Eliminar malware

Eliminar Malwares
1

Buenas tardes,

Hace unos días mi laptop se infectó por intentar descargar un programa que no debía. Probé todos los protocolos que han explicado en este foro pero me decidí a formatear para estar seguro. Elegí el formateo más básico que pude desde la aplicación de restaurar el sistema (windows 10). Creía que ya estaba resuelto pero ayer intentaron utilizar mi tarjeta de crédito y hoy he visto órdenes de eliminar mi cuenta de gmail que yo no habia hecho. He buscado por todas partes pero no encuentro ninguna carpeta ni programa sospechoso ni en administrador de tareas ni en el sistema de registros. He pasado softwares como MalwareBytes y ESET pero tampoco encuentran nada. ¿Es posible que el virus haya sobrevivido al formateo? y en ese caso hay alguna otra forma más avanzada para encontrarlo? Por cierto, uno de los malwares con los que se infectó era el AutoIt V3 (beta) pero no sé si el único. Gracias de antemano.

2

Hola @hansen

Realiza los siguientes pasos, aunque hayas hecho alguno, sin cambiar el orden:

1) Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware, revisa en detalle el manual, para que sepas usarlo y configurarlo.

  • Realiza un Análisis personalizado, actualizando si te lo pide.
  • Pulsar en “Cuarentena seleccionado” para enviarlo a la cuarentena y Reinicias el sistema.
  • En el apartado del manual Historial de detecciones encontrarás el reporte de MBAM, clic en Exportar >> Copiar al portapapeles.

2) Descarga AdwCleaner | InfoSpyware en el escritorio.

  • Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus.
  • Cierra también todos los programas que tengas abiertos.
  • Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador".)
  • Pulsar en el botón Escanear, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Limpiar.
  • Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
  • Guardas el reporte que te aparecerá, para copiarlo y pegarlo en tu próxima respuesta.
  • El informe también se puede encontrar en C:\AdwCleaner\AdwCleaner[C1].txt

3) Descarga CCleaner

  • Instala Ccleaner
  • Abres Ccleaner en la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine >> clic en ejecutar limpiador
  • Clic en la pestaña Registro >> clic en buscar problemas esperas que termine >> clic en Reparar Seleccionadas y haces una copia de seguridad
  • Vuelves a darle clic en buscar problemas hasta que no encuentre ninguno.

Pega los reportes de Malwarebytes y AdwCleaner y comentas como va el problema.

¿Cómo pegar reportes en el foro?

Un saludo

4

Ahí van los reportes, el CCleaner no lo había utilizado antes y sí ha encontrado problemas. Muvhas gracias por la ayuda y por la rapidez.

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 19/3/20
Hora del análisis: 17:55
Archivo de registro: 7f3c704e-6a02-11ea-b85b-309c23ff5d0d.json

-Información del software-
Versión: 4.1.0.56
Versión de los componentes: 1.0.848
Versión del paquete de actualización: 1.0.21014
Licencia: Prueba

-Información del sistema-
SO: Windows 10 (Build 18362.720)
CPU: x64
Sistema de archivos: NTFS

-Resumen del análisis-
Tipo de análisis: Análisis personalizado
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 404427
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 1 hr, 6 min, 27 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Activado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 0
(No hay elementos maliciosos detectados)

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)
# -------------------------------
# Malwarebytes AdwCleaner 8.0.3.0
# -------------------------------
# Build:    03-03-2020
# Database: 2020-03-13.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    03-19-2020
# Duration: 00:00:10
# OS:       Windows 10 Home
# Scanned:  32042
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
5

Hola

Los reportes salen limpios.

Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus

Descarga Farbar Recovery Scan Tool.en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de tu equipo. :arrow_right: Como saber si Mi Windows es de 32 o 64 Bits ?.

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Pon los dos reportes generados.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Un saludo

6

Hola, ahí van los dos reportes:

Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 08-03-2020
Ejecutado por ******* (administrador) sobre ******** (20-03-2020 10:48:50)
Ejecutado desde C:\Users\******\Downloads
Perfiles cargados: ********** (Perfiles disponibles: ************)
Platform: Windows 10 Home Versión 1903 18362.720 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: FF
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(A-Volute -> Nahimic) C:\Windows\System32\NahimicService.exe
(A-Volute -> Nahimic) C:\Windows\System32\NahimicSvc64.exe
(A-Volute -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f3a64c75ee4defb7\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f3a64c75ee4defb7\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_38bfcb542ef4272e\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_38bfcb542ef4272e\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_f69aac6d52d276b0\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowsstore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\Dragon Center\Dragon Center.exe
(Micro-Star International Co., Ltd.) [Archivo no firmado] C:\Windows\SysWOW64\MSIService.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.) C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [833312 2019-01-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MsiTrueColor] => C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColor.exe [5870416 2017-11-29] (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1871344 2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-110367566-794441740-4189522202-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22256824 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {03afca3b-3880-46c3-9680-961f6db14c35} - no ruta de acceso de archivo
Task: {116dbd0e-d337-4d42-a11e-6cf1be6f4c49} - no ruta de acceso de archivo
Task: {11d6f3be-eaba-4853-968b-5415190eb4f4} - no ruta de acceso de archivo
Task: {18661c9c-7bd7-4c8c-bdae-e081597a571c} - no ruta de acceso de archivo
Task: {235C4F39-7DBE-40B7-9D08-E395083948CE} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {259CD6EC-08B0-4426-8777-DB271CFF97FE} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {282f4e5d-69f8-4d56-95e3-916cb9a13e76} - no ruta de acceso de archivo
Task: {31AB2FEA-3AD7-4A88-9B88-53574EAFFA2D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3297728 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {32CC0C81-8D0A-4149-B2A4-95C43998C9FD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3D9EA592-B17C-497F-8C35-84A0958E7476} - System32\Tasks\NahimicTask64 => C:\Windows\system32\.\NahimicSvc64.exe [1074936 2019-11-28] (A-Volute -> Nahimic)
Task: {461F4EFB-BB82-417C-85D8-377EC50656C4} - System32\Tasks\NahimicTask32 => C:\Windows\system32\..\SysWOW64\NahimicSvc32.exe [804592 2019-11-28] (A-Volute -> Nahimic)
Task: {570a77b0-a7b0-4da6-a544-9ced7a49f294} - no ruta de acceso de archivo
Task: {6A8FE00B-61D6-4661-BF9C-B7DD1A62B403} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [982464 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6FC28C49-FDFB-4F00-B1DD-57D4C5B4E7B0} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {70EC2770-63B3-4B06-A0AD-BE1FACCDAEDD} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {74557DFD-4BC1-4C50-8364-00AA1A4FEDB0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {761427ac-0456-4eb1-a3b6-6a546dc14dfd} - no ruta de acceso de archivo
Task: {78261df5-5a3a-4c0e-a80a-0cf0c8205585} - no ruta de acceso de archivo
Task: {7981FD6E-E53E-46D0-8695-050968265AD0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {88613f89-efe2-40c3-bed6-2550c045b17b} - no ruta de acceso de archivo
Task: {8B66CE06-F9E4-414F-9AC6-F187BBD10764} - System32\Tasks\MSI_Help_Desk_Agent => C:\Program Files (x86)\MSI\Help Desk\MSI Update Agent.exe
Task: {8E008CBE-4EA4-489C-8788-5177C1734E06} - System32\Tasks\Dragon_Center_updater => C:\ProgramData\MSI\Dragon [Argument = Center\DragonCenter_Updater.exe DragonCenter]
Task: {98C034BE-3FDD-4EFF-9EFB-1644BED0E449} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {9B1A4FC4-3A6D-4B26-9898-8BED2C55880C} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1074936 2019-11-28] (A-Volute -> Nahimic)
Task: {9B8317AC-03A7-45A3-ABD9-6F33C8CD0EDB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18233016 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A1E22C0C-D751-4E73-B905-A10A4A79F34D} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {a3662fca-daa6-48d9-a3cb-231273567f54} - no ruta de acceso de archivo
Task: {A388579B-B4F9-4982-9691-71ABBE20D7F2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4369824 2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {A3D8D6A1-D6AE-4D96-AF43-143204EAC272} - System32\Tasks\MSISCMTsk => C:\Program Files (x86)\MSI\MSI Remind Manager\MSISCMTsk.exe [340600 2018-06-11] (Micro-Star International CO., LTD. -> Application)
Task: {ad63e604-83a3-4634-a717-f1d04c65876d} - no ruta de acceso de archivo
Task: {B129ADE9-E93A-4DA9-A79F-418C9282013A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {B29082E3-4843-490C-B94A-DDB35EDD7644} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [654784 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B3630F5A-7203-402B-9720-98D8C91C9CD6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD35CD1A-09A8-4780-B2E9-584933C88D63} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {c17ee6ae-e83e-4727-958b-a843c1c411f3} - no ruta de acceso de archivo
Task: {CFA5BD69-6748-4DA7-B55D-5A9D932F2982} - System32\Tasks\MSI_Dragon Center => C:\Program Files (x86)\MSI\Dragon Center\Dragon Center.exe [5792040 2018-08-28] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.)
Task: {D1AD747E-3EC3-40CC-9E13-FDDDD8E2DC7B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E36EC574-D28C-45D7-A18A-15BA6596210B} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E5DF7A08-AEBE-4C40-865D-685896D2B173} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [804592 2019-11-28] (A-Volute -> Nahimic)
Task: {e7292551-a42c-4669-b0c9-5a04b898ac65} - no ruta de acceso de archivo
Task: {EC95AF25-E529-4D9A-AE9A-F121662ECE66} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4369824 2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {F8A987E8-69E4-44E8-8306-64A0B88688D2} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F9A88196-5F47-45FD-98AD-68C98E36BBF1} - System32\Tasks\Microsoft\Windows\RetailDemo\CleanupOfflineContent => {61f77d5e-afe9-400b-a5e6-e9e80fc8e601} C:\Windows\System32\RDXTaskFactory.dll [415744 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 212.166.210.87 212.166.132.96
Tcpip\..\Interfaces\{0a267eb0-a7dd-4f96-b7e2-0774655da135}: [DhcpNameServer] 212.166.210.87 212.166.132.96

