys
2019-04-16 19:16 - 2008-04-18 19:26 - 000437888 _____ (Hauppauge Computer Works, Inc) C:\Windows\system32\Drivers\hcw88vid.sys
2019-04-16 19:16 - 2008-04-18 19:26 - 000021120 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw88bar.sys
2019-04-16 19:16 - 2008-04-18 19:26 - 000015744 _____ (Hauppauge Computer Works, Inc) C:\Windows\system32\Drivers\hcw88aud.sys
2019-04-16 19:16 - 2006-09-08 12:37 - 000147456 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\hcwecppp.ax
2019-04-16 19:16 - 2006-09-08 12:36 - 000099328 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\hcwcp.ax
2019-04-16 19:13 - 2019-04-16 19:13 - 000000000 ____D C:\Program Files\FolderPainter
2019-04-16 19:04 - 2019-04-20 14:52 - 000000000 ___RD C:\Users\jjap5\Desktop\Mantenimiento
2019-04-16 18:52 - 2019-04-16 18:52 - 000002492 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2019-04-16 18:38 - 2019-04-16 18:52 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2019-04-16 18:38 - 2019-04-16 18:39 - 000000000 ____D C:\Users\jjap5\AppData\Local\BraveSoftware
2019-04-16 18:38 - 2019-04-16 18:38 - 000003436 _____ C:\Windows\System32\Tasks\BraveSoftwareUpdateTaskMachineUA
2019-04-16 18:38 - 2019-04-16 18:38 - 000003312 _____ C:\Windows\System32\Tasks\BraveSoftwareUpdateTaskMachineCore
2019-04-16 18:35 - 2019-04-16 18:35 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Brave Software
2019-04-16 18:30 - 2019-04-18 12:49 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\brave
2019-04-16 18:30 - 2019-04-17 13:10 - 000000000 ____D C:\Users\jjap5\AppData\Local\SquirrelTemp
2019-04-16 18:30 - 2019-04-16 18:35 - 000000000 ____D C:\Users\jjap5\AppData\Local\Brave
2019-04-16 18:30 - 2019-04-16 18:30 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Brave Inc
2019-04-16 18:28 - 2019-04-16 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameTop.com
2019-04-16 18:28 - 2019-04-16 18:28 - 000000000 ____D C:\Program Files (x86)\GameTop.com
2019-04-16 17:49 - 2019-04-16 17:49 - 000001342 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Update Pro.lnk
2019-04-16 17:49 - 2019-04-16 17:49 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\GlarySoft
2019-04-16 17:49 - 2019-04-16 17:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft
2019-04-16 17:49 - 2019-04-16 17:49 - 000000000 ____D C:\Program Files (x86)\Glarysoft
2019-04-16 17:38 - 2019-04-16 17:38 - 000001836 _____ C:\Users\jjap5\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2019-04-16 17:38 - 2019-04-16 17:38 - 000000000 ____D C:\Users\jjap5\AppData\Local\Spotify
2019-04-16 17:37 - 2019-04-16 17:38 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Spotify
2019-04-16 17:35 - 2019-04-21 12:44 - 000000000 ____D C:\Program Files (x86)\SpywareBlaster
2019-04-16 17:35 - 2019-04-16 17:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2019-04-16 17:35 - 2012-05-02 12:17 - 001070152 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX
2019-04-16 17:35 - 2009-03-24 13:52 - 000129872 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MSSTDFMT.DLL
2019-04-16 17:31 - 2019-04-20 19:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security
2019-04-16 17:31 - 2019-04-20 19:16 - 000000000 ____D C:\Program Files (x86)\USB Disk Security
2019-04-16 17:28 - 2019-04-20 16:13 - 000000000 ____D C:\Users\jjap5\.VirtualBox
2019-04-16 17:28 - 2019-04-18 13:02 - 000000000 ____D C:\ProgramData\VirtualBox
2019-04-16 17:28 - 2019-04-16 17:28 - 000000000 ____D C:\Program Files\Oracle
2019-04-16 17:28 - 2019-04-16 09:22 - 001023528 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2019-04-16 17:28 - 2019-04-16 09:22 - 000186696 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2019-04-16 17:24 - 2019-04-20 19:44 - 000000000 ____D C:\ProgramData\Freemake
2019-04-16 17:24 - 2019-04-20 19:44 - 000000000 ____D C:\Program Files (x86)\Freemake
2019-04-16 17:24 - 2019-04-20 14:44 - 000000000 ____D C:\Users\jjap5\Documents\Freemake
2019-04-16 17:21 - 2019-04-16 17:21 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2019-04-16 17:16 - 2019-04-16 17:16 - 000000000 ____D C:\Program Files (x86)\SmartDefender
2019-04-16 17:15 - 2019-04-16 17:15 - 000000000 ____D C:\Users\jjap5\AppData\Local\fontconfig
2019-04-16 17:14 - 2019-04-16 17:14 - 000000000 ____D C:\FFOutput
2019-04-16 17:13 - 2019-04-16 17:21 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2019-04-16 17:03 - 2019-04-16 17:03 - 000000000 ____D C:\ProgramData\SystemAcCrux
2019-04-16 17:03 - 2019-04-16 17:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 13.0
2019-04-16 17:03 - 2018-11-29 00:49 - 005247120 _____ C:\Windows\system32\BootMan.exe
2019-04-16 17:03 - 2018-11-29 00:49 - 003551376 _____ C:\Windows\SysWOW64\BootMan.exe
2019-04-16 17:03 - 2018-11-29 00:49 - 000022160 _____ C:\Windows\SysWOW64\EuEpmGdi.dll
2019-04-16 17:03 - 2018-11-29 00:49 - 000018576 _____ C:\Windows\system32\EuEpmGdi.dll
2019-04-16 17:03 - 2018-10-18 13:05 - 000132240 _____ C:\Windows\system32\setupempdrvx64.exe
2019-04-16 17:03 - 2018-10-18 04:35 - 000034496 _____ C:\Windows\system32\epmntdrv.sys
2019-04-16 17:03 - 2018-10-18 01:38 - 000030416 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\EPMVolFlt.sys
2019-04-16 17:03 - 2018-10-18 01:38 - 000030416 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Drivers\EPMVolFlt.sys
2019-04-16 17:02 - 2019-04-16 17:02 - 000000000 ____D C:\Program Files (x86)\EaseUS
2019-04-16 17:01 - 2019-04-16 17:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2019-04-16 17:01 - 2019-04-16 17:01 - 000000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2019-04-16 17:00 - 2019-04-16 17:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskMark6
2019-04-16 17:00 - 2019-04-16 17:00 - 000000000 ____D C:\Program Files\CrystalDiskMark6
2019-04-16 16:53 - 2019-04-20 16:53 - 000000000 ____D C:\Program Files\CCleaner
2019-04-16 16:53 - 2019-04-16 16:53 - 000003936 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-04-16 16:53 - 2019-04-16 16:53 - 000002888 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-04-16 16:53 - 2019-04-16 16:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-04-16 16:51 - 2019-04-20 18:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2019-04-16 16:41 - 2019-04-18 12:51 - 000002594 _____ C:\Windows\System32\Tasks\SamsungMagician
2019-04-16 16:41 - 2019-04-16 16:41 - 000000000 ____D C:\ProgramData\Samsung
2019-04-16 16:41 - 2019-04-16 16:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2019-04-16 16:41 - 2019-04-16 16:41 - 000000000 ____D C:\Program Files (x86)\Samsung
2019-04-16 16:39 - 2019-04-16 16:39 - 000000000 ____D C:\Program Files\Samsung
2019-04-16 16:34 - 2019-04-16 16:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2019-04-16 16:34 - 2019-04-16 16:34 - 000000000 ____D C:\Program Files\Speccy
2019-04-16 16:22 - 2019-04-18 16:26 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Acronis
2019-04-16 16:09 - 2019-04-16 16:20 - 000000000 ____D C:\Users\jjap5\AppData\Local\Thunderbird
2019-04-16 16:09 - 2019-04-16 16:09 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Thunderbird
2019-04-16 15:42 - 2019-04-16 15:42 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\AMD
2019-04-16 15:40 - 2019-04-16 15:40 - 001310552 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib.sys
2019-04-16 15:40 - 2019-04-16 15:40 - 000690520 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tnd.sys
2019-04-16 15:40 - 2019-04-16 15:40 - 000569392 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\file_protector.sys
2019-04-16 15:40 - 2019-04-16 15:40 - 000379664 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\file_tracker.sys
2019-04-16 15:40 - 2019-04-16 15:40 - 000373808 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\snapman.sys
2019-04-16 15:40 - 2019-04-16 15:40 - 000331976 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\virtual_file.sys
2019-04-16 15:40 - 2019-04-16 15:40 - 000243472 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\volume_tracker.sys
2019-04-16 15:40 - 2019-04-16 15:40 - 000213336 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\tib_mounter.sys
2019-04-16 15:40 - 2019-04-16 15:40 - 000182832 _____ (Acronis International GmbH) C:\Windows\system32\Drivers\fltsrv.sys
2019-04-16 15:40 - 2019-04-16 15:40 - 000001286 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis True Image.lnk
2019-04-16 15:40 - 2019-04-16 15:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
2019-04-16 15:40 - 2019-04-16 15:40 - 000000000 ____D C:\ProgramData\Apple
2019-04-16 15:40 - 2019-04-16 15:40 - 000000000 ____D C:\ProgramData\Acronis Mobile Backup Data
2019-04-16 15:40 - 2019-04-16 15:40 - 000000000 ____D C:\Program Files (x86)\Acronis
2019-04-16 15:34 - 2019-04-18 18:48 - 000000000 ____D C:\ProgramData\Acronis
2019-04-16 15:28 - 2019-04-16 15:28 - 000000000 ____D C:\ProgramData\ATI
2019-04-16 15:27 - 2019-04-16 15:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2019-04-16 15:19 - 2019-04-16 15:19 - 000004292 _____ C:\Windows\System32\Tasks\AMD Updater
2019-04-16 15:18 - 2019-04-16 15:18 - 000000000 ____D C:\Users\jjap5\AppData\Local\RadeonInstaller
2019-04-16 15:12 - 2019-04-16 15:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2019-04-16 15:12 - 2019-04-16 15:12 - 000000000 ____D C:\Program Files\CPUID
2019-04-16 15:12 - 2014-04-30 16:23 - 000011248 _____ (Windows (R) Win 7 DDK provider) C:\Windows\acpimof.dll
2019-04-16 15:08 - 2019-04-16 15:08 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2019-04-16 15:08 - 2019-04-16 15:08 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2019-04-16 15:08 - 2019-04-16 15:08 - 000000000 ____D C:\Windows\system32\DAX3
20 
2019-04-16 15:12 - 2019-04-16 15:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2019-04-16 15:12 - 2019-04-16 15:12 - 000000000 ____D C:\Program Files\CPUID
2019-04-16 15:12 - 2014-04-30 16:23 - 000011248 _____ (Windows (R) Win 7 DDK provider) C:\Windows\acpimof.dll
2019-04-16 15:08 - 2019-04-16 15:08 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2019-04-16 15:08 - 2019-04-16 15:08 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2019-04-16 15:08 - 2019-04-16 15:08 - 000000000 ____D C:\Windows\system32\DAX3
2019-04-16 15:08 - 2019-04-16 15:08 - 000000000 ____D C:\Windows\system32\DAX2
2019-04-16 15:08 - 2019-04-16 15:08 - 000000000 ____D C:\ProgramData\Audyssey Labs
2019-04-16 15:08 - 2019-04-16 15:08 - 000000000 ____D C:\Program Files\Realtek
2019-04-16 15:08 - 2017-11-15 19:45 - 000258856 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2019-04-16 15:08 - 2017-11-15 19:44 - 015211616 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE3.dll
2019-04-16 15:08 - 2017-11-15 19:44 - 003299816 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2019-04-16 15:08 - 2017-11-15 19:44 - 002190976 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2019-04-16 15:08 - 2017-11-15 19:44 - 001382232 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2019-04-16 15:08 - 2017-11-15 19:44 - 001337632 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
2019-04-16 15:08 - 2017-11-15 19:44 - 000852128 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
2019-04-16 15:08 - 2017-11-15 19:44 - 000604792 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
2019-04-16 15:08 - 2017-11-15 19:44 - 000447176 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
2019-04-16 15:08 - 2017-11-15 19:43 - 003121112 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2019-04-16 15:08 - 2017-11-15 19:43 - 000873456 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2019-04-16 15:08 - 2017-11-15 19:43 - 000532376 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2019-04-16 15:08 - 2017-11-15 19:43 - 000221960 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2019-04-16 15:08 - 2017-11-15 19:43 - 000166200 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2019-04-16 15:08 - 2017-11-15 19:43 - 000158688 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2019-04-16 15:08 - 2017-11-15 19:43 - 000105304 _____ C:\Windows\system32\audioLibVc.dll
2019-04-16 15:08 - 2017-11-15 19:43 - 000075536 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2019-04-16 15:08 - 2017-11-15 19:42 - 003410320 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2019-04-16 15:08 - 2017-11-15 19:42 - 000986992 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2019-04-16 15:08 - 2017-11-15 19:09 - 005804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2019-04-16 15:07 - 2017-11-15 19:45 - 072520704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2019-04-16 15:07 - 2017-11-15 19:45 - 006038440 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2019-04-16 15:07 - 2017-11-15 19:45 - 003677152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2019-04-16 15:07 - 2017-11-15 19:45 - 003205600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2019-04-16 15:07 - 2017-11-15 19:45 - 002922976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2019-04-16 15:07 - 2017-11-15 19:45 - 000023688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2019-04-16 15:07 - 2017-11-15 19:44 - 007172904 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2019-04-16 15:07 - 2017-11-15 19:44 - 001159176 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2019-04-16 15:07 - 2017-11-15 19:44 - 000416504 _____ (Harman) C:\Windows\system32\HMUI.dll
