Desinstalar completamente Avast

Buenas,

Estoy intentando desinstalar completamente Avast de mi ordenador. Me he descargado la herramienta de desinstalación de avast y la he usado. Eché también un ojo al tutorial de como desinstalar un antivirus que no se termina de desinstalar correctamente, y veo que el ordenador me lo sigue detectando. Cuando trato de eliminarlo por ese último método me sale un mensaje de error que dice “acceso denegado” y me impide borrarlo.

¿Alguna solución?

Un saludo!

Hola @Jandro.

Cuando hagas esos pasos que indicas del “tutorial” realizalos desde el modo seguro de Windows, desde modo normal suele dar ese tipo de error.

Como acceder a :arrow_right: Modo Seguro – con funciones de Red, de Windows 7 y anteriores.

O usar el 2º MÉTODO: de esta Faq de Windows 8(aplicable a Windows 10) :arrow_right: ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?.

Una vez que lo hayas terminado realiza estos pasos :

:one: Desactiva temporalmente el Antivirus :arrow_forward: Cómo deshabilitar temporalmente su Antivirus, mientras estemos realizando TODOS los pasos.

Descargar en TU ESCRITORIO(y NO en otro lugar :face_with_monocle:)

:two: Farbar Recovery Scan Tool.-

  • Ejecuta FRST.exe.

  • En el mensaje de la ventana del Disclaimer o Responsabilidad, pulsamos Yes/Si

  • En la ventana principal pulsamos en el botón Analizar/Scan y esperamos a que concluya el proceso.

  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

:three: Poner los dos informes en tu próxima respuesta.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Saludos, Javier.

1 me gusta

Gracias por la respuesta! Aqui va el Frst.txt:

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 05-08-2020
Ejecutado por usuario (administrador) sobre ALEWIN10 (Gigabyte Technology Co., Ltd. B250M-DS3H) (06-08-2020 19:42:07)
Ejecutado desde D:\_PERFIL\Desktop
Perfiles cargados: usuario
Platform: Windows 10 Pro Versión 2004 19041.388 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Software Development Products -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_bff7913eb62bbf90\aesm_service.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\usuario\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\MsMpEng.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321592 2019-03-11] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\Avast Software\Avast\AvLaunch.exe" /gui
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATENCIÓN
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpfpp70w: C:\Windows\System32\spool\prtprocs\x64\hpfpp70w.dll [249856 2009-04-20] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpf3l70w.dll: C:\WINDOWS\system32\hpf3l70w.dll [136704 2009-04-20] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-30] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {1CBCAA92-D0FB-4E82-B8C9-B655B670AD15} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {2A2D5294-C214-4E1E-BD55-472F866C8C94} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {2D72EE41-A825-4D82-8DF4-EBEA7B11436D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2E52DA27-68F7-4AB0-A44A-322E681595E8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-04-28] (Google Inc -> Google Inc.)
Task: {5B52E5C9-81C4-407D-9B08-27C374551997} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe
Task: {691AF79D-78AC-4BE8-8E66-CFE4559E3717} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {81633813-6AAB-430F-9D10-4880D936AACB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8C3F5461-3AC5-4B5B-B69B-38ADDEABC876} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B83C9766-19B0-49D5-9C1B-C78FD9115FF4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
Task: {FD26BC41-B50D-47A7-BAEB-A8423ACF3C74} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {FE9B621A-E314-48FA-83E2-4E6A3391F3A4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-04-28] (Google Inc -> Google Inc.)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2be055fd-7a04-4ca8-9b6e-6ce2eeed2f1f}: [DhcpNameServer] 62.81.16.148 62.81.16.213
Tcpip\..\Interfaces\{c1981b37-1ea8-4b5b-b856-43a7f122cd86}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-4287266578-922368335-2543262076-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE03&ocid=UE03DHP
SearchScopes: HKU\S-1-5-21-4287266578-922368335-2543262076-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
SearchScopes: HKU\S-1-5-21-4287266578-922368335-2543262076-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
SearchScopes: HKU\S-1-5-21-4287266578-922368335-2543262076-1001 -> {E800338E-B8C0-44E0-AFCE-6721D79B84EE} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-07-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-17] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Sin Nombre - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} -  Ningún archivo
Toolbar: HKLM-x32 - Sin Nombre - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} -  Ningún archivo

Edge: 
======
DownloadDir: D:\_PERFIL\Downloads
Edge Profile: C:\Users\usuario\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-06]
Edge DownloadDir: D:\_PERFIL\Downloads