Internet Explorer:
==================
HKU\S-1-5-21-110367566-794441740-4189522202-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://oem17win10.msn.com/?pc=NMTE
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-16] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 6ebxqgoe.default
FF ProfilePath: C:\Users\ikerr\AppData\Roaming\Mozilla\Firefox\Profiles\6ebxqgoe.default [2020-03-18]
FF ProfilePath: C:\Users\ikerr\AppData\Roaming\Mozilla\Firefox\Profiles\whof4cgk.default-release [2020-03-20]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2018-09-19]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-08-06] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-08-06] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-03-18]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11091224 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [762056 2018-05-16] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [714952 2018-05-16] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [218176 2018-06-06] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-03-15] (Malwarebytes Inc -> Malwarebytes)
R2 Micro Star SCM; C:\Windows\SysWOW64\MSIService.exe [160768 2009-07-09] (Micro-Star International Co., Ltd.) [Archivo no firmado]
R2 MSITrueColorService; C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorService.exe [192848 2017-11-29] (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [265824 2018-04-17] (Intel Corporation -> )
R2 NahimicService; C:\Windows\system32\NahimicService.exe [1758968 2019-11-28] (A-Volute -> Nahimic)
S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 RstMwService; C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_f69aac6d52d276b0\RstMwService.exe [1903120 2018-05-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 RtkAudioUniversalService; C:\Windows\System32\RtkAudUService64.exe [833312 2019-01-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3848288 2018-04-17] (Intel Corporation -> Intel® Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 ETDMiniPTP; C:\Windows\System32\drivers\ETDMiniPTP.sys [27656 2018-09-14] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
R3 ETDSMBus; C:\Windows\System32\drivers\ETDSMBus.sys [32776 2018-09-14] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
S0 iaStorAC; C:\Windows\System32\drivers\iaStorAC.sys [967696 2018-05-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 iaStorAfs; C:\Windows\System32\drivers\iaStorAfs.sys [72720 2018-05-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\Windows\System32\DriverStore\FileRepository\ibtusb.inf_amd64_281613a8318b7cea\ibtusb.sys [16890872 2019-12-02] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2020-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
U5 Netwtw06; C:\Windows\System32\Drivers\Netwtw06.sys [8810336 2018-05-13] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 Netwtw08; C:\Windows\System32\drivers\Netwtw08.sys [9214968 2019-10-25] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvmi.inf_amd64_bfe3e3b589cd9691\nvlddmkm.sys [17211344 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NVSWCFilter; C:\Windows\System32\drivers\nvswcfilter.sys [53752 2019-06-27] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-08-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [1024392 2018-09-14] (Realtek Semiconductor Corp. -> Realtek )
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2018-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WINIO; C:\Program Files (x86)\MSI\Dragon Center\winio64.sys [15160 2015-06-12] (Micro-Star Int'l Co. Ltd. -> )