2019-04-16 15:07 - 2017-11-15 19:44 - 000378376 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2019-04-16 15:07 - 2017-11-15 19:44 - 000154360 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2019-04-16 15:07 - 2017-11-15 19:43 - 001435136 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2019-04-16 15:07 - 2017-11-15 19:43 - 000467152 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2019-04-16 15:07 - 2017-11-15 19:43 - 000381400 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2019-04-16 15:07 - 2017-11-15 19:43 - 000341144 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2019-04-16 15:07 - 2017-11-15 19:43 - 000341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2019-04-16 15:07 - 2017-11-15 19:43 - 000209528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2019-04-16 15:07 - 2017-11-15 19:42 - 000965016 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2019-04-16 15:07 - 2017-11-15 19:42 - 000231912 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2019-04-16 15:07 - 2017-11-15 19:41 - 003509192 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2019-04-16 15:07 - 2017-11-15 19:41 - 001016928 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
2019-04-16 15:07 - 2017-11-15 19:41 - 000877424 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
2019-04-16 15:07 - 2017-11-15 19:41 - 000868176 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2019-04-16 15:07 - 2017-11-15 19:41 - 000866632 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2019-04-16 15:07 - 2017-11-15 19:41 - 000737960 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
2019-04-16 15:07 - 2017-11-15 19:41 - 000526280 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2019-04-16 15:07 - 2017-11-15 19:41 - 000343704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2019-04-16 15:07 - 2017-11-15 19:41 - 000192976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2019-04-16 15:07 - 2017-11-15 19:41 - 000090912 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2019-04-16 15:07 - 2017-11-15 19:41 - 000088312 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2019-04-16 15:07 - 2017-11-15 19:41 - 000083616 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2019-04-16 15:07 - 2017-11-15 19:40 - 003562432 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2019-04-16 15:07 - 2017-11-15 19:40 - 003135776 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2019-04-16 15:07 - 2017-11-15 19:40 - 001351232 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2019-04-16 15:07 - 2017-11-15 19:40 - 000691672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2019-04-16 15:07 - 2017-11-15 19:40 - 000387304 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2019-04-16 15:07 - 2017-11-15 19:40 - 000321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2019-04-16 15:07 - 2017-11-15 19:40 - 000321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2019-04-16 15:07 - 2017-11-15 19:40 - 000214824 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2019-04-16 15:07 - 2017-11-15 19:40 - 000151784 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2019-04-16 15:07 - 2017-11-15 19:40 - 000110976 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2019-04-16 15:07 - 2017-11-15 19:40 - 000088344 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2019-04-16 15:07 - 2017-11-15 19:40 - 000084608 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 001780608 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 001591056 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 000727432 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 000708304 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 000680544 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 000447712 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 000406448 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2APIPCLL.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 000366112 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 000360336 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 000203832 _____ (Harman) C:\Windows\system32\HMHVS.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 000190928 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 000190928 _____ (Harman) C:\Windows\system32\HMEQ.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 000179592 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2019-04-16 15:07 - 2017-11-15 19:39 - 000134192 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2019-04-16 15:07 - 2017-11-15 19:38 - 005346984 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2019-04-16 15:07 - 2017-11-15 19:38 - 002444680 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2019-04-16 15:07 - 2017-11-15 19:38 - 001508928 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2019-04-16 15:07 - 2017-11-15 19:38 - 001259720 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOvlldp.dll
2019-04-16 15:07 - 2017-11-15 19:38 - 000743960 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2019-04-16 15:07 - 2017-11-15 19:38 - 000504296 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2019-04-16 15:07 - 2017-11-15 19:38 - 000445392 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2019-04-16 15:07 - 2017-11-15 19:38 - 000441264 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2019-04-16 15:07 - 2017-11-15 19:38 - 000253896 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2019-04-16 15:07 - 2017-11-15 19:38 - 000253856 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2019-04-16 15:07 - 2017-11-15 19:38 - 000252872 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2019-04-16 15:07 - 2017-11-15 19:09 - 014964257 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2019-04-16 15:06 - 2019-04-16 15:26 - 000000000 ____D C:\Program Files (x86)\AMD
2019-04-16 15:06 - 2018-10-02 22:18 - 000430152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdtee_api.dll
2019-04-16 15:06 - 2018-10-02 22:18 - 000344136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdtee_api.dll
2019-04-16 15:06 - 2017-11-15 19:44 - 007096184 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2019-04-16 15:06 - 2017-11-15 19:44 - 006264632 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2019-04-16 15:06 - 2017-11-15 19:43 - 000122312 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2019-04-16 15:06 - 2017-11-15 19:43 - 000118584 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2019-04-16 15:06 - 2017-11-15 19:38 - 001965808 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2019-04-16 15:06 - 2017-11-15 19:38 - 001959592 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2019-04-16 15:06 - 2017-11-15 19:38 - 001372384 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOv251.dll
2019-04-16 15:06 - 2017-11-15 19:38 - 000362048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2019-04-16 15:06 - 2017-11-15 19:38 - 000327448 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2019-04-16 15:06 - 2017-11-15 19:38 - 000310416 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2019-04-16 15:06 - 2017-11-15 19:38 - 000272712 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2019-04-16 15:06 - 2017-11-15 19:37 - 002992176 _____ (Audyssey Labs) C:\Windows\system32\AudysseyEfx.dll
2019-04-16 15:06 - 2017-11-15 19:37 - 001544248 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOProp.dll
2019-04-16 15:06 - 2017-07-21 11:17 - 002839488 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2019-04-16 15:05 - 2019-04-16 15:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2019-04-16 15:05 - 2019-04-16 15:15 - 000000000 ____D C:\Program Files (x86)\MSI
2019-04-16 15:05 - 2019-04-16 15:15 - 000000000 ____D C:\MSI
2019-04-16 13:21 - 2019-04-17 10:14 - 000000000 ____D C:\ProgramData\Foxit Software
2019-04-16 12:56 - 2019-04-16 12:56 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\LibreOffice
2019-04-16 12:50 - 2019-04-16 12:50 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2019-04-16 12:50 - 2019-04-16 12:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2019-04-16 12:50 - 2019-04-16 12:50 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2019-04-16 12:49 - 2019-04-16 12:49 - 000002295 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2019-04-16 12:49 - 2019-04-16 12:49 - 000000000 ____D C:\Program Files (x86)\Google
2019-04-16 12:48 - 2019-04-16 15:02 - 000001022 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2019-04-16 12:48 - 2019-04-16 15:02 - 000001018 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2019-04-16 12:48 - 2019-04-16 12:49 - 000000000 ____D C:\Users\jjap5\AppData\Local\Dropbox
2019-04-16 12:48 - 2019-04-16 12:49 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-04-16 12:48 - 2019-04-16 12:48 - 000004082 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2019-04-16 12:48 - 2019-04-16 12:48 - 000003850 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2019-04-16 12:48 - 2019-04-16 12:48 - 000000000 ____D C:\Users\Public\Foxit Software
2019-04-16 12:48 - 2019-04-16 12:48 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Foxit AgentInformation
2019-04-16 12:48 - 2019-04-16 12:48 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Dropbox
2019-04-16 12:48 - 2019-04-16 12:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-04-16 12:48 - 2019-04-16 12:48 - 000000000 ____D C:\ProgramData\Foxit ContentPlatform
2019-04-16 12:48 - 2019-04-16 12:48 - 000000000 ____D C:\ProgramData\Dropbox
2019-04-16 12:47 - 2019-04-17 10:15 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Foxit Software
2019-04-16 12:47 - 2019-04-16 12:47 - 000000000 ____D C:\Program Files (x86)\Foxit Software
2019-04-16 12:37 - 2019-04-16 12:37 - 000003294 _____ C:\Windows\System32\Tasks\klcp_update
2019-04-16 12:37 - 2019-04-16 12:37 - 000001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2019-04-16 12:37 - 2019-04-16 12:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2019-04-16 12:37 - 2019-04-16 12:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2019-04-16 12:37 - 2019-04-16 12:37 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2019-04-16 12:36 - 2019-04-16 17:53 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\PeaZip
2019-04-16 12:36 - 2019-04-16 12:36 - 000001950 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2019-04-16 12:36 - 2019-04-16 12:36 - 000001725 _____ C:\ProgramData\Microsoft\Windows\Start Menu\TeraCopy.lnk
2019-04-16 12:36 - 2019-04-16 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2019-04-16 12:36 - 2019-04-16 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeaZip
2019-04-16 12:36 - 2019-04-16 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2019-04-16 12:36 - 2019-04-16 12:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack 64bit
2019-04-16 12:36 - 2019-04-16 12:36 - 000000000 ____D C:\Program Files\VS Revo Group
2019-04-16 12:36 - 2019-04-16 12:36 - 000000000 ____D C:\Program Files\TeraCopy
2019-04-16 12:36 - 2019-04-16 12:36 - 000000000 ____D C:\Program Files\PeaZip
2019-04-16 12:36 - 2019-04-16 12:36 - 000000000 ____D C:\Program Files\Combined Community Codec Pack 64bit
2019-04-16 12:36 - 2019-04-16 12:36 - 000000000 ____D C:\Program Files (x86)\ImgBurn
2019-04-16 12:34 - 2019-04-16 12:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.2
2019-04-16 12:33 - 2019-04-16 12:34 - 000000000 ____D C:\Program Files\LibreOffice
2019-04-16 12:16 - 2019-04-16 19:17 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-04-16 12:16 - 2019-04-16 15:06 - 000000000 ____D C:\Program Files (x86)\Realtek
2019-04-16 12:05 - 2019-04-16 12:05 - 000000000 ____D C:\Users\jjap5\AppData\Local\DBG
2019-04-16 12:00 - 2019-04-16 12:00 - 000000000 ____D C:\Program Files (x86)\AdoptOpenJDK
2019-04-16 11:46 - 2019-04-18 12:49 - 000000000 ____D C:\Windows\Panther
2019-04-16 11:44 - 2019-04-23 11:17 - 000000000 ____D C:\Users\jjap5\AppData\LocalLow\Mozilla
2019-04-16 11:44 - 2019-04-18 11:05 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Mozilla
2019-04-16 11:44 - 2019-04-17 18:52 - 000000000 ____D C:\Users\jjap5\AppData\Local\Mozilla
2019-04-16 11:27 - 2019-04-19 08:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-04-16 11:27 - 2019-04-18 17:02 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-04-16 11:27 - 2019-04-18 17:02 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-04-16 11:27 - 2019-04-16 11:44 - 000000000 ____D C:\ProgramData\Mozilla
2019-04-16 11:17 - 2019-04-20 16:18 - 000000000 ____D C:\Users\jjap5\AppData\Local\D3DSCache