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default [2020-08-06]
CHR DownloadDir: D:\_PERFIL\Desktop
CHR HomePage: Default -> hxxp://www.google.com
CHR Extension: (Presentaciones) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Documentos) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-27]
CHR Extension: (YouTube) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-27]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-07-27]
CHR Extension: (Sin Nombre) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcbeddldohkakodfncjnkkjfojggbahp [2017-04-27]
CHR Extension: (Hojas de cálculo) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-04]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-30]
CHR Extension: (Gmail) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-15]
CHR Profile: C:\Users\usuario\AppData\Local\Google\Chrome\User Data\System Profile [2020-04-02]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-12-08] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Archivo no firmado]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Archivo no firmado]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4956856 2020-06-24] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\NisSrv.exe [2169568 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MsMpEng.exe [128376 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

S3 athur; C:\WINDOWS\System32\drivers\athurx.sys [3223040 2011-06-01] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
S3 gdrv; C:\Windows\gdrv.sys [26192 2017-04-27] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [78216 2020-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [430320 2020-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [98520 2020-08-05] (Microsoft Windows -> Microsoft Corporation)
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)


==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-08-06 19:41 - 2020-08-06 19:42 - 000000000 ____D C:\FRST
2020-08-06 19:19 - 2020-08-06 19:19 - 000000000 ____D C:\WINDOWS\pss
2020-08-06 16:01 - 2020-08-06 19:31 - 082575360 _____ C:\WINDOWS\system32\config\SOFTWARE
2020-08-06 14:46 - 2020-08-06 14:47 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-08-06 14:46 - 2020-08-06 14:46 - 000003652 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-08-06 14:46 - 2020-08-06 14:46 - 000003528 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-17 17:56 - 2020-07-17 17:56 - 026271744 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 024264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 023433216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 019868672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 018766336 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 018068992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 017540608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 014754816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 010922808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 010336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 009034752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 008892600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 007992824 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 007964416 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 007593544 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 007593472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 007534160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 007070208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 006920192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 006709248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 006404608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 006356008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 006175232 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 006060544 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 006029312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 005964496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 005821952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 005766168 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 005337504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 004783328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 004734976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 004629328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 004485216 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 003925856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 003906048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 003860480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 003818496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 003812304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 003810816 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-07-17 17:56 - 2020-07-17 17:56 - 003779896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-07-17 17:56 - 2020-07-17 17:56 - 003778560 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 003752448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 003749376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 003547280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002963456 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-07-17 17:56 - 2020-07-17 17:56 - 002918216 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002744320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-07-17 17:56 - 2020-07-17 17:56 - 002631168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002585912 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002568192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002566144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002520048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002466864 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002399744 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002338304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002311680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002305024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002286128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002245632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002177528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002131024 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002104320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002077696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002040832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 002026496 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001978656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001956016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001952392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001876480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001858560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001784488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001766912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001762632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001712128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001710080 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001705472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001701368 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001668904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001654824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001641472 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001640888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001606656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001557824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 001556480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001550336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001509736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001507328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 001495552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001491968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001474048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001449280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001448448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001422336 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 001403904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001378568 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001374720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001359872 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsf3gip.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001352232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001305600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001303040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001301592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001286560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001255744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 001253888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001246720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001239552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001222656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001218560 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001207296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001195520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001182008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001145344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001126472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001114112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001090560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001082168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001071224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001069056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001058816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001048480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001043456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001041408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001022976 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001014872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001008184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001006592 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000994248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000991744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000968192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000966872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000957952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000945664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000937464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000933176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000914200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000903168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000902976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-07-17 17:56 - 2020-07-17 17:56 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000889384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000881112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000879104 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000876544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000868352 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000858624 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000856328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000843264 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000831016 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000824328 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000814592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000804864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000804352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000801560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000799552 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000798720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000779360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000774456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000758784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000753152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000748360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000721024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000720896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000704496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000696240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000676088 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000673976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000644096 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntimewindows.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000634680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000633856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntime.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000623960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000623392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000606880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-07-17 17:56 - 2020-07-17 17:56 - 000596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000595512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000590848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000565760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000565760 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000560400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000555744 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000539960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000539256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000531456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000523720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000522040 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000506672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-07-17 17:56 - 2020-07-17 17:56 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000487552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000482616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000475704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellAPI.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000466928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000455168 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000454968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-07-17 17:56 - 2020-07-17 17:56 - 000453952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000443704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000423424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000423224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000423224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000420936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000419840 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000413208 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000409552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000407504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000395600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000389952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000380632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreShellAPI.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnclient.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000343992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AarSvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-07-17 17:56 - 2020-07-17 17:56 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000319808 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000313152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000311920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnclient.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Devices.Sensors.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000280064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000276480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-07-17 17:56 - 2020-07-17 17:56 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000260288 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000253016 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000249656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2020-07-17 17:56 - 2020-07-17 17:56 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-07-17 17:56 - 2020-07-17 17:56 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000227640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleBand.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-07-17 17:56 - 2020-07-17 17:56 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000217912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000215896 _____ (Microsoft Corporation) C:\WINDOWS\system32\coreglobconfig.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Devices.Sensors.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000195128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-07-17 17:56 - 2020-07-17 17:56 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000180024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-07-17 17:56 - 2020-07-17 17:56 - 000179000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2020-07-17 17:56 - 2020-07-17 17:56 - 000173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000171024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000163208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coreglobconfig.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000151864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000148280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000132728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000113112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000111616 _____ C:\WINDOWS\system32\RDVGHelper.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000095032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-07-17 17:56 - 2020-07-17 17:56 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000092952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.AccountsControlExperience.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000086784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000076992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000071792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000070968 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.internal.shellcommon.AccountsControlExperience.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemUWPLauncher.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000061752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagnosticdataquery.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000052664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000040248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000024288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerEnc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000021304 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000020632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerEnc.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDJPN.DLL
2020-07-17 17:56 - 2020-07-17 17:56 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2020-07-17 17:56 - 2020-07-17 17:56 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteFXvGPUDisablement.exe
2020-07-17 17:56 - 2020-07-17 17:56 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000009269 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-07-17 17:56 - 2020-07-17 17:56 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106n.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd106.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbd101.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106n.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd101.DLL
2020-07-17 17:56 - 2020-07-17 17:56 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-07-17 17:56 - 2020-07-17 17:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-07-17 17:55 - 2020-07-17 17:55 - 000678200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-07-17 17:55 - 2020-07-17 17:55 - 000215864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-07-17 17:55 - 2020-07-17 17:55 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys
2020-07-17 17:53 - 2020-06-30 05:04 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-07-17 17:53 - 2020-06-30 04:58 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe


==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-08-06 19:36 - 2020-06-24 12:40 - 001774678 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-08-06 19:36 - 2019-12-07 16:55 - 000788338 _____ C:\WINDOWS\system32\perfh00A.dat
2020-08-06 19:36 - 2019-12-07 16:55 - 000155726 _____ C:\WINDOWS\system32\perfc00A.dat
2020-08-06 19:36 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-08-06 19:34 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-06 19:32 - 2020-06-24 12:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-08-06 19:32 - 2020-06-24 12:37 - 000008192 ___SH C:\DumpStack.log.tmp
2020-08-06 19:32 - 2017-04-27 17:51 - 000000000 ____D C:\ProgramData\NVIDIA
2020-08-06 19:31 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-08-06 19:29 - 2020-05-08 19:28 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-08-06 16:01 - 2020-04-01 16:45 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2020-08-06 14:45 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-08-06 14:44 - 2017-04-27 21:09 - 000000000 ____D C:\ProgramData\AVAST Software
2020-08-06 14:34 - 2020-06-24 12:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-08-06 13:50 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-08-06 13:50 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-08-06 12:09 - 2020-06-24 12:42 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-08-06 12:09 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-08-05 12:44 - 2018-05-13 12:45 - 000000000 ____D C:\Users\usuario\AppData\Local\PlaceholderTileLogoFolder
2020-08-05 12:16 - 2017-11-07 21:48 - 000000000 ____D C:\Users\usuario\AppData\Local\Packages
2020-08-05 10:03 - 2018-05-13 13:14 - 000000000 ____D C:\Users\usuario\AppData\Local\D3DSCache
2020-08-05 10:02 - 2018-05-12 20:09 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-08-05 00:11 - 2017-04-27 20:47 - 000000000 ____D C:\Users\usuario\AppData\Local\CrashDumps
2020-08-04 12:02 - 2017-11-01 21:40 - 000000000 ____D C:\Program Files (x86)\Steam
2020-08-01 22:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-07-30 22:01 - 2020-06-24 12:42 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4287266578-922368335-2543262076-1001
2020-07-30 22:01 - 2020-06-24 12:16 - 000002410 _____ C:\Users\usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-07-30 22:01 - 2017-06-20 11:08 - 000000000 ___RD C:\Users\usuario\OneDrive
2020-07-30 00:04 - 2017-04-27 21:12 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-17 21:42 - 2017-06-22 12:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-07-17 21:42 - 2017-06-22 12:15 - 000000000 ____D C:\Program Files (x86)\Java
2020-07-17 21:41 - 2017-06-22 12:15 - 000166056 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2020-07-17 17:59 - 2020-06-24 12:37 - 000446008 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-17 17:58 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-07-17 17:58 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-07-17 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-07-17 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-07-17 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-07-17 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-07-17 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-07-17 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-07-17 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-07-17 17:58 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-17 17:58 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2020-07-15 19:18 - 2018-06-22 20:19 - 000000000 ____D C:\ProgramData\HP
2020-07-15 19:17 - 2018-06-22 20:21 - 000000000 ____D C:\Program Files (x86)\HP
2020-07-15 19:06 - 2018-06-22 20:52 - 000196327 _____ C:\WINDOWS\hpwins27.dat
2020-07-15 19:06 - 2017-03-18 23:03 - 000000202 _____ C:\WINDOWS\win.ini
2020-07-15 12:34 - 2017-06-20 11:08 - 000000000 ____D C:\Users\usuario\AppData\Roaming\Skype
2020-07-12 10:59 - 2020-01-12 17:23 - 000196327 _____ C:\WINDOWS\hpwins27.dat.temp
2020-07-07 19:44 - 2020-06-24 11:27 - 000000000 ___DC C:\WINDOWS\Panther
2020-07-07 18:51 - 2020-06-24 12:42 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-07-07 18:50 - 2017-04-29 00:37 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================