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
7 
==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-03-20 10:48 - 2020-03-20 10:49 - 000026433 _____ C:\Users\ikerr\Downloads\FRST.txt
2020-03-20 10:48 - 2020-03-20 10:49 - 000000000 ____D C:\FRST
2020-03-20 10:47 - 2020-03-20 10:47 - 002279936 _____ (Farbar) C:\Users\ikerr\Downloads\FRST64.exe
2020-03-19 21:33 - 2020-03-19 21:33 - 001288408 _____ (Google LLC) C:\Users\ikerr\Downloads\ChromeSetup.exe
2020-03-19 19:17 - 2020-03-19 19:17 - 000000414 _____ C:\Users\ikerr\Desktop\cc_20200319_191706.reg
2020-03-19 19:16 - 2020-03-19 19:16 - 000005370 _____ C:\Users\ikerr\Desktop\cc_20200319_191638.reg
2020-03-19 19:15 - 2020-03-19 19:16 - 000070626 _____ C:\Users\ikerr\Desktop\cc_20200319_191542.reg
2020-03-19 19:11 - 2020-03-19 19:08 - 000748816 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-03-19 19:10 - 2020-03-19 19:10 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-03-19 19:10 - 2020-03-19 19:10 - 000002888 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-03-19 19:10 - 2020-03-19 19:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-03-19 19:10 - 2020-03-19 19:10 - 000000000 ____D C:\Program Files\CCleaner
2020-03-19 19:09 - 2020-03-19 19:09 - 022195736 _____ (Piriform Software Ltd) C:\Users\ikerr\Downloads\ccsetup564.exe
2020-03-19 19:03 - 2020-03-19 19:07 - 000000000 ____D C:\AdwCleaner
2020-03-19 19:03 - 2020-03-19 19:03 - 008199856 _____ (Malwarebytes) C:\Users\ikerr\Downloads\adwcleaner_8.0.3.exe
2020-03-19 17:31 - 2020-03-19 17:31 - 000004833 _____ C:\Users\ikerr\Desktop\asd.txt
2020-03-18 18:49 - 2020-03-18 18:49 - 000000000 ____D C:\Users\ikerr\AppData\Local\ESET
2020-03-18 15:05 - 2020-03-18 15:05 - 000000001 _____ C:\Users\Public\Documents\dgc_DC.txt
2020-03-17 19:18 - 2020-03-17 19:18 - 000000000 ____D C:\Users\ikerr\Desktop\libros
2020-03-17 11:21 - 2020-03-17 11:21 - 000000000 ____D C:\Users\ikerr\AppData\Local\Mendeley Ltd
2020-03-17 11:20 - 2020-03-17 11:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mendeley Desktop
2020-03-17 11:20 - 2020-03-17 11:20 - 000000000 ____D C:\Program Files (x86)\Mendeley Desktop
2020-03-16 22:06 - 2020-03-16 22:06 - 000003518 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2020-03-16 22:05 - 2020-03-19 17:38 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-03-16 18:48 - 2020-03-19 13:39 - 000000000 ____D C:\Users\ikerr\AppData\Local\Spotify
2020-03-16 18:48 - 2020-03-16 18:48 - 000001843 _____ C:\Users\ikerr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2020-03-16 18:46 - 2020-03-19 13:31 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\Spotify
2020-03-16 17:47 - 2020-03-16 17:47 - 000000000 ____D C:\Users\ikerr\Documents\Plantillas personalizadas de Office
2020-03-16 17:37 - 2020-03-16 17:40 - 000000000 ____D C:\Users\ikerr\Desktop\QUÍMICA
2020-03-16 14:37 - 2020-03-16 14:37 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-03-16 14:32 - 2020-03-16 14:34 - 000000000 ____D C:\Users\ikerr\AppData\LocalLow\Adobe
2020-03-16 14:17 - 2020-03-16 18:22 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-03-16 14:17 - 2020-03-16 14:38 - 000000000 ____D C:\Users\ikerr\AppData\Local\Adobe
2020-03-16 14:17 - 2020-03-16 14:17 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2020-03-16 14:17 - 2018-09-19 23:32 - 000195888 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140_2.dll
2020-03-16 14:16 - 2020-03-16 14:19 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2020-03-16 14:16 - 2020-03-16 14:19 - 000002121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2020-03-16 14:15 - 2020-03-16 14:33 - 000000000 ____D C:\ProgramData\Adobe
2020-03-16 14:15 - 2020-03-16 14:15 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-03-16 13:11 - 2020-03-16 13:11 - 000002510 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002499 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002492 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002463 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002462 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-03-16 13:08 - 2020-03-16 13:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-03-16 13:02 - 2020-03-16 13:02 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\WinRAR
2020-03-16 13:00 - 2020-03-16 13:00 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-03-16 13:00 - 2020-03-16 13:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-03-16 13:00 - 2020-03-16 13:00 - 000000000 ____D C:\Program Files\WinRAR
2020-03-16 12:34 - 2020-03-16 12:34 - 000000000 ____D C:\Users\ikerr\AppData\Local\MSI_Remind_Manager
2020-03-16 12:06 - 2020-03-18 12:35 - 000003376 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-110367566-794441740-4189522202-1001
2020-03-16 12:06 - 2020-03-18 12:35 - 000002404 _____ C:\Users\ikerr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-03-16 11:55 - 2020-03-16 11:55 - 000000000 ____D C:\Users\ikerr\Documents\temp
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Public\Documents\Mis vídeos
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Public\Documents\Mis imágenes
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Public\Documents\Mi música
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Reciente
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Plantillas
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Mis documentos
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Menú Inicio
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Impresoras
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Entorno de red
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Documents\Mis vídeos
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Documents\Mis imágenes
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Documents\Mi música
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Datos de programa
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Configuración local
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historial
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\AppData\Local\Datos de programa
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\AppData\Local\Archivos temporales de Internet
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Reciente
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Plantillas
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Mis documentos
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Menú Inicio
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Impresoras
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Entorno de red
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Documents\Mis vídeos
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Documents\Mis imágenes
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Documents\Mi música
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Datos de programa
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Configuración local
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Historial
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Datos de programa
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Archivos temporales de Internet
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\All Users
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\ProgramData\Plantillas
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\ProgramData\Menú Inicio
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\ProgramData\Escritorio
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\ProgramData\Documentos
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\ProgramData\Datos de programa
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Program Files\Archivos comunes
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Documents and Settings
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Archivos de programa
2020-03-16 03:17 - 2020-03-19 21:01 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-03-16 03:17 - 2020-03-16 03:17 - 000023076 _____ C:\Windows\system32\emptyregdb.dat
2020-03-16 03:17 - 2020-03-16 03:17 - 000003398 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000003196 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000003152 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000003016 _____ C:\Windows\system32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000003016 _____ C:\Windows\system32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000003016 _____ C:\Windows\system32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000002984 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000002956 _____ C:\Windows\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000002942 _____ C:\Windows\system32\Tasks\Dragon_Center_updater
2020-03-16 03:17 - 2020-03-16 03:17 - 000002914 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000002846 _____ C:\Windows\system32\Tasks\MSI_Help_Desk_Agent
2020-03-16 03:17 - 2020-03-16 03:17 - 000002838 _____ C:\Windows\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000002768 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task v2
2020-03-16 03:17 - 2020-03-16 03:17 - 000002744 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000002288 _____ C:\Windows\system32\Tasks\MSISCMTsk
2020-03-16 03:17 - 2020-03-16 03:17 - 000002260 _____ C:\Windows\system32\Tasks\MSI_Dragon Center
2020-03-16 03:17 - 2020-03-16 03:17 - 000000000 ____D C:\Windows\system32\Tasks\Intel
2020-03-16 03:16 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\config\bbimigrate
2020-03-16 03:13 - 2019-08-23 14:30 - 002874368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2020-03-16 03:11 - 2020-03-16 12:29 - 000000000 ____D C:\Intel
2020-03-16 03:11 - 2020-03-16 03:16 - 000000000 ____D C:\ProgramData\Intel
2020-03-16 03:11 - 2020-03-16 03:11 - 000000000 __SHD C:\IntelOptaneData
2020-03-16 03:11 - 2020-03-16 03:11 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2020-03-16 03:11 - 2020-03-16 03:11 - 000000000 ____D C:\Windows\system32\A-Volute
2020-03-16 03:11 - 2020-03-16 03:11 - 000000000 _____ C:\Windows\system32\GfxValDisplayLog.bin
2020-03-16 03:11 - 2020-03-15 19:28 - 000000000 ____D C:\ProgramData\A-Volute
2020-03-16 03:11 - 2018-08-09 01:29 - 000014242 _____ C:\Windows\system32\Drivers\Gen3pKey.dat
2020-03-16 03:10 - 2020-03-20 01:25 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-03-16 03:10 - 2020-03-16 14:37 - 000458680 _____ C:\Windows\system32\FNTCACHE.DAT
2020-03-16 03:10 - 2020-03-16 03:10 - 000000000 ____D C:\Windows\ServiceProfiles
2020-03-16 02:18 - 2020-03-16 14:23 - 000000000 ____D C:\Windows\system32\Tasks\Remediation
2020-03-16 02:18 - 2020-03-16 12:23 - 000000000 ____D C:\Program Files\Common Files\AV
2020-03-15 23:21 - 2020-03-15 23:21 - 000000000 ____D C:\Users\ikerr\Documents\CyberLink
2020-03-15 23:20 - 2020-03-15 23:21 - 000000000 ___HD C:\ProgramData\CyberLink
2020-03-15 23:20 - 2020-03-15 23:20 - 000000000 ____D C:\Users\Public\CyberLink
2020-03-15 22:57 - 2020-03-15 22:57 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-03-15 22:57 - 2020-03-15 22:57 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2020-03-15 22:57 - 2020-03-15 22:57 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-03-15 22:57 - 2020-03-15 22:57 - 000000000 ____D C:\Users\ikerr\AppData\Local\mbamtray
2020-03-15 22:57 - 2020-03-15 22:57 - 000000000 ____D C:\Users\ikerr\AppData\Local\mbam
2020-03-15 22:57 - 2020-03-15 22:57 - 000000000 ____D C:\Users\ikerr\AppData\Local\cache
2020-03-15 22:57 - 2020-03-15 22:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-03-15 22:57 - 2020-03-15 22:57 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-03-15 22:56 - 2020-03-15 22:56 - 000000000 ____D C:\Program Files\Malwarebytes
2020-03-15 20:43 - 2020-03-15 20:44 - 000000000 ____D C:\Windows\pss
2020-03-15 20:43 - 2020-03-15 20:43 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2020-03-15 20:03 - 2020-03-20 10:40 - 000000000 ____D C:\Users\ikerr\AppData\LocalLow\Mozilla
2020-03-15 20:03 - 2020-03-15 20:03 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-03-15 20:03 - 2020-03-15 20:03 - 000001000 _____ C:\Users\Public\Desktop\Firefox.lnk
2020-03-15 20:03 - 2020-03-15 20:03 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\Mozilla
2020-03-15 20:03 - 2020-03-15 20:03 - 000000000 ____D C:\Users\ikerr\AppData\Local\Mozilla
2020-03-15 20:03 - 2020-03-15 20:03 - 000000000 ____D C:\ProgramData\Mozilla
2020-03-15 20:03 - 2020-03-15 20:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-03-15 20:03 - 2020-03-15 20:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-03-15 19:57 - 2020-03-15 20:07 - 000000000 ____D C:\Windows\system32\MRT
2020-03-15 19:57 - 2020-03-15 19:57 - 121542864 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-03-15 19:53 - 2020-03-15 19:53 - 000000000 ____D C:\Users\ikerr\AppData\Local\Micro-Star_International_
2020-03-15 19:51 - 2020-03-15 19:51 - 000000000 ____D C:\Users\ikerr\AppData\Local\OneDrive
2020-03-15 19:45 - 2020-03-15 20:21 - 000000000 ____D C:\Users\ikerr\AppData\Local\Comms
2020-03-15 19:35 - 2020-03-16 11:54 - 000000000 ____D C:\Users\ikerr\AppData\Local\PlaceholderTileLogoFolder
2020-03-15 19:31 - 2020-03-15 21:34 - 000000000 ____D C:\Users\ikerr\AppData\Local\D3DSCache
2020-03-15 19:31 - 2020-03-15 19:31 - 000000000 ____D C:\Users\ikerr\AppData\Local\Portrait Displays
2020-03-15 19:31 - 2020-03-15 19:31 - 000000000 ____D C:\Users\ikerr\AppData\Local\ChromaTune_MSI
2020-03-15 19:30 - 2020-03-18 12:35 - 000000000 ___RD C:\Users\ikerr\OneDrive
2020-03-15 19:30 - 2020-03-15 19:30 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\Portrait Displays
2020-03-15 19:30 - 2020-03-15 19:30 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-03-15 19:29 - 2020-03-15 19:30 - 000000000 ____D C:\Users\ikerr\AppData\Local\NVIDIA Corporation
2020-03-15 19:29 - 2020-03-15 19:29 - 000000000 ____D C:\Users\ikerr\AppData\Local\CEF
2020-03-15 19:28 - 2020-03-20 10:40 - 000003152 _____ C:\Windows\system32\Tasks\NahimicSvc64Run
2020-03-15 19:28 - 2020-03-20 10:40 - 000003152 _____ C:\Windows\system32\Tasks\NahimicSvc32Run
2020-03-15 19:28 - 2020-03-19 21:01 - 000003112 _____ C:\Windows\system32\Tasks\NahimicTask32
2020-03-15 19:28 - 2020-03-19 21:01 - 000003092 _____ C:\Windows\system32\Tasks\NahimicTask64
2020-03-15 19:28 - 2020-03-18 16:13 - 000000000 ____D C:\Users\ikerr\AppData\Local\Packages
2020-03-15 19:28 - 2020-03-16 14:33 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\Adobe
2020-03-15 19:28 - 2020-03-16 12:29 - 000000000 ____D C:\Users\ikerr\AppData\Local\ConnectedDevicesPlatform
2020-03-15 19:28 - 2020-03-16 12:23 - 000000000 __SHD C:\Users\ikerr\IntelGraphicsProfiles
2020-03-15 19:28 - 2020-03-15 19:53 - 000000000 ____D C:\Users\ikerr\AppData\Local\Publishers
2020-03-15 19:28 - 2020-03-15 19:29 - 000000000 ____D C:\Users\ikerr\AppData\Local\MicrosoftEdge
2020-03-15 19:28 - 2020-03-15 19:29 - 000000000 ____D C:\Users\ikerr\AppData\Local\Intel
2020-03-15 19:28 - 2020-03-15 19:28 - 000000000 ___RD C:\Users\ikerr\3D Objects
2020-03-15 19:28 - 2020-03-15 19:28 - 000000000 ___HD C:\Users\ikerr\MicrosoftEdgeBackups
2020-03-15 19:28 - 2020-03-15 19:28 - 000000000 ____D C:\Users\ikerr\Intel
2020-03-15 19:28 - 2020-03-15 19:28 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\Intel
2020-03-15 19:28 - 2020-03-15 19:28 - 000000000 ____D C:\Users\ikerr\AppData\Local\VirtualStore
2020-03-15 19:25 - 2020-03-19 21:41 - 001775178 _____ C:\Windows\system32\PerfStringBackup.INI
2020-03-15 19:22 - 2020-03-15 19:45 - 000000000 ____D C:\ProgramData\Packages
2020-03-15 19:22 - 2020-03-15 19:30 - 000000000 ____D C:\Users\ikerr
2020-03-15 19:22 - 2020-03-15 19:22 - 000000020 ___SH C:\Users\ikerr\ntuser.ini
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Reciente
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Plantillas
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Mis documentos
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Menú Inicio
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Impresoras
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Entorno de red
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Documents\Mis vídeos
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Documents\Mis imágenes
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Documents\Mi música
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Datos de programa
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Configuración local
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\AppData\Local\Historial
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\AppData\Local\Datos de programa
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\AppData\Local\Archivos temporales de Internet
2020-03-15 18:50 - 2020-03-15 18:50 - 000008192 _____ C:\Windows\system32\config\userdiff
2020-03-15 18:50 - 2020-03-15 18:50 - 000000000 ____D C:\Windows\Setup
2020-03-15 18:49 - 2020-03-19 21:41 - 000789634 _____ C:\Windows\system32\perfh00A.dat
2020-03-15 18:49 - 2020-03-19 21:41 - 000155888 _____ C:\Windows\system32\perfc00A.dat
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\winrm
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\WCN
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\slmgr
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\winrm
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\WCN
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\slmgr
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\OCR
2020-03-15 18:49 - 2020-03-15 18:49 - 000346834 _____ C:\Windows\system32\perfi00A.dat
2020-03-15 18:49 - 2020-03-15 18:49 - 000043954 _____ C:\Windows\system32\perfd00A.dat
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SysWOW64\sysprep
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SysWOW64\MailContactsCalendarSync
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SysWOW64\es
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SysWOW64\0409
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\OpenSSH
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\MailContactsCalendarSync
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\es
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\0409
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\DigitalLocker
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Program Files\Reference Assemblies
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Program Files\MSBuild
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-03-15 18:48 - 2020-02-03 21:56 - 000835688 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-03-15 18:48 - 2020-02-03 21:56 - 000179608 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-03-15 18:47 - 2020-03-20 10:40 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-03-15 18:47 - 2020-03-20 10:32 - 000000000 ____D C:\Windows\AppReadiness
2020-03-15 18:47 - 2020-03-19 21:42 - 000000000 ___HD C:\Program Files\WindowsApps
2020-03-15 18:47 - 2020-03-19 21:41 - 000000000 ____D C:\Windows\INF
2020-03-15 18:47 - 2020-03-19 21:01 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2020-03-15 18:47 - 2020-03-18 19:23 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-03-15 18:47 - 2020-03-18 09:30 - 000000000 ____D C:\Windows\appcompat
2020-03-15 18:47 - 2020-03-17 11:20 - 000000000 ___RD C:\Program Files (x86)
2020-03-15 18:47 - 2020-03-16 13:07 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-03-15 18:47 - 2020-03-16 03:18 - 000000000 ____D C:\Program Files\Windows NT
2020-03-15 18:47 - 2020-03-16 03:17 - 000000000 ____D C:\Windows\Registration
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ___SD C:\Windows\SysWOW64\F12
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ___SD C:\Windows\system32\F12
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ___SD C:\Windows\system32\dsc
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\oobe
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\MUI
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\spool
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\oobe
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\MUI
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\DriverState
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\Dism
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\Resources
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\PolicyDefinitions
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\IME
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\Help
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Program Files\Common Files\System
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-03-15 18:47 - 2020-03-16 03:11 - 000000000 ___RD C:\Windows\PrintDialog
2020-03-15 18:47 - 2020-03-16 03:11 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-03-15 18:47 - 2020-03-16 03:10 - 000000000 ____D C:\Windows\system32\config\TxR
2020-03-15 18:47 - 2020-03-16 03:05 - 000000000 ____D C:\Windows\system32\config\systemprofile
2020-03-15 18:47 - 2020-03-15 19:45 - 000000000 ____D C:\Windows\ServiceState
2020-03-15 18:47 - 2020-03-15 19:29 - 000000000 ____D C:\ProgramData\USOPrivate
2020-03-15 18:47 - 2020-03-15 18:59 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SysWOW64\setup
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SysWOW64\Com
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SystemResources
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\Sysprep
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\setup
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\migwiz
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\Com
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Program Files\Windows Defender
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 __SHD C:\Program Files\Windows Sidebar
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 __RSD C:\Windows\Media
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 __RHD C:\Users\Public\Libraries
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___SD C:\Windows\SysWOW64\Nui
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___SD C:\Windows\SysWOW64\Configuration
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___SD C:\Windows\system32\UNP
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___SD C:\Windows\system32\Nui
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___SD C:\Windows\system32\Configuration
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___SD C:\Windows\Downloaded Program Files
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___RD C:\Windows\Offline Web Pages
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___HD C:\Windows\LanguageOverlayCache
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Web
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\WaaS
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Vss
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\tracing
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\TextInput
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\TAPI
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\SMI
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\ras
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\NDF
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\Msdtc
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\Ipmi
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\InputMethod
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\inetsrv
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\IME
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\icsxml
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicyUsers
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\FxsTmp
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\downlevel
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\Bthprops
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\AppLocker
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SystemApps
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\WinMetadata
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\winevt
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ti-et
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ta-lk
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ta-in
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\si-lk
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ShellExperiences
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Sgrm
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ras
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ProximityToast
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\PointOfService
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\osa-Osge-001
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\NDF
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\my-mm
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\MsDtc
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Macromed
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Keywords
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Ipmi
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\InputMethod
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\inetsrv
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\IME
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\icsxml
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ias
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Hydrogen
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\FxsTmp
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ff-Adlm-SN
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Drivers\DriverData
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\downlevel
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\DDFs
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\config\RegBack
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\config\Journal
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Bthprops
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\appraiser
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\AppLocker
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\am-et
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\System
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SKB
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\ShellExperiences
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\ShellComponents
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\security
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\schemas
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SchCache
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\rescache
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Provisioning
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\PLA
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Performance
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\ModemLogs
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\LiveKernelReports
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\L2Schemas
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\InputMethod
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\IdentityCRL
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Globalization
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\GameBarPresenceWriter
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\DiagTrack
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Cursors
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Containers
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Branding
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\bcastdvr
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\addins
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\ProgramData\USOShared
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files\Windows Security
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files\Windows Portable Devices
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files\ModifiableWindowsApps
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files\Common Files\Services
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files (x86)\Windows NT
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2020-03-15 18:47 - 2020-03-15 18:46 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2020-03-15 18:47 - 2020-03-15 18:46 - 000215943 _____ C:\Windows\SysWOW64\dssec.dat
2020-03-15 18:47 - 2020-03-15 18:46 - 000215943 _____ C:\Windows\system32\dssec.dat
2020-03-15 18:47 - 2020-03-15 18:46 - 000207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2020-03-15 18:47 - 2020-03-15 18:46 - 000021504 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2020-03-15 18:47 - 2020-03-15 18:46 - 000018903 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2020-03-15 18:47 - 2020-03-15 18:46 - 000003683 _____ C:\Windows\system32\Drivers\etc\lmhosts.sam
2020-03-15 18:47 - 2020-03-15 18:46 - 000003103 _____ C:\Windows\SysWOW64\mmc.exe.config
2020-03-15 18:47 - 2020-03-15 18:46 - 000003103 _____ C:\Windows\system32\mmc.exe.config
2020-03-15 18:47 - 2020-03-15 18:46 - 000000858 _____ C:\Windows\system32\DefaultQuestions.json
2020-03-15 18:47 - 2020-03-15 18:46 - 000000741 _____ C:\Windows\SysWOW64\NOISE.DAT
2020-03-15 18:47 - 2020-03-15 18:46 - 000000741 _____ C:\Windows\system32\NOISE.DAT
2020-03-15 18:44 - 2020-03-19 21:01 - 100139008 _____ C:\Windows\system32\config\SOFTWARE
2020-03-15 18:44 - 2020-03-19 21:01 - 014680064 _____ C:\Windows\system32\config\SYSTEM
2020-03-15 18:44 - 2020-03-19 21:01 - 000786432 _____ C:\Windows\system32\config\DEFAULT
2020-03-15 18:44 - 2020-03-19 21:01 - 000786432 _____ C:\Windows\system32\config\BBI
2020-03-15 18:44 - 2020-03-19 21:01 - 000131072 _____ C:\Windows\system32\config\SAM
2020-03-15 18:44 - 2020-03-19 21:01 - 000065536 _____ C:\Windows\system32\config\SECURITY
2020-03-15 18:44 - 2020-03-19 19:11 - 000032768 _____ C:\Windows\system32\config\ELAM
2020-03-15 18:44 - 2020-03-15 20:20 - 000000000 ____D C:\Windows\Panther
2020-03-15 18:44 - 2020-03-15 19:57 - 000000000 ____D C:\Windows\servicing
2020-03-15 18:44 - 2020-03-15 19:57 - 000000000 ____D C:\Windows\CbsTemp
2020-03-15 18:44 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\SMI
2020-03-15 18:31 - 2020-03-15 19:00 - 000000000 ___HD C:\$SysReset
2020-03-15 16:10 - 2020-03-15 16:10 - 025444352 ____N (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 019812352 ____N (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 011607552 ____N (Microsoft Corporation) C:\Windows\system32\wmp.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 009711616 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 004129648 ____N (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 003488768 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 003243296 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 002956688 ____N (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 002494744 ____N (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 002315680 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 002072664 ____N (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001867816 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001835128 ____N (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001770552 ____N (Microsoft Corporation) C:\Windows\system32\winmde.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001610240 ____N (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001555904 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001490640 ____N (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001417976 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001282944 ____N (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001108040 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001098720 ____N (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001080832 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001012792 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000952416 ____N (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000757632 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000701440 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000689152 ____N (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000604160 ____N (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000444416 ____N (Microsoft Corporation) C:\Windows\system32\MSFlacDecoder.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000380416 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacDecoder.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000287744 ____N (Microsoft Corporation) C:\Windows\system32\MSFlacEncoder.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000239616 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacEncoder.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000063488 ____N (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000026112 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2020-03-15 16:09 - 2020-03-15 16:10 - 006285312 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 025900544 ____N (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 022635008 ____N (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 019850240 ____N (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 018027008 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 009930552 ____N (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 007905784 ____N (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 007755776 ____N (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 007604584 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 007263992 ____N (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 007259648 ____N (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 006520776 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 006436352 ____N (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 006168064 ____N (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 006084344 ____N (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 005911040 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 005764664 ____N (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 005112832 ____N (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 005040640 ____N (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004898144 ____N (Microsoft Corporation) C:\Windows\system32\rtmpltfm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004855808 ____N (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004622280 ____N (Microsoft Corporation) C:\Windows\explorer.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 004580352 ____N (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004563416 ____N (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 004538880 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004471296 ____N (Microsoft Corporation) C:\Windows\system32\InputService.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004348408 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004140544 ____N (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004048896 ____N (Microsoft Corporation) C:\Windows\system32\SRH.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003971808 ____N (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 003860832 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rtmpltfm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003819520 ____N (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003799552 ____N (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003728896 ____N (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 003708928 ____N (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003587896 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 003552768 ____N (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003371720 ____N (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003263488 ____N (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003260928 ____N (Microsoft Corporation) C:\Windows\system32\esent.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003143168 ____N (Microsoft Corporation) C:\Windows\system32\directml.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002986808 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 002875904 ____N (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002870272 ____N (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002808832 ____N (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002800640 ____N (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 002773568 ____N (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002768440 ____N (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002755584 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-03-15 16:09 - 2020-03-15 16:09 - 002755584 ____N (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-03-15 16:09 - 2020-03-15 16:09 - 002740736 ____N (Microsoft Corporation) C:\Windows\SysWOW64\directml.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002715648 ____N (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 002698040 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 002584008 ____N (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002561536 ____N (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002522112 ____N (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002474496 ____N (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002453504 ____N (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002307584 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002305536 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002289152 ____N (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002259872 ____N (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002224952 ____N (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002180408 ____N (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002157056 ____N (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002087376 ____N (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002031104 ____N C:\Windows\system32\rdpnano.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002021888 ____N (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001999952 ____N (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001985104 ____N (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001972536 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 001885184 ____N (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001854976 ____N (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001835008 ____N (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001823232 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001764336 ____N (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001762304 ____N (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001757304 ____N (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-03-15 16:09 - 2020-03-15 16:09 - 001751040 ____N (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001743888 ____N (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001729024 ____N (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001697792 ____N (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001688064 ____N (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001684992 ____N (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001665416 ____N (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001664896 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001657120 ____N (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001647072 ____N (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001609216 ____N (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001581056 ____N (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001540096 ____N (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001513040 ____N (Microsoft Corporation) C:\Windows\system32\winload.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001484600 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001482040 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 001481216 ____N (Microsoft Corporation) C:\Windows\system32\rdpsharercom.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001480192 ____N (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001458688 ____N (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001428992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 001413632 ____N (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001412096 ____N (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001398584 ____N (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001396152 ____N (Microsoft Corporation) C:\Windows\system32\ole32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001394168 ____N (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001366128 ____N (Microsoft Corporation) C:\Windows\system32\winresume.efi