2019-04-16 11:17 - 2019-04-16 11:17 - 026810368 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 024616960 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 023440896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 022114960 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 020815360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 019284480 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 019025408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 015223296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 012843520 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 012139008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 009682744 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 009670656 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 008898048 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 007919104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 007877120 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 007724992 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 007251456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 006925824 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 006544824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 006440960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 006309040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 006071296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 005915936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 005765120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 005588184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 005566464 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 005527552 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 005436904 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 005205448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 005112792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 005086208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 004920832 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 004883968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 004704272 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 004660224 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 004627456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 004588536 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 004527624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 004304896 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 004019200 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 003982848 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 003904512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 003761664 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 003744256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 003729808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 003690496 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 003657728 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 003656192 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 003652656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 003566080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 003551112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 003504128 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 003496448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AI.MachineLearning.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 003427840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 003421696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 003399168 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 003108864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002942464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002925880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 002871304 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 002842112 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002777224 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002765312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002752360 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002701304 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002689024 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002627384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 002469440 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002447360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002438368 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002392576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcGenral.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002346496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002323688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002298880 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002278240 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002275896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002127360 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002073960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 002001408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapGeocoder.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001994768 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001969464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 001918464 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001899160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001886208 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001860096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001830200 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001782272 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001760768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001720936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001715712 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001711104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001701888 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001697752 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-04-16 11:17 - 2019-04-16 11:17 - 001687552 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001674480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001671680 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001671352 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001656832 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001647632 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001641400 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001615872 ____R (The ICU Project) C:\Windows\SysWOW64\icuin.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001590064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001572176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001563336 _____ (Microsoft Corporation) C:\Windows\system32\ttdrecordcpu.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001521664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001506304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001481488 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001478968 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001468952 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 001467344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001459080 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001458056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001446400 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001415680 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001395056 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001387520 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001370624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001360184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 001342400 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-04-16 11:17 - 2019-04-16 11:17 - 001332224 _____ (Microsoft Corporation) C:\Windows\system32\lpasvc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001315328 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001314304 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001311232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001309696 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001307648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001297120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001294520 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001289192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001282640 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001272552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ttdrecordcpu.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001271608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001267712 _____ (Microsoft Corporation) C:\Windows\system32\APMon.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001259320 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2019-04-16 11:17 - 2019-04-16 11:17 - 001256448 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001254912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001249280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001224704 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001221944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001217024 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001200920 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001180248 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001179680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 001176064 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001155072 ____R (The ICU Project) C:\Windows\SysWOW64\icuuc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001145856 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001131520 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001098128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001078072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Services.TargetedContent.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001077912 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001072640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001072424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001064448 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001058304 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2019-04-16 11:17 - 2019-04-16 11:17 - 001056272 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001052160 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001047552 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001026792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001019392 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\refsutil.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 001001472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 001001472 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2019-04-16 11:17 - 2019-04-16 11:17 - 000998712 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000982528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Vpn.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000981816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000976896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000972288 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000964096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000954368 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000948224 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000927232 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000926208 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000918032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000913920 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000912384 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000909840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000908800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2019-04-16 11:17 - 2019-04-16 11:17 - 000902144 _____ (Microsoft Corporation) C:\Windows\system32\BingOnlineServices.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000897536 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000888320 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000888120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pidgenx.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000884224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000882688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000882176 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2019-04-16 11:17 - 2019-04-16 11:17 - 000875008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000866152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000865792 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000860160 _____ C:\Windows\system32\MBR2GPT.EXE
2019-04-16 11:17 - 2019-04-16 11:17 - 000845824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000836096 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000833064 _____ C:\Windows\system32\InputHost.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000829440 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000828728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000823296 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000821048 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000820736 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000815616 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000809784 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000800256 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000787456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000782968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000776192 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000775168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVolSSO.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000772608 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000772408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Services.TargetedContent.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000769536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000764216 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000762880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000762272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000742912 _____ (Microsoft Corporation) C:\Windows\system32\SpaceControl.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000737080 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000731648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000730936 _____ (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000730112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000725928 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000723968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingOnlineServices.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000714240 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000712192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000711168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000703488 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000701440 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000699392 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Language.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000684544 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000684032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000672256 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000660480 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000655160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000653040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000649064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\SharedRealitySvc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000626176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000624640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000622080 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000621568 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000620560 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000617784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000615936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000611840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000609792 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000599040 _____ (Microsoft Corporation) C:\Windows\system32\facecredentialprovider.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000598544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000591832 _____ C:\Windows\SysWOW64\InputHost.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000588304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000572416 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000568632 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000566272 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000560128 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000556544 _____ (Microsoft Corporation) C:\Windows\system32\BTAGService.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000553984 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000553784 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000552448 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000551936 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000549376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000548864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000547840 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000543744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000540448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000535048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000531968 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000528384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000525312 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000522312 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000519992 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000516608 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000506880 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000505344 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000500224 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_PCDisplay.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsound.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000496872 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000495104 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000494080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000494080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Activities.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\ResourceMapper.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000474928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-04-16 11:17 - 2019-04-16 11:17 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000461112 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000460800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000456704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000454144 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000453944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000452096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000449024 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000448000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000435712 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TileDataRepository.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000430904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000429056 _____ (Microsoft Corporation) C:\Windows\system32\MixedReality.Broker.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000427520 _____ (Microsoft Corporation) C:\Windows\system32\MSFlacDecoder.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000424960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000421688 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000420864 _____ (Microsoft Corporation) C:\Windows\system32\SettingsEnvironment.Desktop.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000414720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2019-04-16 11:17 - 2019-04-16 11:17 - 000411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000408528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000407552 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000385536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000383288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacDecoder.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000370688 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000365056 _____ (Microsoft Corporation) C:\Windows\system32\NotificationControllerPS.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\DataUsageHandlers.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000359424 _____ (Microsoft Corporation) C:\Windows\system32\dusmsvc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000349184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000349184 _____ (Microsoft Corporation) C:\Windows\system32\AcGenral.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000343552 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000340480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000332800 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000331776 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000331264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000330464 _____ (Microsoft Corporation) C:\Windows\system32\ttdwriter.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000324096 _____ (Microsoft Corporation) C:\Windows\system32\sppcommdlg.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000322568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000322048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\FSClient.dll
21 
2019-04-16 11:17 - 2019-04-16 11:17 - 000314368 _____ (Microsoft Corporation) C:\Windows\system32\AcLayers.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000312632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapibase.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000309760 _____ (Microsoft Corporation) C:\Windows\system32\fveui.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000305664 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000302592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000301568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000294912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RADCUI.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\MbbCx.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\discan.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000284160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasppp.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000279376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000272648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ttdwriter.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000263600 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000262456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000257696 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000251904 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000246784 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000246584 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\SharedPCCSP.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngOnline.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerCsp.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000201216 _____ (Microsoft Corporation) C:\Windows\system32\wincredui.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000188416 _____ (Microsoft Corporation) C:\Windows\system32\DMPushRouterCore.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000184320 _____ (Microsoft Corporation) C:\Windows\system32\rasman.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.SharedPC.CredentialProvider.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000180736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srumsvc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000177664 _____ (Microsoft Corporation) C:\Windows\system32\ngctasks.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000177152 _____ (Microsoft Corporation) C:\Windows\system32\LanguageComponentsInstaller.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000176640 _____ (Microsoft Corporation) C:\Windows\system32\spacebridge.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000173568 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000167424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryUpgrade.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredui.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000159272 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasman.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\container.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000147968 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000147496 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000146888 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SpatialAudioLicenseSrv.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000143880 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BitLockerCsp.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000137216 _____ (Microsoft Corporation) C:\Windows\system32\SpaceAgent.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000134456 _____ (Microsoft Corporation) C:\Windows\system32\ImplatSetup.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000134144 _____ (Microsoft Corporation) C:\Windows\system32\DataUsageLiveTileTask.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000133120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000132096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spopk.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000122368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000121872 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000121344 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000115360 _____ (Microsoft Corporation) C:\Windows\system32\phoneactivate.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000107832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000104960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000104960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000097280 _____ (Microsoft Corporation) C:\Windows\system32\EduPrintProv.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\nlahc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\PktMon.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000091424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CompPkgSup.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvsetup.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nslookup.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000074424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WindowsTrustedRT.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000071208 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\RDSPnf.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntlanman.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000049664 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\nshhttp.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\cmintegrator.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\lpkinstall.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscapi.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\perfproc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000039736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WppRecorder.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfproc.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshhttp.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dataclen.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\SecureBioSysprep.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys
2019-04-16 11:17 - 2019-04-16 11:17 - 000032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfts.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\RpcPing.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmintegrator.dll
2019-04-16 11:17 - 2019-04-16 11:17 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcPing.exe