Y el addition:

Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 05-08-2020
Ejecutado por usuario (06-08-2020 19:42:54)
Ejecutado desde D:\_PERFIL\Desktop
Windows 10 Pro Versión 2004 19041.388 (X64) (2020-06-24 10:42:10)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-4287266578-922368335-2543262076-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4287266578-922368335-2543262076-503 - Limited - Disabled)
Invitado (S-1-5-21-4287266578-922368335-2543262076-501 - Limited - Disabled)
usuario (S-1-5-21-4287266578-922368335-2543262076-1001 - Administrator - Enabled) => C:\Users\usuario
WDAGUtilityAccount (S-1-5-21-4287266578-922368335-2543262076-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
7-Zip 19.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
AutoFirma (HKLM-x32\...\AutoFirma ) (Version: 1.5.0.JAv01 - Junta de Andalucía)
Complemento Guardar como PDF o XPS de Microsoft para programas de Microsoft Office 2007 (HKLM-x32\...\{90120000-00B2-0C0A-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Epic Games Launcher (HKLM-x32\...\{D19DBA3B-7451-49DB-98C4-E22F824663D9}) (Version: 1.1.220.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.105 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.9.6.1044 - Intel Corporation)
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 81.0.416.88 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.127.15 - )
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4287266578-922368335-2543262076-1001\...\OneDriveSetup.exe) (Version: 20.124.0621.0006 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
NVIDIA Controlador de audio HD 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Panel de control de NVIDIA 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 432.00 - NVIDIA Corporation) Hidden
QGIS 3.12.3 'Bucuresti' (HKLM\...\QGIS 3.12) (Version: 3.12.3 - QGIS Development Team)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
Software para dispositivos de chipset Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)

Packages:
=========
Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-09-12] (Microsoft Corporation)
Complemento de motor del medio de Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-08-05] (Microsoft Corporation)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2619.19263.0_x86__8xx8rvfyw5nnt [2019-10-11] (Facebook Inc)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-28] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-28] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-28] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.7162.0_x64__8wekyb3d8bbwe [2020-07-22] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.1002.0_x64__8wekyb3d8bbwe [2020-07-22] (Microsoft Studios)
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-27] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.180.0_x64__dt26b99r8h8gj [2019-11-29] (Realtek Semiconductor Corp)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Ningún archivo
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Archivo no firmado]

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) [Archivo no firmado] c:\windows\system32\hpzinw12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) [Archivo no firmado] c:\windows\system32\hpzipm12.dll
2019-02-21 22:00 - 2019-02-21 22:00 - 000078336 _____ (Igor Pavlov) [Archivo no firmado] C:\Program Files\7-Zip\7-zip.dll