2020-03-15 16:09 - 2020-03-15 16:09 - 001354080 ____N (Microsoft Corporation) C:\Windows\system32\rtmpal.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001319936 ____N (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001284096 ____N (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001283600 ____N (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2020-03-15 16:09 - 2020-03-15 16:09 - 001273856 ____N (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001264128 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001260544 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rdpsharercom.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001260480 ____N (Microsoft Corporation) C:\Windows\system32\msctf.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001218632 ____N (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001214976 ____N (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001190912 ____N (Microsoft Corporation) C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001182448 ____N (Microsoft Corporation) C:\Windows\system32\winresume.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001180160 ____N (Microsoft Corporation) C:\Windows\system32\localspl.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001153024 ____N (Microsoft Corporation) C:\Windows\system32\windowsperformancerecordercontrol.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001149712 ____N (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001097728 ____N (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001092096 ____N (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001091936 ____N (Microsoft Corporation) C:\Windows\system32\rtmcodecs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001088000 ____N (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001083904 ____N (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001077048 ____N (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001071184 ____N (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001057792 ____N (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001054376 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001032544 ____N (Microsoft Corporation) C:\Windows\system32\ortcengine.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001031680 ____N (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001027000 ____N (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001007672 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
8 
2020-03-15 16:09 - 2020-03-15 16:09 - 001000960 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.Internal.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000988160 ____N (Microsoft Corporation) C:\Windows\system32\refsutil.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000983896 ____N (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000980320 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rtmpal.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000974848 ____N (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000945384 ____N (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000935040 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000929144 ____N (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000923136 ____N (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000921088 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000916480 ____N (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000915296 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rtmcodecs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000914944 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000908504 ____N (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000898048 ____N (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000895488 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000892696 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000883712 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000878080 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000877232 ____N (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000874296 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000868864 ____N (Microsoft Corporation) C:\Windows\SysWOW64\windowsperformancerecordercontrol.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000863232 ____N (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000851968 ____N (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000845312 ____N (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000843776 ____N (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000838144 ____N (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Language.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000836608 ____N (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000835584 ____N (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000833616 ____N (Microsoft Corporation) C:\Windows\system32\pkeyhelper.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000814080 ____N (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000802304 ____N (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000796904 ____N (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000783480 ____N (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000782848 ____N (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000776488 ____N (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000772096 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000769552 ____N (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000765440 ____N (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000749568 ____N (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000748032 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000741392 ____N (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000734720 ____N (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000732000 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ortcengine.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000710144 ____N (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000705536 ____N (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000691712 ____N (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000680448 ____N (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000680184 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000678912 ____N (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000670720 ____N (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000669496 ____N (Microsoft Corporation) C:\Windows\system32\computecore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000668672 ____N (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000668296 ____N (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000667136 ____N (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000661816 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000654336 ____N (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000649728 ____N (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000646656 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000642216 ____N (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000638464 ____N (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000637240 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000636848 ____N (Microsoft Corporation) C:\Windows\system32\sxs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000627216 ____N (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000613888 ____N (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000605896 ____N (Microsoft Corporation) C:\Windows\system32\sechost.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000605184 ____N (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000599552 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000595968 ____N (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000592896 ____N (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000578560 ____N (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000568832 ____N (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000568832 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.UXRes.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000562688 ____N (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000562176 ____N (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000561464 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000551824 ____N (Microsoft Corporation) C:\Windows\SysWOW64\sxs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000550400 ____N (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000540672 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2020-03-15 16:09 - 2020-03-15 16:09 - 000535552 ____N (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000532480 ____N (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000531768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2020-03-15 16:09 - 2020-03-15 16:09 - 000526848 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000525312 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000522384 ____N (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000518656 ____N (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000516096 ____N (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000510768 ____N (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000500224 ____N (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000489984 ____N (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000478792 ____N (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000477496 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2020-03-15 16:09 - 2020-03-15 16:09 - 000469504 ____N (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000460800 ____N (Microsoft Corporation) C:\Windows\system32\slui.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000459688 ____N (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000457216 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000457016 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000455168 ____N (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000448000 ____N (Microsoft Corporation) C:\Windows\system32\SettingsEnvironment.Desktop.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000443904 ____N (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000441144 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000435200 ____N (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000433152 ____N (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountExtension.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000429880 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000415744 ____N (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2020-03-15 16:09 - 2020-03-15 16:09 - 000403456 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000401408 ____N (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000392192 ____N (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000382976 ____N (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000379904 ____N (Microsoft Corporation) C:\Windows\system32\provengine.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000368128 ____N (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000358912 ____N (Microsoft Corporation) C:\Windows\system32\dusmsvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000355840 ____N (Microsoft Corporation) C:\Windows\system32\XpsDocumentTargetPrint.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000355000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000353960 ____N (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000338432 ____N (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000337920 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\Acx01000.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000336384 ____N (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000330240 ____N (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000329216 ____N (Microsoft Corporation) C:\Windows\system32\DiagnosticLogCSP.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000328192 ____N (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000327680 ____N (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000324096 ____N (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000320312 ____N (Microsoft Corporation) C:\Windows\system32\SecurityHealthAgent.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000309248 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000308736 ____N (Microsoft Corporation) C:\Windows\system32\msIso.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000307712 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000307712 ____N (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000299520 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000294400 ____N (Microsoft Corporation) C:\Windows\system32\provops.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000291840 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000291328 ____N (Microsoft Corporation) C:\Windows\system32\DeviceDirectoryClient.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000287232 ____N (Microsoft Corporation) C:\Windows\SysWOW64\sppcomapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000285184 ____N (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000283136 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000282112 ____N (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000279040 ____N (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000277504 ____N (Microsoft Corporation) C:\Windows\system32\scecli.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000273408 ____N (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountCloudAP.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000271872 ____N (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000268288 ____N (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000265216 ____N (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000263168 ____N (Microsoft Corporation) C:\Windows\system32\wpnservice.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000262656 ____N (Microsoft Corporation) C:\Windows\system32\netman.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000260920 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000259584 ____N (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000258048 ____N (Microsoft Corporation) C:\Windows\system32\VPNv2CSP.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000251904 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000251392 ____N (Microsoft Corporation) C:\Windows\SysWOW64\XpsDocumentTargetPrint.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000250896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000250880 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000248064 ____N (Microsoft Corporation) C:\Windows\system32\weretw.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000240640 ____N (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000239104 ____N (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000235520 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000234984 ____N (Microsoft Corporation) C:\Windows\system32\EditionUpgradeManagerObj.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000233472 ____N (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000232960 ____N (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000231936 ____N (Microsoft Corporation) C:\Windows\system32\TetheringMgr.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000231936 ____N (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthA2dp.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000228864 ____N (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountTokenProvider.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000227840 ____N (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000226816 ____N (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000225792 ____N (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000224056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000222520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000221200 ____N (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000214016 ____N (Microsoft Corporation) C:\Windows\SysWOW64\scecli.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000213984 ____N (Microsoft Corporation) C:\Windows\SysWOW64\EditionUpgradeManagerObj.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000211968 ____N (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000210744 ____N (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000208696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000206336 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000204800 ____N (Microsoft Corporation) C:\Windows\system32\mssph.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000201744 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000201728 ____N (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000201528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000199992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000199480 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000193592 ____N (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000183808 ____N (Microsoft Corporation) C:\Windows\system32\ResetEngOnline.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000183608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000182272 ____N (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000181248 ____N (Microsoft Corporation) C:\Windows\system32\notepad.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000181248 ____N (Microsoft Corporation) C:\Windows\notepad.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000180232 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000179712 ____N (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000179712 ____N (Microsoft Corporation) C:\Windows\system32\LanguageComponentsInstaller.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000179200 ____N (Microsoft Corporation) C:\Windows\system32\rtm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000177152 ____N (Microsoft Corporation) C:\Windows\system32\EditionUpgradeHelper.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000175616 ____N (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000174592 ____N (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000174392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000168448 ____N (Microsoft Corporation) C:\Windows\SysWOW64\EditionUpgradeHelper.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000166400 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000165504 ____N (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000164776 ____N (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000161792 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000160768 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000155136 ____N (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000155136 ____N (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000151568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000148992 ____N (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000147456 ____N (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000146712 ____N (Microsoft Corporation) C:\Windows\system32\profext.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000146432 ____N (Microsoft Corporation) C:\Windows\system32\DeviceUpdateAgent.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000144384 ____N (Microsoft Corporation) C:\Windows\system32\GraphicsCapture.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000143872 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000141840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000141824 ____N (Microsoft Corporation) C:\Windows\system32\provpackageapidll.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000139776 ____N (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000138752 ____N (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000138752 ____N (Microsoft Corporation) C:\Windows\system32\DeviceMetadataRetrievalClient.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000138240 ____N (Microsoft Corporation) C:\Windows\system32\TelephonyInteractiveUser.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000137216 ____N (Microsoft Corporation) C:\Windows\system32\pnpclean.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000136328 ____N (Microsoft Corporation) C:\Windows\SysWOW64\omadmapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000135168 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\NdisImPlatform.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000133944 ____N (Microsoft Corporation) C:\Windows\system32\ImplatSetup.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000133256 ____N (Microsoft Corporation) C:\Windows\system32\profapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000131896 ____N (Microsoft Corporation) C:\Windows\system32\DTUHandler.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000130112 ____N (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000128512 ____N (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000128312 ____N (Microsoft Corporation) C:\Windows\system32\wifitask.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000127064 ____N (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000123904 ____N (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000120560 ____N (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000120320 ____N (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000120048 ____N (Microsoft Corporation) C:\Windows\system32\OpenWith.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000118784 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Taskbar.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000117248 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000114176 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000113152 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000112128 ____N (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000108032 ____N (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000107832 ____N (Microsoft Corporation) C:\Windows\system32\SecurityHealthProxyStub.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000107520 ____N (Microsoft Corporation) C:\Windows\SysWOW64\GraphicsCapture.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000105984 ____N (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000105832 ____N (Microsoft Corporation) C:\Windows\SysWOW64\OpenWith.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000105472 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000105472 ____N (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000103936 ____N (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000102912 ____N (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000102760 ____N (Microsoft Corporation) C:\Windows\SysWOW64\profapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2020-03-15 16:09 - 2020-03-15 16:09 - 000098104 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000097792 ____N (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000097080 ____N (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000093184 ____N (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000092672 ____N (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000092160 ____N (Microsoft Corporation) C:\Windows\system32\dot3api.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000091136 ____N (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000089616 ____N (Microsoft Corporation) C:\Windows\system32\DeviceReactivation.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000089568 ____N (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000089088 ____N (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000089088 ____N (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000087552 ____N (Microsoft Corporation) C:\Windows\SysWOW64\dot3api.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000087040 ____N (Microsoft Corporation) C:\Windows\SysWOW64\dot3msm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000087040 ____N (Microsoft Corporation) C:\Windows\system32\EditBufferTestHook.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000084992 ____N (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000084480 ____N (Microsoft Corporation) C:\Windows\system32\provtool.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000084480 ____N (Microsoft Corporation) C:\Windows\system32\enterpriseresourcemanager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000078848 ____N (Microsoft Corporation) C:\Windows\system32\ProvSysprep.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000077824 ____N (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000076288 ____N (Microsoft Corporation) C:\Windows\system32\autopilot.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000074752 ____N (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000071680 ____N (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000070656 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000068408 ____N (Microsoft Corporation) C:\Windows\SysWOW64\DeviceReactivation.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000068096 ____N (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000067112 ____N (Microsoft Corporation) C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000066560 ____N (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000066336 ____N (Microsoft Corporation) C:\Windows\system32\wlrmdr.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000066048 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000066048 ____N (Microsoft Corporation) C:\Windows\SysWOW64\enterpriseresourcemanager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000065536 ____N (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000063288 ____N (Microsoft Corporation) C:\Windows\system32\SecurityHealthHost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000061952 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000061952 ____N (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000060928 ____N (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000060416 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000060416 ____N (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000060416 ____N (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000058368 ____N (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000056672 ____N (Microsoft Corporation) C:\Windows\system32\rtmmvrortc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000056632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000055376 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rtmmvrortc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000054784 ____N (Microsoft Corporation) C:\Windows\system32\MSAProfileNotificationHandler.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000052736 ____N (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000048640 ____N (Microsoft Corporation) C:\Windows\system32\dusmapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000048256 ____N (Microsoft Corporation) C:\Windows\system32\tbs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000046080 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000046080 ____N (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000045568 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000045568 ____N (Microsoft Corporation) C:\Windows\system32\cellulardatacapabilityhandler.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000045056 ____N (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000045056 ____N (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000044544 ____N (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000043520 ____N (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000043008 ____N (Microsoft Corporation) C:\Windows\system32\WiredNetworkCSP.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000042336 ____N (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000042296 ____N (Microsoft Corporation) C:\Windows\system32\SysResetErr.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000041984 ____N (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000041472 ____N (Microsoft Corporation) C:\Windows\system32\WordBreakers.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000040960 ____N (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000040960 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\afunix.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000038912 ____N (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000037888 ____N (Microsoft Corporation) C:\Windows\system32\dusmtask.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000037376 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthMini.SYS
2020-03-15 16:09 - 2020-03-15 16:09 - 000036352 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000036352 ____N (Microsoft Corporation) C:\Windows\system32\sxstrace.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000035328 ____N (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000033792 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000033280 ____N (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000032256 ____N (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000032056 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000031232 ____N (Microsoft Corporation) C:\Windows\system32\FaxPrinterInstaller.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000030720 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\KNetPwrDepBroker.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000030008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000029712 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\tbs.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000029696 ____N (Microsoft Corporation) C:\Windows\SysWOW64\sxstrace.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000029696 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Drivers\afunix.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000029696 ____N (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000028936 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000026112 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000026112 ____N (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000025600 ____N (Microsoft Corporation) C:\Windows\system32\autopilotdiag.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000024064 ____N (Microsoft Corporation) C:\Windows\system32\wci.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000023040 ____N (Microsoft Corporation) C:\Windows\system32\msauserext.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000019984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000019768 ____N (Microsoft Corporation) C:\Windows\system32\ResetEngine.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000019456 ____N (Microsoft Corporation) C:\Windows\system32\mpnotify.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000018944 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msauserext.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000017408 ____N (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000016912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000016384 ____N (Microsoft Corporation) C:\Windows\system32\MUILanguageCleanup.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000015872 ____N (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000014336 ____N (Microsoft Corporation) C:\Windows\system32\LangCleanupSysprepAction.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000012288 ____N (Microsoft Corporation) C:\Windows\system32\pacjsworker.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000011776 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000011776 ____N (Microsoft Corporation) C:\Windows\system32\LaunchTM.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000011776 ____N (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000010752 ____N (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000010240 ____N (Microsoft Corporation) C:\Windows\SysWOW64\LaunchTM.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000010240 ____N (Microsoft Corporation) C:\Windows\system32\lpksetupproxyserv.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000009216 ____N (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000008192 ____N (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000007680 ____N (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000007168 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000003584 ____N (Microsoft Corporation) C:\Windows\SysWOW64\TpmCertResources.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000003584 ____N (Microsoft Corporation) C:\Windows\system32\TpmCertResources.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000002560 ____N (Microsoft Corporation) C:\Windows\system32\tier2punctuations.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000002560 ____N (Microsoft Corporation) C:\Windows\system32\TelephonyInteractiveUserRes.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth9.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth8.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth7.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth6.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth5.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth4.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth3.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth2.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth12.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth11.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth10.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth1.bin
2020-03-15 15:59 - 2020-02-11 05:48 - 000390656 ____N (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-03-15 15:59 - 2020-02-11 05:37 - 000492544 ____N (Microsoft Corporation) C:\Windows\system32\poqexec.exe