2019-04-16 11:17 - 2019-04-16 11:17 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscdll.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 017513472 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 007883776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 007687576 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 007647256 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 007645608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 007556392 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 005561856 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 005296640 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 004991112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 004866560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AI.MachineLearning.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 004245280 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 003557888 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 003384832 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 003377976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 003334496 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 003334144 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 002995712 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 002842624 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 002766648 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 002720256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 002637312 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 002630656 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 002618880 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 002592816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 002469376 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 002466304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 002189312 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 002149368 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 002085376 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 002042368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 002022304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 002017792 _____ C:\Windows\system32\rdpnano.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001931264 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001892864 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001856000 ____R (The ICU Project) C:\Windows\system32\icuin.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001844448 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001742104 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001700880 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001672704 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001616384 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001605120 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001567232 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001533440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001496576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001462272 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001331536 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001296576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001259320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 001253688 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 001221120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 001213752 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001208320 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001199104 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001191728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001087800 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001057792 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 001054200 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 001053192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 001044280 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 001035776 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001032704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001022616 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 001007616 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000984888 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000982880 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000974352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000956416 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000955392 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000895048 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000883712 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000877056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.BackgroundMediaPlayback.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000874496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000871792 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000865784 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000864056 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000855040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Playback.MediaPlayer.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000850760 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000822272 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000807424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000799568 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000793832 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000790328 _____ (Microsoft Corporation) C:\Windows\system32\upshared.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000773120 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000766480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000761280 _____ (Microsoft Corporation) C:\Windows\system32\pkeyhelper.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000757664 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000756736 _____ (Microsoft Corporation) C:\Windows\system32\DolbyHrtfEnc.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000752136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000745984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000741888 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000691712 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000680184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000676352 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000675096 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000661816 _____ (Microsoft Corporation) C:\Windows\system32\computecore.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000651792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000651064 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000646656 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000646632 _____ (Microsoft Corporation) C:\Windows\system32\msvcp_win.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000612368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000605496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000604336 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000604008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\dsound.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000580024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000556544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000551936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000540672 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2019-04-16 11:16 - 2019-04-16 11:16 - 000527872 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000522752 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000513040 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000508216 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000508208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000506408 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000506168 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000485192 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_enclave.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000479232 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000475648 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000469504 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000463672 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000461824 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000449368 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000447488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000444728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000421392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000419128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000408800 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000407504 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000407040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000404792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000402944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000394752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AcLayers.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000388096 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000387832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000386872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000386360 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000385024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000384312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000375544 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000368640 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000355360 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000349184 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000348160 _____ (Microsoft Corporation) C:\Windows\system32\BioCredProv.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000346624 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000343984 _____ (Microsoft Corporation) C:\Windows\system32\AudioSrvPolicyManager.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000324408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000306488 _____ (Microsoft Corporation) C:\Windows\system32\computestorage.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000300032 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000298296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000283032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtapi.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000276488 _____ (Microsoft Corporation) C:\Windows\system32\MTF.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BioCredProv.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000264704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000263680 _____ (Microsoft Corporation) C:\Windows\system32\WiFiCloudStore.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000255128 _____ (Microsoft Corporation) C:\Windows\system32\SgrmBroker.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000248832 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000234808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netvsc.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\smbwmiv2.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000224256 _____ (Microsoft Corporation) C:\Windows\system32\ptpprov.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000217600 _____ (Microsoft Corporation) C:\Windows\system32\container.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000214528 _____ (Microsoft Corporation) C:\Windows\system32\srumsvc.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000211968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000202752 _____ (Microsoft Corporation) C:\Windows\system32\SecureTimeAggregator.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000202552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MTF.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000202552 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000198144 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000196608 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000195896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000195072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryUpgrade.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000193032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000183296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000178688 _____ (Microsoft Corporation) C:\Windows\system32\winbio.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000169784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spacebridge.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000165376 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSrv.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000159112 _____ (Microsoft Corporation) C:\Windows\system32\winquic.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000157496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000156984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winquic.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000148480 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000143872 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000143872 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000138960 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000131384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winbio.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\RjvMDMConfig.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\DolbyMATEnc.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\negoexts.