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2017-03-18 23:03 - 2019-01-04 17:39 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-4287266578-922368335-2543262076-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\usuario\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\cefa79a62f7bf7bc673d6910e0ccbe541cd3efa3.jpg
DNS Servers: El medio no está conectado a internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{53FB89DC-F2D0-4B76-B73E-CE3568E4EA9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori and the Will of the Wisps\oriwotw.exe () [Archivo no firmado]
FirewallRules: [{93F7326B-10BA-4DC0-A755-B6147EE8CCDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori and the Will of the Wisps\oriwotw.exe () [Archivo no firmado]
FirewallRules: [UDP Query User{73A789CF-97C8-4A2B-BF75-A8D60C35D386}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{CAB4882D-5548-40C9-BF0F-FF8B955571F6}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{D53D9B02-6B92-4360-85A4-8ED934DB4EA5}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{78DD9500-0566-4A11-951A-08EE103A2083}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{C93635D3-0680-45B8-AC4E-7ADDF4CB7E60}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori\ori.exe () [Archivo no firmado]
FirewallRules: [{2BC38C47-E987-4C1F-B2CD-31422EE9432D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori\ori.exe () [Archivo no firmado]
FirewallRules: [{9A443173-9277-44B9-977F-DDCDC813240A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori DE\oriDE.exe () [Archivo no firmado]
FirewallRules: [{E002F9FB-4416-4B22-A8A2-EAABAA07E6E8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori DE\oriDE.exe () [Archivo no firmado]
FirewallRules: [TCP Query User{0B5EAD35-5125-4B15-A98E-946B84E5EE2C}C:\program files (x86)\autofirma\autofirma\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\autofirma\autofirma\jre\bin\javaw.exe
FirewallRules: [UDP Query User{A2989CB3-74C7-4FC5-9EC5-910BBA68A372}C:\program files (x86)\autofirma\autofirma\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\autofirma\autofirma\jre\bin\javaw.exe
FirewallRules: [{E487FA57-3350-48D0-B9A8-ACB02E5201A4}] => (Block) C:\program files (x86)\autofirma\autofirma\jre\bin\javaw.exe
FirewallRules: [{FCA409E5-B966-483D-B80C-A83E9AE2AC20}] => (Block) C:\program files (x86)\autofirma\autofirma\jre\bin\javaw.exe
FirewallRules: [{59A864EF-CA95-4E83-96AC-237100227564}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{2BEA46F9-246A-4DF0-9EDA-55A34A7E78E5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{D86D4683-E555-4709-B072-F5197471DD38}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{223C4E51-0BB4-44E2-BECB-7C2958E19516}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{767EF95F-14B7-4E3D-8764-E35EA94EE74E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FINAL FANTASY IX\FF9_Launcher.exe () [Archivo no firmado]
FirewallRules: [{8434DFE7-1C72-407B-8DAE-8FF94178F3FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FINAL FANTASY IX\FF9_Launcher.exe () [Archivo no firmado]
FirewallRules: [{615B512C-9A99-47CA-A8F1-DC87CE97F1E0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E08A0031-09BD-4995-9E19-C237F0B16C8F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DBDD0E90-595D-425A-91F4-A0D2B84ADF24}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F88ED178-1B00-455C-8FF5-E9C12A67224B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2FB9A977-C2F6-4155-AB44-58FB33432473}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Puntos de Restauración =========================

27-07-2020 19:08:43 Punto de control programado
02-08-2020 01:31:05 Instalador de Módulos de Windows
06-08-2020 14:45:44 Instalador de Módulos de Windows

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (08/06/2020 02:05:19 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: El optimizador de almacenamiento no pudo completar volver a optimizar en DATOS (D:) debido a: El hardware del volumen no admite la operación solicitada. (0x8900002A)

Error: (08/05/2020 08:53:27 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. La cuenta especificada ya existe.

Error: (08/05/2020 07:06:15 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. La cuenta especificada ya existe.

Error: (08/05/2020 07:06:14 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. La cuenta especificada ya existe.

Error: (08/05/2020 06:41:03 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. La cuenta especificada ya existe.

Error: (08/05/2020 02:30:10 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. La cuenta especificada ya existe.

Error: (08/05/2020 12:58:31 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. La cuenta especificada ya existe.

Error: (08/05/2020 11:58:30 AM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. La cuenta especificada ya existe.


Errores del sistema:
=============
Error: (08/06/2020 07:32:22 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: El servicio Servicio de inspección de red de Antivirus de Microsoft Defender depende del servicio Controlador de Sistema de inspección de red de Antivirus de Microsoft Defender, el cual no pudo iniciarse debido al siguiente error: 
El búfer de usuario proporcionado no es válido para la operación solicitada.

Error: (08/06/2020 07:32:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio Controlador de Sistema de inspección de red de Antivirus de Microsoft Defender no pudo iniciarse debido al siguiente error: 
El búfer de usuario proporcionado no es válido para la operación solicitada.

Error: (08/06/2020 07:32:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio MBAMChameleon no pudo iniciarse debido al siguiente error: 
El sistema no puede encontrar el archivo especificado.

Error: (08/06/2020 07:31:54 PM) (Source: DCOM) (EventID: 10005) (User: ALEWIN10)
Description: Error de DCOM "1084" al intentar iniciar el servicio ShellHWDetection con argumentos "No disponible" para ejecutar el servidor:
{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (08/06/2020 07:31:51 PM) (Source: DCOM) (EventID: 10005) (User: ALEWIN10)
Description: Error de DCOM "1084" al intentar iniciar el servicio netprofm con argumentos "No disponible" para ejecutar el servidor:
{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (08/06/2020 07:31:51 PM) (Source: DCOM) (EventID: 10005) (User: ALEWIN10)
Description: Error de DCOM "1084" al intentar iniciar el servicio netprofm con argumentos "No disponible" para ejecutar el servidor:
{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (08/06/2020 07:31:51 PM) (Source: DCOM) (EventID: 10005) (User: ALEWIN10)
Description: Error de DCOM "1084" al intentar iniciar el servicio netprofm con argumentos "No disponible" para ejecutar el servidor:
{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (08/06/2020 07:31:51 PM) (Source: DCOM) (EventID: 10005) (User: ALEWIN10)
Description: Error de DCOM "1084" al intentar iniciar el servicio netprofm con argumentos "No disponible" para ejecutar el servidor:
{A47979D2-C419-11D9-A5B4-001185AD2B89}