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-03-20 10:42 - 2018-09-18 00:52 - 000000000 ____D C:\ProgramData\NVIDIA
2020-03-16 14:37 - 2018-09-18 01:24 - 000000000 ____D C:\ProgramData\Norton
2020-03-16 03:17 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\Tasks_Migrated
2020-03-16 03:16 - 2018-09-18 01:35 - 000000000 ____D C:\ProgramData\Portrait Displays
2020-03-16 03:16 - 2018-09-18 01:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI True Color
2020-03-16 03:16 - 2018-09-18 01:35 - 000000000 ____D C:\Program Files\Portrait Displays
2020-03-16 03:16 - 2018-09-18 01:25 - 000000000 ____D C:\Users\Public\Symantec
2020-03-16 03:16 - 2018-09-18 01:24 - 000000000 ____D C:\Windows\RE_DRIVE
2020-03-16 03:16 - 2018-09-18 01:24 - 000000000 ____D C:\ProgramData\NortonInstaller
2020-03-16 03:16 - 2018-09-18 01:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2020-03-16 03:16 - 2018-09-18 01:22 - 000000000 ____D C:\Program Files (x86)\MSI
2020-03-16 03:16 - 2018-09-18 01:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BurnRecovery
2020-03-16 03:16 - 2018-09-18 01:21 - 000000000 ____D C:\Program Files (x86)\BurnRecovery
2020-03-16 03:16 - 2018-09-18 01:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-03-16 03:16 - 2018-09-18 00:59 - 000000000 ___HD C:\Windows\system32\WLANProfiles
2020-03-16 03:16 - 2018-09-18 00:56 - 000000000 ____D C:\Program Files\DIFX
2020-03-16 03:16 - 2018-09-18 00:55 - 000000000 ____D C:\Program Files\Common Files\Intel Corporation
2020-03-16 03:16 - 2018-09-18 00:53 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-03-16 03:16 - 2018-09-18 00:53 - 000000000 ____D C:\Program Files (x86)\Realtek
2020-03-16 03:16 - 2018-09-18 00:52 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-03-16 03:16 - 2018-09-18 00:52 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-03-16 03:16 - 2018-09-18 00:51 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2020-03-16 03:16 - 2018-09-18 00:50 - 000000000 ____D C:\ProgramData\Package Cache
2020-03-16 03:16 - 2018-09-14 02:53 - 000000000 ____D C:\User Manual
2020-03-15 19:30 - 2018-09-18 00:52 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-03-15 19:29 - 2018-09-18 01:22 - 000000000 ____D C:\ProgramData\MSI
2020-03-15 19:28 - 2018-09-18 00:55 - 000000000 ____D C:\Program Files\Common Files\Intel
2020-03-15 19:28 - 2018-09-18 00:53 - 000000000 ____D C:\Program Files (x86)\Intel
2020-03-15 19:28 - 2018-09-18 00:40 - 000000000 ____D C:\Program Files\Intel
2020-03-15 19:28 - 2018-08-08 15:58 - 000000000 __RHD C:\Users\Public\AccountPictures