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000115152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000114856 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSup.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\drvsetup.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000104248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\negoexts.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000098664 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000097808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000095544 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000095544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storqosflt.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000090424 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000089336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpr.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\KdsCli.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000080400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vpci.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\umpo-overrides.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\wcimage.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000047136 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2019-04-16 11:16 - 2019-04-16 11:16 - 000039304 _____ (Microsoft Corporation) C:\Windows\system32\NtlmShared.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000035640 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2019-04-16 11:16 - 2019-04-16 11:16 - 000033056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NtlmShared.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-04-16 11:16 - 2019-04-16 11:16 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2019-04-16 11:16 - 2019-04-16 11:16 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2019-04-16 11:16 - 2019-04-16 11:16 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2019-04-16 11:16 - 2019-04-16 11:16 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2019-04-16 11:16 - 2019-04-16 11:16 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2019-04-16 11:16 - 2019-04-16 11:16 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2019-04-16 11:16 - 2019-04-16 11:16 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2019-04-16 11:16 - 2019-04-16 11:16 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2019-04-16 11:16 - 2019-04-16 11:16 - 000000072 _____ C:\Windows\system32\edgehtmlpluginpolicy.bin
2019-04-16 11:16 - 2019-04-16 11:16 - 000000000 ____D C:\Users\jjap5\AppData\Local\OneDrive
2019-04-16 11:11 - 2019-04-22 16:21 - 131129288 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-04-16 11:11 - 2019-04-16 14:01 - 000000000 ____D C:\ProgramData\Packages
2019-04-16 11:11 - 2019-04-16 11:12 - 000000000 ____D C:\Windows\system32\MRT
2019-04-16 11:11 - 2019-04-16 11:11 - 000000000 ____D C:\Users\jjap5\AppData\Local\PackageStaging
2019-04-16 11:11 - 2019-04-16 11:11 - 000000000 ____D C:\Users\jjap5\AppData\Local\Comms
2019-04-16 11:06 - 2019-04-16 11:02 - 000592616 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2019-04-16 10:56 - 2019-04-20 16:56 - 000000000 ____D C:\Users\jjap5\AppData\Local\PlaceholderTileLogoFolder
2019-04-16 10:56 - 2019-04-19 13:25 - 000003380 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1819132632-2593063688-1292532904-1001
2019-04-16 10:56 - 2019-04-19 13:25 - 000000000 ___RD C:\Users\jjap5\OneDrive
2019-04-16 10:55 - 2019-04-23 11:23 - 001773362 _____ C:\Windows\system32\PerfStringBackup.INI
2019-04-16 10:55 - 2019-04-18 12:49 - 000000000 ____D C:\Program Files\AMD
2019-04-16 10:55 - 2019-04-16 16:39 - 000000000 ____D C:\ProgramData\Package Cache
2019-04-16 10:55 - 2019-04-16 15:27 - 000000000 ____D C:\ProgramData\AMD
2019-04-16 10:55 - 2019-04-16 15:26 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2019-04-16 10:55 - 2019-04-16 12:56 - 000000000 ____D C:\Users\jjap5\AppData\Local\AMD
2019-04-16 10:55 - 2019-04-16 10:55 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\ATI
2019-04-16 10:55 - 2019-04-16 10:55 - 000000000 ____D C:\Users\jjap5\AppData\Local\ATI
2019-04-16 10:55 - 2019-04-16 10:55 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-04-16 10:55 - 2019-04-16 10:55 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2019-04-16 10:55 - 2019-04-16 10:55 - 000000000 _____ C:\Windows\ativpsrm.bin
2019-04-16 10:54 - 2019-04-20 12:44 - 000000000 ____D C:\Users\jjap5\AppData\Local\Packages
2019-04-16 10:54 - 2019-04-16 19:21 - 000000000 ____D C:\Users\jjap5\AppData\Local\VirtualStore
2019-04-16 10:54 - 2019-04-16 11:22 - 000000000 ____D C:\Users\jjap5\AppData\Local\Publishers
2019-04-16 10:54 - 2019-04-16 11:19 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-04-16 10:54 - 2019-04-16 11:19 - 000000000 ___RD C:\Users\jjap5\3D Objects
2019-04-16 10:54 - 2019-04-16 11:13 - 000000000 ____D C:\Users\jjap5\AppData\Local\ConnectedDevicesPlatform
2019-04-16 10:54 - 2019-04-16 10:54 - 000000000 ___HD C:\Users\jjap5\MicrosoftEdgeBackups
2019-04-16 10:54 - 2019-04-16 10:54 - 000000000 ____D C:\Users\jjap5\AppData\Roaming\Adobe
2019-04-16 10:54 - 2019-04-16 10:54 - 000000000 ____D C:\Users\jjap5\AppData\Local\MicrosoftEdge
2019-04-16 10:50 - 2019-04-20 20:33 - 000000000 ____D C:\Users\jjap5
2019-04-16 10:50 - 2019-04-19 13:25 - 000002401 _____ C:\Users\jjap5\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-16 10:50 - 2019-04-16 10:50 - 000000020 ___SH C:\Users\jjap5\ntuser.ini
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\Reciente
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\Plantillas
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\Mis documentos
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\Menú Inicio
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\Impresoras
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\Entorno de red
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\Documents\Mis vídeos
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\Documents\Mis imágenes
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\Documents\Mi música
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\Datos de programa
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\Configuración local
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\AppData\Local\Historial
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\AppData\Local\Datos de programa
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 _SHDL C:\Users\jjap5\AppData\Local\Archivos temporales de Internet
2019-04-16 10:50 - 2019-04-16 10:50 - 000000000 ____D C:\ProgramData\USOShared
2019-04-16 10:49 - 2019-04-16 15:06 - 000000000 ____D C:\Windows\AMDTAs
2019-04-16 10:49 - 2019-04-16 10:49 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_amdpsp_01011.Wdf
2019-04-16 10:48 - 2019-04-16 11:16 - 002865152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Public\Documents\Mis vídeos
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Public\Documents\Mis imágenes
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Public\Documents\Mi música
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\Reciente
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\Plantillas
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\Mis documentos
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\Menú Inicio
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\Impresoras
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\Entorno de red
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\Documents\Mis vídeos
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\Documents\Mis imágenes
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\Documents\Mi música
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\Datos de programa
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\Configuración local
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historial
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\AppData\Local\Datos de programa
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default\AppData\Local\Archivos temporales de Internet
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default User\Documents\Mis vídeos
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default User\Documents\Mis imágenes
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default User\Documents\Mi música
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Historial
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Datos de programa
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Archivos temporales de Internet
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\ProgramData\Plantillas
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\ProgramData\Menú Inicio
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\ProgramData\Escritorio
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\ProgramData\Documentos
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\ProgramData\Datos de programa
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Program Files\Archivos comunes
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Documents and Settings
2019-04-16 10:48 - 2019-04-16 10:48 - 000000000 _SHDL C:\Archivos de programa
2019-04-16 10:46 - 2019-04-23 11:16 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-04-16 10:46 - 2019-04-23 10:30 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-04-16 10:46 - 2019-04-23 08:56 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-04-16 10:46 - 2019-04-16 15:02 - 000458536 _____ C:\Windows\system32\FNTCACHE.DAT
2019-04-16 10:46 - 2019-04-16 10:46 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2019-04-16 10:46 - 2019-04-16 10:46 - 000000000 ____D C:\Windows\ServiceProfiles
2019-04-16 09:22 - 2019-04-16 09:22 - 000247952 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetLwf.sys
2019-04-16 09:22 - 2019-04-16 09:22 - 000236560 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetAdp6.sys
2019-04-03 22:59 - 2019-04-03 22:59 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2019-04-03 22:59 - 2019-04-03 22:59 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2019-04-03 22:59 - 2019-04-03 22:59 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2019-04-03 22:59 - 2019-04-03 22:59 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-23 11:23 - 2018-09-15 18:36 - 000788392 _____ C:\Windows\system32\perfh00A.dat
2019-04-23 11:23 - 2018-09-15 18:36 - 000155682 _____ C:\Windows\system32\perfc00A.dat
2019-04-23 11:23 - 2018-09-15 09:31 - 000000000 ____D C:\Windows\INF
2019-04-23 11:16 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-23 11:15 - 2018-09-15 08:09 - 000524288 _____ C:\Windows\system32\config\BBI
2019-04-23 10:43 - 2018-09-15 09:33 - 000000000 ___HD C:\Windows\ELAMBKUP
2019-04-23 08:54 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-23 08:54 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\AppReadiness
2019-04-22 17:06 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\NDF
2019-04-21 16:23 - 2018-09-15 09:33 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2019-04-21 16:23 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2019-04-18 12:43 - 2018-09-15 09:23 - 000000000 ____D C:\Windows\CbsTemp
2019-04-18 12:42 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\SysWOW64\MUI
2019-04-18 12:42 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\MUI
2019-04-17 10:09 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\appcompat
2019-04-16 12:14 - 2017-07-18 23:30 - 001122200 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2019-04-16 11:46 - 2018-09-15 09:31 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2019-04-16 11:34 - 2018-09-15 08:09 - 000000000 ____D C:\Windows\servicing
2019-04-16 11:18 - 2018-09-15 09:33 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2019-04-16 11:18 - 2018-09-15 09:33 - 000000000 ___RD C:\Program Files\Windows Defender
2019-04-16 11:18 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\TextInput
2019-04-16 11:18 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\SysWOW64\oobe
2019-04-16 11:18 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\SysWOW64\Dism
2019-04-16 11:18 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\oobe
2019-04-16 11:18 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\migwiz
2019-04-16 11:18 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\appraiser
2019-04-16 11:18 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\ShellExperiences
2019-04-16 11:18 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\ShellComponents
2019-04-16 11:18 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\bcastdvr
2019-04-16 11:18 - 2018-09-15 08:09 - 000000000 ____D C:\Windows\system32\Dism
2019-04-16 11:11 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\ServiceState
2019-04-16 10:50 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2019-04-16 10:50 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\USOPrivate
2019-04-16 10:48 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\spool
2019-04-16 10:48 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\FxsTmp
2019-04-16 10:48 - 2018-09-15 09:33 - 000000000 ____D C:\Program Files\windows nt
2019-04-16 10:47 - 2018-09-15 09:33 - 000000000 ___RD C:\Windows\PrintDialog
2019-04-16 10:47 - 2018-09-15 09:33 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2019-04-16 10:46 - 2018-09-15 08:09 - 000032768 _____ C:\Windows\system32\config\ELAM
2019-04-01 20:02 - 2018-09-15 09:36 - 000835480 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-04-01 20:02 - 2018-09-15 09:36 - 000179608 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================
22