Windows Defender:
===================================
Date: 2020-08-05 13:04:36.3940000Z
Description: 
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/PiriformBundler&threatid=277517&enterprise=0
Nombre: PUA:Win32/PiriformBundler
Id.: 277517
Gravedad: Baja
Categoría: Software potencialmente no deseado
Ruta de acceso: file:_C:\Users\usuario\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000095
Origen de detección: Equipo local
Tipo de detección: FastPath
Origen de detección: Usuario
Usuario: ALEWIN10\usuario
Nombre de proceso: Unknown
Versión de inteligencia de seguridad: AV: 1.321.624.0, AS: 1.321.624.0, NIS: 1.321.624.0
Versión de motor: AM: 1.1.17300.4, NIS: 1.1.17300.4

Date: 2020-08-05 00:26:37.2000000Z
Description: 
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/PiriformBundler&threatid=277517&enterprise=0
Nombre: PUA:Win32/PiriformBundler
Id.: 277517
Gravedad: Baja
Categoría: Software potencialmente no deseado
Ruta de acceso: containerfile:_D:\_PERFIL\Downloads\ccsetup568.exe; file:_D:\_PERFIL\Downloads\ccsetup568.exe; file:_D:\_PERFIL\Downloads\ccsetup568.exe->(nsis-instdata); webfile:_D:\_PERFIL\Downloads\ccsetup568.exe|https://download.ccleaner.com/ccsetup568.exe|pid:7600,ProcessStart:132410529465771459
Origen de detección: Internet
Tipo de detección: Concreto
Origen de detección: Sistema
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Windows\explorer.exe
Versión de inteligencia de seguridad: AV: 1.321.624.0, AS: 1.321.624.0, NIS: 1.321.624.0
Versión de motor: AM: 1.1.17300.4, NIS: 1.1.17300.4

Date: 2020-08-05 00:16:00.8690000Z
Description: 
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/PiriformBundler&threatid=277517&enterprise=0
Nombre: PUA:Win32/PiriformBundler
Id.: 277517
Gravedad: Baja
Categoría: Software potencialmente no deseado
Ruta de acceso: containerfile:_D:\_PERFIL\Downloads\ccsetup568.exe; file:_D:\_PERFIL\Downloads\ccsetup568.exe; file:_D:\_PERFIL\Downloads\ccsetup568.exe->(nsis-instdata)
Origen de detección: Equipo local
Tipo de detección: FastPath
Origen de detección: Sistema
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: C:\Windows\explorer.exe
Versión de inteligencia de seguridad: AV: 1.321.624.0, AS: 1.321.624.0, NIS: 1.321.624.0
Versión de motor: AM: 1.1.17300.4, NIS: 1.1.17300.4

Date: 2020-08-05 00:15:59.5970000Z
Description: 
Antivirus de Microsoft Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/PiriformBundler&threatid=277517&enterprise=0
Nombre: PUA:Win32/PiriformBundler
Id.: 277517
Gravedad: Baja
Categoría: Software potencialmente no deseado
Ruta de acceso: file:_D:\_PERFIL\Downloads\ccsetup568.exe
Origen de detección: Equipo local
Tipo de detección: FastPath
Origen de detección: Sistema
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: Unknown
Versión de inteligencia de seguridad: AV: 1.321.624.0, AS: 1.321.624.0, NIS: 1.321.624.0
Versión de motor: AM: 1.1.17300.4, NIS: 1.1.17300.4

Date: 2020-08-03 00:08:50.5430000Z
Description: 
El examen de Antivirus de Microsoft Defender se detuvo antes de completarse.
Id. de examen: {EF437E1F-7152-4873-AC8A-46DC4BB338BC}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2020-08-06 19:42:30.8790000Z
Description: 
Antivirus de Microsoft Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.321.762.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.17300.4
Código de error: 0x80240438
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. 

Date: 2020-08-06 19:32:22.0200000Z
Description: 
La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x8007042c
Descripción del error: No se puede iniciar el servicio o grupo de dependencia. 
Motivo: El sistema no tiene las actualizaciones necesarias para ejecutar el Sistema de inspección de red. Instala las actualizaciones requeridas y reinicia el dispositivo.