==================== Archivos en la raíz de algunos directorios ========

2020-03-16 14:16 - 2020-03-16 14:16 - 000000410 _____ () C:\Users\*****\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================
9 
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 08-03-2020
Ejecutado por ***** (20-03-2020 10:49:35)
Ejecutado desde C:\Users\*****\Downloads
Windows 10 Home Versión 1903 18362.720 (X64) (2020-03-16 02:18:07)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-110367566-794441740-4189522202-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-110367566-794441740-4189522202-503 - Limited - Disabled)
**************** (S-1-5-21-110367566-794441740-4189522202-1001 - Administrator - Enabled) => C:\Users\*****
Invitado (S-1-5-21-110367566-794441740-4189522202-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-110367566-794441740-4189522202-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.008.20081 - Adobe Systems Incorporated)
Battery Calibration (HKLM-x32\...\{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1807.0401 - Micro-Star International Co., Ltd.) Hidden
Battery Calibration (HKLM-x32\...\InstallShield_{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1807.0401 - Micro-Star International Co., Ltd.)
BurnRecovery (HKLM-x32\...\{92A6B009-1343-4C44-AFB1-8849137CA3F0}) (Version: 5.0.1807.301 - Application) Hidden
BurnRecovery (HKLM-x32\...\InstallShield_{92A6B009-1343-4C44-AFB1-8849137CA3F0}) (Version: 5.0.1807.301 - Application)
CCleaner (HKLM\...\CCleaner) (Version: 5.64 - Piriform)
Dragon Center (HKLM-x32\...\{C65B26BC-5A6F-4135-9678-55A877655471}) (Version: 2.3.1808.2701 - Micro-Star International Co., Ltd.) Hidden
Dragon Center (HKLM-x32\...\InstallShield_{C65B26BC-5A6F-4135-9678-55A877655471}) (Version: 2.3.1808.2701 - Micro-Star International Co., Ltd.)
Help Desk (HKLM-x32\...\{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 2.0.1807.3101 - Micro-Star International Co., Ltd.) Hidden
Help Desk (HKLM-x32\...\InstallShield_{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 2.0.1807.3101 - Micro-Star International Co., Ltd.)
Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1823.12.0.1137 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c700a043-5a4c-4d61-aa88-6c4191f25b64}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{D175D43C-776D-436D-A75A-E637EDE76973}) (Version: 16.5.0.1027 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{b67c644b-bbfa-45cf-a1fa-2e1ef2f99be6}) (Version: 20.60.0 - Intel Corporation)
KB9X Radio Switch Driver (HKLM\...\7A70B8EDE77ED614C261B89A36D4C656443FD153) (Version: 1.1.8.0 - ENE TECHNOLOGY INC.)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Mendeley Desktop 1.19.4 (HKLM-x32\...\Mendeley Desktop) (Version: 1.19.4 - Mendeley Ltd.)
Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\ProPlus2019Retail - en-us) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-110367566-794441740-4189522202-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0010 - Microsoft Corporation)
Microsoft Project Professional 2019 - en-us (HKLM\...\ProjectPro2019Retail - en-us) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft Project Professional 2019 - es-es (HKLM\...\ProjectPro2019Retail - es-es) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft Visio Professional 2019 - en-us (HKLM\...\VisioPro2019Retail - en-us) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft Visio Professional 2019 - es-es (HKLM\...\VisioPro2019Retail - es-es) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mozilla Firefox 74.0 (x64 es-ES) (HKLM\...\Mozilla Firefox 74.0 (x64 es-ES)) (Version: 74.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 74.0 - Mozilla)
MSI True Color (HKLM\...\{B4A2776D-59CD-4193-A19D-DE15CB7FC5AA}) (Version: 2.1.2.0 - Portrait Displays, Inc.)
NVIDIA 3D Vision Driver 398.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 398.84 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.14.0.139 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.0.139 - NVIDIA Corporation)
NVIDIA Graphics Driver 398.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.84 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.18.0628 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0628 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.26.328.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8519 - Realtek Semiconductor Corp.)
Spotify (HKU\S-1-5-21-110367566-794441740-4189522202-1001\...\Spotify) (Version: 1.1.28.721.g5b5ee660 - Spotify AB)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)