Hola @3patastienelgat

No has comentado que paso al final con la descarga en Modo Seguro? Termino??

Es importante que ademas de los reportes hagas algún comentario con respecto al tema.

Importante:

Ejecutaste FRST desde una ubicación incorrecta:

Running from C:\Users\jjap5\Desktop*Scannear*

Debes cortarlo y pegarlo en el escritorio, no debe estar dentro de ninguna carpeta.

1.- Desinstala con Revo Uninstaller en su Modo Avanzado:

  • Semana antimalware, Superantiespyware y FormatFactory

Manual de Revo Uninstaller.

2.- Luego de reiniciar realiza lo siguiente:

Abre un nuevo archivo Notepad y copia y pega este contenido:


Start
CloseProcesses:
CreateRestorePoint:
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {34443FAF-B79B-4A18-AA4F-1BE362F2C806} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-04-16] (Brave Software, Inc. -> BraveSoftware Inc.) <==== ATTENTION
Task: {B116774F-3D64-4B17-AE16-8FB92A2C7912} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <==== ATTENTION
Task: {BDFA3744-60A2-42F4-B4A9-D7C06E037AD4} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-04-16] (Brave Software, Inc. -> BraveSoftware Inc.) <==== ATTENTION
Task: {F1E47C07-BA06-473E-AAA9-8122181767E2} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <==== ATTENTION
Tcpip\..\Interfaces\{10372de3-b85a-4485-95e4-5c68f3c2a721}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{5ef195ef-1513-43ac-b7e7-ed9ed2910979}: [DhcpNameServer] 80.58.61.250 80.58.61.254
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
S1 amsdk; \??\C:\Windows\system32\drivers\amsdk.sys [X]
S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X]
S3 NTIOLib_DVDSetup; \??\G:\NTIOLib_X64.sys [X]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [125]

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.

Nos comentas como sigue el problema.

Salu2.

23

La descarga como dije en el comentario anterior no se cortó. Incluso descargue otra iso de 4,4 GB en modo normal y no se cortó.

28

Despues de ejecutar Frst.exe se me cortó Internet y el error que me dio fue:DHCP no esta habilitado para “Ethernet”

Fix result of Farbar Recovery Scan Tool (x64) Version: 23.04.2019
Ran by jjap5 (24-04-2019 10:21:41) Run:1
Running from C:\Users\jjap5\Desktop
Loaded Profiles: jjap5 (Available Profiles: jjap5)
Boot Mode: Normal
==============================================

fixlist content:
*****************

Start
CloseProcesses:
CreateRestorePoint:
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {34443FAF-B79B-4A18-AA4F-1BE362F2C806} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-04-16] (Brave Software, Inc. -> BraveSoftware Inc.) <==== ATTENTION
Task: {B116774F-3D64-4B17-AE16-8FB92A2C7912} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <==== ATTENTION
Task: {BDFA3744-60A2-42F4-B4A9-D7C06E037AD4} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [154056 2019-04-16] (Brave Software, Inc. -> BraveSoftware Inc.) <==== ATTENTION
Task: {F1E47C07-BA06-473E-AAA9-8122181767E2} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <==== ATTENTION
Tcpip\..\Interfaces\{10372de3-b85a-4485-95e4-5c68f3c2a721}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{5ef195ef-1513-43ac-b7e7-ed9ed2910979}: [DhcpNameServer] 80.58.61.250 80.58.61.254
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-1819132632-2593063688-1292532904-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
S1 amsdk; \??\C:\Windows\system32\drivers\amsdk.sys [X]
S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X]
S3 NTIOLib_DVDSetup; \??\G:\NTIOLib_X64.sys [X]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [125]

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END

    Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

    Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicaci�n (escritorio) o si no la herramienta no trabajara.

    Ejecutas Frst.exe.
    Presionas el bot�n Fix y aguardas a que termine.
    La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
    Lo pegas en tu pr�xima respuesta.

    ATENCION!!! El siguiente Script de reparaci�n fue hecho espec�ficamente por un miembro del staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar da�os a su equipo

Nos comentas como sigue el problema.