Date: 2020-08-06 19:29:35.5610000Z
Description: 
La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2020-08-06 19:26:42.0680000Z
Description: 
La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x8007042c
Descripción del error: No se puede iniciar el servicio o grupo de dependencia. 
Motivo: El sistema no tiene las actualizaciones necesarias para ejecutar el Sistema de inspección de red. Instala las actualizaciones requeridas y reinicia el dispositivo.

Date: 2020-08-06 19:25:44.4720000Z
Description: 
La característica Protección en tiempo real de Antivirus de Microsoft Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La inteligencia de seguridad antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

CodeIntegrity:
===================================

Date: 2020-08-06 14:41:53.8430000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-06 14:41:53.8410000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-06 14:41:52.5030000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-06 14:41:52.5000000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-06 14:41:44.5770000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-06 14:41:44.5750000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-06 14:41:36.9160000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-08-06 14:41:36.9140000Z
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

==================== Información de la memoria =========================== 

BIOS: American Megatrends Inc. F2 11/24/2016
Placa base: Gigabyte Technology Co., Ltd. B250M-DS3H-CF
Procesador: Intel(R) Core(TM) i5-7400 CPU @ 3.00GHz
Porcentaje de memoria en uso: 32%
RAM física total: 8117.45 MB
RAM física disponible: 5488 MB
Virtual total: 9397.45 MB
Virtual disponible: 5947.52 MB

==================== Unidades ================================

Drive c: (Sistema) (Fixed) (Total:222.51 GB) (Free:131.09 GB) NTFS
Drive d: (DATOS) (Fixed) (Total:465.76 GB) (Free:363.24 GB) NTFS

\\?\Volume{6f18ea3a-f98f-40a6-9af1-c47c3b128801}\ (Recuperación) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{16e43195-942e-4159-9295-fac0b0650f7e}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS
\\?\Volume{70667227-f2a8-48e8-8121-dbd55a9df78e}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 0E580E57)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== Final de Addition.txt =======================

Primero de todo, se me olvidó decir que pude eliminar los registros de avast en modo seguro a través de la herramienta de comprobación de instrumental de administración de Windows.

Pues algo quedo sin eliminar, :thinking: segun lo que veo aquí, o quizá sacaste/generaste el informe de FRST antes de hacer esos pasos :

AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

Verificaste en “Espacio de Nombres” tanto en root\SecurityCenter y después de haber realizado la búsqueda en éste, buscaste en el root\SecurityCenter2. :roll_eyes:

Nos confirmas para poder seguir con los pasos adicionales.

Saludos.

Que va, el informe de FRST lo hice después. Seguí el orden tal y como me comentaste.

He vuelto a consultar, en root\SecurityCenter no me aparece nada (antes de realizar los pasos tampoco me aparecía) y en root\SecurityCenter2 ya solo me aparece la entrada de Windows Defender (antes me aparecían dos de Avast que eliminé).

Saludos!

Y has revisado/consultado en TODAS las entradas :

SELECT * FROM AntiVirusProduct

SELECT * FROM FirewallProduct

SELECT * FROM AntiSpywareProduct

Teóricamente esa entrada de tipo AS debe corresponder con las del AntiSpywareProduct

Nos comentas.

Saludos.

Vale, en SELECT * FROM AntiSpywareProduct aún queda un registro de Avast. Lo elimino y repito todo el procedimiento?

Eliminalo simplemente y una vez que lo hayas eliminado sigues estos pasos :

:arrow_forward: MUY Importante :arrow_backward: Realiza una copia de seguridad del registro :

  • Para hacerlo descarga :arrow_forward: DelFix.exe(en tu escritorio).

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).

  • Atención, ahora marca/selecciona únicamente la casilla :white_check_mark: Create registry backup, las demás casillas NO. :face_with_monocle:

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

:warning: Con los demás programas cerrados ve a :arrow_forward: Inicio :arrow_forward: Ejecutar :arrow_forward: y escribe Notepad.exe.

  • Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\Avast Software\Avast\AvLaunch.exe" /gui
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-30] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
Task: {2A2D5294-C214-4E1E-BD55-472F866C8C94} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {5B52E5C9-81C4-407D-9B08-27C374551997} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe
Task: {B83C9766-19B0-49D5-9C1B-C78FD9115FF4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
Toolbar: HKLM - Sin Nombre - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - Ningún archivo
Toolbar: HKLM-x32 - Sin Nombre - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - Ningún archivo
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]
2020-08-06 14:44 - 2017-04-27 21:09 - 000000000 ____D C:\ProgramData\AVAST Software
2020-08-06 12:09 - 2020-06-24 12:42 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio :arrow_backward: Esto es muy importante.

:o: Nota :o: Es importante que la herramienta FRST.exe(Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.