Packages:
=========
Escritorio remoto de Microsoft -> C:\Program Files\WindowsApps\Microsoft.RemoteDesktop_10.1.1195.0_x86__8wekyb3d8bbwe [2020-03-15] (Microsoft Corporation)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2020-03-15] (LinkedIn)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-03-15] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-03-15] (Microsoft Corporation) [MS Ad]
Microsoft Jigsaw -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJigsaw_1.9.1911.0_x86__8wekyb3d8bbwe [2020-03-15] (Microsoft Studios) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.10.2011.0_x64__8wekyb3d8bbwe [2020-03-15] (Microsoft Studios) [MS Ad]
Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_2.9.1913.0_x86__8wekyb3d8bbwe [2020-03-15] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-03-16] (Microsoft Studios) [MS Ad]
Microsoft Sudoku -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSudoku_1.7.10190.0_x86__8wekyb3d8bbwe [2020-03-15] (Microsoft Studios) [MS Ad]
Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_3.6.10070.0_x64__8wekyb3d8bbwe [2020-03-15] (Microsoft Studios) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20503.0_x64__8wekyb3d8bbwe [2020-03-15] (Microsoft Corporation) [MS Ad]
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.1.1.0_x64__a2t3txkz9j1jw [2020-03-15] (MAGIX)
Nahimic -> C:\Program Files\WindowsApps\A-Volute.Nahimic_1.3.11.0_x64__w2gh52qy24etm [2020-03-15] (A-Volute)
Norton Studio -> C:\Program Files\WindowsApps\symanteccorporation.nortonstudio_2.2.0.0_x86__v68kp9n051hdp [2020-03-15] (Symantec Corporation)
PhotoDirector8 for MSI -> C:\Program Files\WindowsApps\cyberlink.photodirector8formsi_8.0.4020.0_x64__jtmmp2jxy9gb6 [2020-03-15] (CyberLink)
PowerDirector for MSI -> C:\Program Files\WindowsApps\cyberlink.powerdirectorformsi_15.0.4024.0_x64__jtmmp2jxy9gb6 [2020-03-15] (CyberLink)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.168.0_x64__dt26b99r8h8gj [2020-03-15] (Realtek Semiconductor Corp)
Traductor -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2020-03-15] (Microsoft Corporation)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

ShellIconOverlayIdentifiers: [  OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-05-23] () [Archivo no firmado]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-03-15] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-05-23] () [Archivo no firmado]
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-03-15] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

2018-05-23 22:32 - 2018-05-23 22:32 - 000125952 _____ (Intel Corporation) [Archivo no firmado] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll
2015-06-12 03:35 - 2015-06-12 03:35 - 000047816 _____ (MICRO-STAR INTERNATIONAL CO., LTD -> www.internals.com) [Archivo no firmado] C:\Program Files (x86)\MSI\Dragon Center\WinIo64.dll

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-110367566-794441740-4189522202-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\system32\oobe\info\wallpaper\backgrounddefault.jpg
DNS Servers: 212.166.210.87 - 212.166.132.96
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\Run: => "MsiTrueColor"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKU\S-1-5-21-110367566-794441740-4189522202-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-110367566-794441740-4189522202-1001\...\StartupApproved\Run: => "SteelSeries Engine"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{13788C94-4211-4FE3-88C1-6C33792B81A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4E86F971-D361-4FE5-8D6B-3184419D18FB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4C1A5636-DFFF-4A7B-91F9-7B5941101EA6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{862E511F-285E-423A-9DAA-F6B4C43E1AA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CFC5C8C2-E7BB-412F-AB7E-F1CB03E1250C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{18D46D77-6EEA-4541-A924-A83FAA13E3B4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{088D2042-8BAB-4E80-96DB-3C4ECC1374D6}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{6D4E0012-99D6-4985-8B32-67619808C66B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{667D8B35-3B8C-484F-91D4-9A656C27B4DA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E9AD5410-7785-4585-8B7F-341B40F131EC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{42374C4E-90ED-4A6F-A2B3-5DC6612819DE}] => (Block) %ProgramFiles% (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe Ningún archivo
FirewallRules: [{FF1A55C7-ED4E-41EF-BAEE-5E42A3D467FE}] => (Block) %ProgramFiles% (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe Ningún archivo
FirewallRules: [TCP Query User{99C4F112-98E2-4AF4-A6F6-ABB6A22CF4C3}C:\users\ikerr\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ikerr\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{C35E53F7-1BAD-4A36-99B8-42D7E95F9044}C:\users\ikerr\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ikerr\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{8D0E8CBB-A2E0-4E6C-8A94-87FEB3F82DF9}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{0D463755-485B-4FC9-8ABB-A8A5100AE831}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

==================== Puntos de Restauración =========================

19-03-2020 18:28:45 Punto de control programado

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (03/19/2020 09:01:11 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.

Error: (03/19/2020 09:01:11 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]

Error: (03/18/2020 07:23:51 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.

Error: (03/18/2020 07:23:51 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]

Error: (03/16/2020 12:39:00 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Error de adquisición de la licencia para el usuario final. hr=0xC004C003
Id. de Sku=39a1be8c-9e7f-4a75-81f4-21cfac7cbecb

Error: (03/16/2020 12:39:00 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Detalles del error de adquisición de licencias. 
hr=0xC004C003

Error: (03/16/2020 12:20:33 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Error de adquisición de la licencia para el usuario final. hr=0xC004C003
Id. de Sku=39a1be8c-9e7f-4a75-81f4-21cfac7cbecb

Error: (03/16/2020 12:20:33 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Detalles del error de adquisición de licencias. 
hr=0xC004C003


Errores del sistema:
=============
Error: (03/20/2020 01:25:35 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/20/2020 01:25:35 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/20/2020 01:25:35 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/20/2020 01:25:34 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/20/2020 01:25:34 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/20/2020 01:25:34 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/20/2020 01:25:34 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/19/2020 09:42:15 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80073d02: 9WZDNCRFJ364-MICROSOFT.SKYPEAPP.


Windows Defender:
===================================
Date: 2020-03-16 14:37:29.321
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 0.0.0.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 0.0.0.0
Código de error: 0x80240022
Descripción del error: El programa no puede buscar actualizaciones de definiciones. 

Date: 2020-03-16 14:37:29.321
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 0.0.0.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 0.0.0.0
Código de error: 0x80240022
Descripción del error: El programa no puede buscar actualizaciones de definiciones. 

Date: 2020-03-16 14:33:38.060
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 0.0.0.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 0.0.0.0
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2020-03-16 14:33:38.059
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 0.0.0.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 0.0.0.0
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2020-03-16 14:33:38.058
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 0.0.0.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 0.0.0.0
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

CodeIntegrity:
===================================

Date: 2020-03-20 10:41:55.559
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2020-03-20 10:41:55.177
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64\NahimicOSD.dll that did not meet the Store signing level requirements.

Date: 2020-03-20 10:41:55.164
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64\A-Volute.NahimicDevProps2.dll that did not meet the Store signing level requirements.

Date: 2020-03-19 22:18:49.967
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2020-03-19 22:18:49.731
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64\NahimicOSD.dll that did not meet the Store signing level requirements.

Date: 2020-03-19 22:18:49.722
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64\A-Volute.NahimicDevProps2.dll that did not meet the Store signing level requirements.

Date: 2020-03-19 21:33:12.851
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2020-03-19 21:33:12.653
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64\A-Volute.NahimicDevProps2.dll that did not meet the Store signing level requirements.

==================== Información de la memoria =========================== 

BIOS: American Megatrends Inc. E16Q3IMS.104 09/18/2018
Placa base: Micro-Star International Co., Ltd. MS-16Q3
Procesador: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz
Porcentaje de memoria en uso: 26%
RAM física total: 16230.15 MB
RAM física disponible: 11946.6 MB
Virtual total: 19174.15 MB
Virtual disponible: 13851.46 MB

==================== Unidades ================================

Drive c: (Windows) (Fixed) (Total:298.87 GB) (Free:243.35 GB) NTFS
Drive d: (Data) (Fixed) (Total:158.59 GB) (Free:158.45 GB) NTFS

\\?\Volume{0a9589fb-975a-4be4-8a6f-4c6af309b556}\ (WinRE tools) (Fixed) (Total:0.88 GB) (Free:0.44 GB) NTFS
\\?\Volume{9ae5f62a-1c5c-4045-ba5c-cdd2c60d1d01}\ (BIOS_RVY) (Fixed) (Total:18.17 GB) (Free:1.57 GB) NTFS
\\?\Volume{4cefefbb-77c9-4d62-aaf0-f4b3e268af42}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.26 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 6BF890C2)

Partition: GPT.

==================== Final de Addition.txt =======================
10

Hola

Si modificas los datos en el reporte no puedo hacer el scrip porque estarían trastocados y daría fallo.

Pon los reportes sin manipularlos, tal cual están.

Un saludo

11 
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 08-03-2020
Ejecutado por Iker Arrizabalaga (administrador) sobre MSI (Micro-Star International Co., Ltd. P65 Creator 8RD) (20-03-2020 10:48:50)
Ejecutado desde C:\Users\ikerr\Downloads
Perfiles cargados: Iker Arrizabalaga (Perfiles disponibles: Iker Arrizabalaga)
Platform: Windows 10 Home Versión 1903 18362.720 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: FF
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesos (Lista blanca) =================

(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)

(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(A-Volute -> Nahimic) C:\Windows\System32\NahimicService.exe
(A-Volute -> Nahimic) C:\Windows\System32\NahimicSvc64.exe
(A-Volute -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f3a64c75ee4defb7\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f3a64c75ee4defb7\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_38bfcb542ef4272e\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_38bfcb542ef4272e\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_f69aac6d52d276b0\RstMwService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowsstore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\Dragon Center\Dragon Center.exe
(Micro-Star International Co., Ltd.) [Archivo no firmado] C:\Windows\SysWOW64\MSIService.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.) C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe

==================== Registro (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [833312 2019-01-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MsiTrueColor] => C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColor.exe [5870416 2017-11-29] (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1871344 2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-110367566-794441740-4189522202-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22256824 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)

==================== Tareas programadas (Lista blanca) ============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