Salu2.
*****************

Processes closed successfully.
Restore point was successfully created.
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{34443FAF-B79B-4A18-AA4F-1BE362F2C806}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{34443FAF-B79B-4A18-AA4F-1BE362F2C806}" => removed successfully
C:\Windows\System32\Tasks\BraveSoftwareUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BraveSoftwareUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B116774F-3D64-4B17-AE16-8FB92A2C7912}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B116774F-3D64-4B17-AE16-8FB92A2C7912}" => removed successfully
C:\Windows\System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MicrosoftEdgeUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BDFA3744-60A2-42F4-B4A9-D7C06E037AD4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BDFA3744-60A2-42F4-B4A9-D7C06E037AD4}" => removed successfully
C:\Windows\System32\Tasks\BraveSoftwareUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BraveSoftwareUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F1E47C07-BA06-473E-AAA9-8122181767E2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F1E47C07-BA06-473E-AAA9-8122181767E2}" => removed successfully
C:\Windows\System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MicrosoftEdgeUpdateTaskMachineCore" => removed successfully
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{10372de3-b85a-4485-95e4-5c68f3c2a721}\\NameServer" => removed successfully
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{5ef195ef-1513-43ac-b7e7-ed9ed2910979}\\DhcpNameServer" => removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\Software\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
"HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKLM\System\CurrentControlSet\Services\amsdk => removed successfully
amsdk => service removed successfully
HKLM\System\CurrentControlSet\Services\EuGdiDrv => removed successfully
EuGdiDrv => service removed successfully
HKLM\System\CurrentControlSet\Services\NTIOLib_DVDSetup => removed successfully
NTIOLib_DVDSetup => service removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\CLSID\{B298D29A-A6ED-11DE-BA8C-A68E55D89593} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\CLSID\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
C:\ProgramData\TEMP => ":5C321E34" ADS removed successfully

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

Error en la operaci¢n. No hay ning£n adaptador permitido para 
esta operaci¢n.

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

0 out of 0 jobs canceled.

========= End of CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-1819132632-2593063688-1292532904-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante. => Error: No automatic fix found for this entry.
Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicaci�n (escritorio) o si no la herramienta no trabajara. => Error: No automatic fix found for this entry.
Ejecutas Frst.exe. => Error: No automatic fix found for this entry.
Presionas el bot�n Fix y aguardas a que termine. => Error: No automatic fix found for this entry.
La Herramienta guardara el reporte en tu escritorio (Fixlog.txt). => Error: No automatic fix found for this entry.
Lo pegas en tu pr�xima respuesta. => Error: No automatic fix found for this entry.
ATENCION!!! El siguiente Script de reparaci�n fue hecho espec�ficamente por un miembro del staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar da�os a su equipo => Error: No automatic fix found for this entry.
Nos comentas como sigue el problema. => Error: No automatic fix found for this entry.
Salu2. => Error: No automatic fix found for this entry.

=========== EmptyTemp: ==========

BITS transfer queue => 7364608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 27566981 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 261389 B
Edge => 797957 B
Chrome => 0 B
Firefox => 70328010 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 1436 B
LocalService => 0 B
NetworkService => 26718 B
NetworkService => 0 B
jjap5 => 232838549 B

RecycleBin => 0 B
EmptyTemp: => 323.5 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 10:22:15 ====

Algo que no dije en el comentario anterior es que despues que Frst.exe terminó me pidio reiniciar y lo hice.
En el escritorio solo habia el archivo que les mandé y el programa Frst.exe.
Por cierto ayer como todo funcionaba bien se me ocurrió poner una direccion IP en el administrador de red diferente de la automatica.
Me pondré a descargar como loco para ver si todo funciona bien.
Gracias y saludos.

Otra cosa que queria comentar es que tengo varias copias de seguridad desde Windows 10 y con el programa Acronis.¿ Tendria que borrarlas y hacer nuevas copias de seguridad?

Otra cosa que estoy probando es cambiar el modem Router por un TP-Link  TD-W8970 que cambié por si fuera problema del Modem Router que me mandò mi compañia de Adsl. El cual es un Observa Telecom AW4062..Estoy descargando archivos grandes de mas de 1GB para saber si funciona o no.
29

Hola @3patastienelgat

Prueba el equipo unas 24 hs vuelves y nos comentas si todo está en orden así te doy los pasos para eliminar las herramientas utilizadas y dar por resuelto el tema

Una vez que terminemos con todo, deberás hacer nuevas copias.

Salu2

30

Buenos dias el problema parece que se solucionó. ¿Tengo algunas preguntas que me gustaria que me respondierais y son las siguientes: ¿Que tipo de virus o lo que sea que tenia? Para tener mas cuidado la proxima vez o si tengo que instalar un antivirus diferente de Windows Defender.

¿Porque me está fallando tanto el navegador Firefox? La ventana que me sale cada vez que reinicio es la siguiente: Modo seguro de Firefox El modo seguro es un modo especial de Firefox que puede ser usado para solucionar problemas. Sus complementos y ajustes personalizados se deshabilitaran temporalmente y las caracteristicas de Firefox podrian no funcionar como lo hacen normalmente. Tambien puede omitir la solucion de problemas y probar a restablecer Firefox. Abajo me salen dos opciones. Iniciar el modo seguro y Restablecer Firefox. Este error me sale desde que entré al foro a comentar con ustedes. Dandole a cualquiera de las opciones Firefox funciona normalmente.Solo despues de reiniciar o encender el ordenador me sale esta ventanita. En cuanto al problema parece que se soluciono del todo pues estube descargando varias iso en total varias gigas y ni un solo problema de cortes. Le estube dando muchas vueltas a la cabeza de que podria ser esto y al final gracias a ustedes estoy mas tranquilo. Saludos.

31

Hola @3patastienelgat

En realidad como tu mismo pudiste observar no había infecciones en los reportes de todos los programas que corriste.

Si, muchos bloqueos y restricciones, algún programa malicioso y muchas antimalwares que pueden ser un problema, con Malwarebytes es mas que suficiente.

Reseteando con FRST todo lo relativo a Host, Proxie y restricciones en los navegadores se soluciono.

Mira a mi no me pareció un mal antivirus, yo lo uso en Windows 10 bien configurado, pero a diferencia tuya no descargo casi nada :rofl:

Te dejo el Manual que hice hace muy poco:

Pd: Nunca olvides analizar tus descargas.

Y si aun a futuro deseas cambiarlo, prueba Kaspersky Free.

Pueda ser que tuvimos que resetear algunas de sus configuraciones, prueba lo dicho en el siguiente enlace para restablecer Firefox:

PUP/Adware en: Mozilla Firefox

Si aun así el problema persiste vienes y lo comentas, que buscamos otra solución.

Eso es lo mas importante :clap:

Nos comentas sobre tu navegador.

Salu2

32

Hola SanMar, creo que me instalare Kaspersky Free por que suelo descargar mucho. ¿podria junto a este antivirus tener Malewarebytes?. En cuanto a Firefox ya le di a restablecer y no me volvió a salir ninguna ventanita. Y con el FRST que hago,¿ lo elimino sin mas y ya está? Muchas Gracias por la ayuda y seguiré aprendiendo con ustedes.Saludos.

33

Hola @3patastienelgat:

Para eliminar las herramientas utilizadas:

Descargas >> [size=2]Delfix[/size], a tu escritorio.

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7 /8 /10,presiona clic derecho y selecciona >> “Ejecutar como Administrador”)
  • Marca las casilla Remove disinfection tools y Purgue Sistem Restore
  • Pulsar en Run.

Se abrira el informe (DelFix.txt), guardalo por si fuera necesario y cierra la herramienta.

Puedes tener Malwarebytes Free con el Av sin problemas.

Para otras consultas ya sabes dónde encontrarnos.:+1:

Tema Solucionado

Saludos

34

Este tema se cerró automáticamente 2 días después del último post. No se permiten nuevas respuestas.