Y ahora usa el 2º MÉTODO: de esta Faq de Windows 8(aplicable a Windows 10) :arrow_forward: ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.

  • Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).

  • Presionar el botón FIX/Corregir y aguardar a que termine.

  • La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pegar el contenido de este fichero en tu próxima respuesta. :+1:

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Saludos.

Aquí va el FIXLOG.TXT:

Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 05-08-2020
Ejecutado por usuario (06-08-2020 23:34:57) Run:1
Ejecutado desde D:\_PERFIL\Desktop
Perfiles cargados: usuario
Modo de Inicio: Safe Mode (minimal)
==============================================

fixlist contenido:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Ningún archivo
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\Avast Software\Avast\AvLaunch.exe" /gui
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-30] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
Task: {2A2D5294-C214-4E1E-BD55-472F866C8C94} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {5B52E5C9-81C4-407D-9B08-27C374551997} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe
Task: {B83C9766-19B0-49D5-9C1B-C78FD9115FF4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
Toolbar: HKLM - Sin Nombre - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - Ningún archivo
Toolbar: HKLM-x32 - Sin Nombre - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - Ningún archivo
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]
2020-08-06 14:44 - 2017-04-27 21:09 - 000000000 ____D C:\ProgramData\AVAST Software
2020-08-06 12:09 - 2020-06-24 12:42 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

Error: El punto de restauración solamente puede ser creado en modo normal.
Procesos cerrados correctamente.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => eliminado correctamente
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AvastUI.exe" => eliminado correctamente
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => eliminado correctamente
HKLM\SOFTWARE\Policies\Mozilla => eliminado correctamente
HKLM\SOFTWARE\Policies\Google => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{2A2D5294-C214-4E1E-BD55-472F866C8C94}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2A2D5294-C214-4E1E-BD55-472F866C8C94}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\AVAST Software\Avast settings backup => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Avast settings backup" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{5B52E5C9-81C4-407D-9B08-27C374551997}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5B52E5C9-81C4-407D-9B08-27C374551997}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Avast Emergency Update => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Emergency Update" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{B83C9766-19B0-49D5-9C1B-C78FD9115FF4}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B83C9766-19B0-49D5-9C1B-C78FD9115FF4}" => eliminado correctamente
C:\WINDOWS\System32\Tasks\Avast Software\Overseer => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Overseer" => eliminado correctamente
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{4BAAC1B8-0800-42C9-8FA6-08B211F356B8}" => eliminado correctamente
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{4BAAC1B8-0800-42C9-8FA6-08B211F356B8}" => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => eliminado correctamente
HKLM\System\CurrentControlSet\Services\MBAMChameleon => eliminado correctamente
MBAMChameleon => servicio eliminado correctamente
C:\ProgramData\AVAST Software => movido correctamente
"C:\WINDOWS\system32\Tasks\Avast Emergency Update" => no encontrado
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-4287266578-922368335-2543262076-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-4287266578-922368335-2543262076-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


========= Final de CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to connect to BITS - 0x8007043c
El servicio no puede iniciarse en modo a prueba de errores



========= Final de CMD: =========


========= netsh advfirewall reset =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows Defender. Aseg£rate de que el servicio se est  ejecutando e intenta la solicitud de nuevo.


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========


Error al intentar ponerse en contacto con el servicio Firewall de Windows Defender. Aseg£rate de que el servicio se est  ejecutando e intenta la solicitud de nuevo.


========= Final de CMD: =========


========= netsh int ipv4 reset =========

No hay valores configurados por el usuario para restablecer.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

No hay valores configurados por el usuario para restablecer.


========= Final de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 11821056 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 29636314 B
Java, Flash, Steam htmlcache => 381732635 B
Windows/system/drivers => 11070664 B
Edge => 1193404 B
Chrome => 59213426 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 42818 B
NetworkService => 145934 B
usuario => 129576747 B

RecycleBin => 0 B
EmptyTemp: => 595.5 MB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 23:36:17 ====

Hola.

Excelente. :clap:

Tienes intención de instalar algún otro software Antivirus…??

Gracias por la ayuda!

Por lo pronto no, me voy a quedar solo con Windows Defender.

Perfecto @Jandro :+1: excelente, nos alegra ver que ya está el problema inicial completamente arreglado, ahora solo queda eliminar las herramientas usadas.

Para hacerlo descarga :arrow_forward: DelFix.exe en tu escritorio.

  • Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador -).

  • Marca todas las casillas, y pulsas en Run

Se abrirá el informe (DelFix.txt), puedes cerrarlo.


Para cualquier otro problema, no dudes en volver a postear., ya sabes dónde estamos. :+1:

Tema Solucionado.

Saludos, Javier.

1 me gusta