Task: {03afca3b-3880-46c3-9680-961f6db14c35} - no ruta de acceso de archivo
Task: {116dbd0e-d337-4d42-a11e-6cf1be6f4c49} - no ruta de acceso de archivo
Task: {11d6f3be-eaba-4853-968b-5415190eb4f4} - no ruta de acceso de archivo
Task: {18661c9c-7bd7-4c8c-bdae-e081597a571c} - no ruta de acceso de archivo
Task: {235C4F39-7DBE-40B7-9D08-E395083948CE} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {259CD6EC-08B0-4426-8777-DB271CFF97FE} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {282f4e5d-69f8-4d56-95e3-916cb9a13e76} - no ruta de acceso de archivo
Task: {31AB2FEA-3AD7-4A88-9B88-53574EAFFA2D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3297728 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {32CC0C81-8D0A-4149-B2A4-95C43998C9FD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3D9EA592-B17C-497F-8C35-84A0958E7476} - System32\Tasks\NahimicTask64 => C:\Windows\system32\.\NahimicSvc64.exe [1074936 2019-11-28] (A-Volute -> Nahimic)
Task: {461F4EFB-BB82-417C-85D8-377EC50656C4} - System32\Tasks\NahimicTask32 => C:\Windows\system32\..\SysWOW64\NahimicSvc32.exe [804592 2019-11-28] (A-Volute -> Nahimic)
Task: {570a77b0-a7b0-4da6-a544-9ced7a49f294} - no ruta de acceso de archivo
Task: {6A8FE00B-61D6-4661-BF9C-B7DD1A62B403} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [982464 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6FC28C49-FDFB-4F00-B1DD-57D4C5B4E7B0} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {70EC2770-63B3-4B06-A0AD-BE1FACCDAEDD} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {74557DFD-4BC1-4C50-8364-00AA1A4FEDB0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {761427ac-0456-4eb1-a3b6-6a546dc14dfd} - no ruta de acceso de archivo
Task: {78261df5-5a3a-4c0e-a80a-0cf0c8205585} - no ruta de acceso de archivo
Task: {7981FD6E-E53E-46D0-8695-050968265AD0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {88613f89-efe2-40c3-bed6-2550c045b17b} - no ruta de acceso de archivo
Task: {8B66CE06-F9E4-414F-9AC6-F187BBD10764} - System32\Tasks\MSI_Help_Desk_Agent => C:\Program Files (x86)\MSI\Help Desk\MSI Update Agent.exe
Task: {8E008CBE-4EA4-489C-8788-5177C1734E06} - System32\Tasks\Dragon_Center_updater => C:\ProgramData\MSI\Dragon [Argument = Center\DragonCenter_Updater.exe DragonCenter]
Task: {98C034BE-3FDD-4EFF-9EFB-1644BED0E449} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {9B1A4FC4-3A6D-4B26-9898-8BED2C55880C} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1074936 2019-11-28] (A-Volute -> Nahimic)
Task: {9B8317AC-03A7-45A3-ABD9-6F33C8CD0EDB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18233016 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A1E22C0C-D751-4E73-B905-A10A4A79F34D} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {a3662fca-daa6-48d9-a3cb-231273567f54} - no ruta de acceso de archivo
Task: {A388579B-B4F9-4982-9691-71ABBE20D7F2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4369824 2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {A3D8D6A1-D6AE-4D96-AF43-143204EAC272} - System32\Tasks\MSISCMTsk => C:\Program Files (x86)\MSI\MSI Remind Manager\MSISCMTsk.exe [340600 2018-06-11] (Micro-Star International CO., LTD. -> Application)
Task: {ad63e604-83a3-4634-a717-f1d04c65876d} - no ruta de acceso de archivo
Task: {B129ADE9-E93A-4DA9-A79F-418C9282013A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {B29082E3-4843-490C-B94A-DDB35EDD7644} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [654784 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B3630F5A-7203-402B-9720-98D8C91C9CD6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD35CD1A-09A8-4780-B2E9-584933C88D63} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {c17ee6ae-e83e-4727-958b-a843c1c411f3} - no ruta de acceso de archivo
Task: {CFA5BD69-6748-4DA7-B55D-5A9D932F2982} - System32\Tasks\MSI_Dragon Center => C:\Program Files (x86)\MSI\Dragon Center\Dragon Center.exe [5792040 2018-08-28] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.)
Task: {D1AD747E-3EC3-40CC-9E13-FDDDD8E2DC7B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E36EC574-D28C-45D7-A18A-15BA6596210B} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E5DF7A08-AEBE-4C40-865D-685896D2B173} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [804592 2019-11-28] (A-Volute -> Nahimic)
Task: {e7292551-a42c-4669-b0c9-5a04b898ac65} - no ruta de acceso de archivo
Task: {EC95AF25-E529-4D9A-AE9A-F121662ECE66} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4369824 2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {F8A987E8-69E4-44E8-8306-64A0B88688D2} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F9A88196-5F47-45FD-98AD-68C98E36BBF1} - System32\Tasks\Microsoft\Windows\RetailDemo\CleanupOfflineContent => {61f77d5e-afe9-400b-a5e6-e9e80fc8e601} C:\Windows\System32\RDXTaskFactory.dll [415744 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Lista blanca) ====================

(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)

Tcpip\Parameters: [DhcpNameServer] 212.166.210.87 212.166.132.96
Tcpip\..\Interfaces\{0a267eb0-a7dd-4f96-b7e2-0774655da135}: [DhcpNameServer] 212.166.210.87 212.166.132.96

Internet Explorer:
==================
HKU\S-1-5-21-110367566-794441740-4189522202-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://oem17win10.msn.com/?pc=NMTE
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-16] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 6ebxqgoe.default
FF ProfilePath: C:\Users\ikerr\AppData\Roaming\Mozilla\Firefox\Profiles\6ebxqgoe.default [2020-03-18]
FF ProfilePath: C:\Users\ikerr\AppData\Roaming\Mozilla\Firefox\Profiles\whof4cgk.default-release [2020-03-20]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2018-09-19]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-08-06] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-08-06] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-03-18]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Servicios (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11091224 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [762056 2018-05-16] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [714952 2018-05-16] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [218176 2018-06-06] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-03-15] (Malwarebytes Inc -> Malwarebytes)
R2 Micro Star SCM; C:\Windows\SysWOW64\MSIService.exe [160768 2009-07-09] (Micro-Star International Co., Ltd.) [Archivo no firmado]
R2 MSITrueColorService; C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorService.exe [192848 2017-11-29] (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [265824 2018-04-17] (Intel Corporation -> )
R2 NahimicService; C:\Windows\system32\NahimicService.exe [1758968 2019-11-28] (A-Volute -> Nahimic)
S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 RstMwService; C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_f69aac6d52d276b0\RstMwService.exe [1903120 2018-05-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 RtkAudioUniversalService; C:\Windows\System32\RtkAudUService64.exe [833312 2019-01-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3848288 2018-04-17] (Intel Corporation -> Intel® Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Controladores (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

R3 ETDMiniPTP; C:\Windows\System32\drivers\ETDMiniPTP.sys [27656 2018-09-14] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
R3 ETDSMBus; C:\Windows\System32\drivers\ETDSMBus.sys [32776 2018-09-14] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
S0 iaStorAC; C:\Windows\System32\drivers\iaStorAC.sys [967696 2018-05-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 iaStorAfs; C:\Windows\System32\drivers\iaStorAfs.sys [72720 2018-05-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\Windows\System32\DriverStore\FileRepository\ibtusb.inf_amd64_281613a8318b7cea\ibtusb.sys [16890872 2019-12-02] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2020-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
U5 Netwtw06; C:\Windows\System32\Drivers\Netwtw06.sys [8810336 2018-05-13] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 Netwtw08; C:\Windows\System32\drivers\Netwtw08.sys [9214968 2019-10-25] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvmi.inf_amd64_bfe3e3b589cd9691\nvlddmkm.sys [17211344 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NVSWCFilter; C:\Windows\System32\drivers\nvswcfilter.sys [53752 2019-06-27] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-08-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [1024392 2018-09-14] (Realtek Semiconductor Corp. -> Realtek )
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2018-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WINIO; C:\Program Files (x86)\MSI\Dragon Center\winio64.sys [15160 2015-06-12] (Micro-Star Int'l Co. Ltd. -> )

==================== NetSvcs (Lista blanca) ===================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
12 
==================== Un mes (creado) ===================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-03-20 10:48 - 2020-03-20 10:49 - 000026433 _____ C:\Users\ikerr\Downloads\FRST.txt
2020-03-20 10:48 - 2020-03-20 10:49 - 000000000 ____D C:\FRST
2020-03-20 10:47 - 2020-03-20 10:47 - 002279936 _____ (Farbar) C:\Users\ikerr\Downloads\FRST64.exe
2020-03-19 21:33 - 2020-03-19 21:33 - 001288408 _____ (Google LLC) C:\Users\ikerr\Downloads\ChromeSetup.exe
2020-03-19 19:17 - 2020-03-19 19:17 - 000000414 _____ C:\Users\ikerr\Desktop\cc_20200319_191706.reg
2020-03-19 19:16 - 2020-03-19 19:16 - 000005370 _____ C:\Users\ikerr\Desktop\cc_20200319_191638.reg
2020-03-19 19:15 - 2020-03-19 19:16 - 000070626 _____ C:\Users\ikerr\Desktop\cc_20200319_191542.reg
2020-03-19 19:11 - 2020-03-19 19:08 - 000748816 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-03-19 19:10 - 2020-03-19 19:10 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-03-19 19:10 - 2020-03-19 19:10 - 000002888 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-03-19 19:10 - 2020-03-19 19:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-03-19 19:10 - 2020-03-19 19:10 - 000000000 ____D C:\Program Files\CCleaner
2020-03-19 19:09 - 2020-03-19 19:09 - 022195736 _____ (Piriform Software Ltd) C:\Users\ikerr\Downloads\ccsetup564.exe
2020-03-19 19:03 - 2020-03-19 19:07 - 000000000 ____D C:\AdwCleaner
2020-03-19 19:03 - 2020-03-19 19:03 - 008199856 _____ (Malwarebytes) C:\Users\ikerr\Downloads\adwcleaner_8.0.3.exe
2020-03-19 17:31 - 2020-03-19 17:31 - 000004833 _____ C:\Users\ikerr\Desktop\asd.txt
2020-03-18 18:49 - 2020-03-18 18:49 - 000000000 ____D C:\Users\ikerr\AppData\Local\ESET
2020-03-18 15:05 - 2020-03-18 15:05 - 000000001 _____ C:\Users\Public\Documents\dgc_DC.txt
2020-03-17 19:18 - 2020-03-17 19:18 - 000000000 ____D C:\Users\ikerr\Desktop\libros
2020-03-17 11:21 - 2020-03-17 11:21 - 000000000 ____D C:\Users\ikerr\AppData\Local\Mendeley Ltd
2020-03-17 11:20 - 2020-03-17 11:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mendeley Desktop
2020-03-17 11:20 - 2020-03-17 11:20 - 000000000 ____D C:\Program Files (x86)\Mendeley Desktop
2020-03-16 22:06 - 2020-03-16 22:06 - 000003518 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2020-03-16 22:05 - 2020-03-19 17:38 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-03-16 18:48 - 2020-03-19 13:39 - 000000000 ____D C:\Users\ikerr\AppData\Local\Spotify
2020-03-16 18:48 - 2020-03-16 18:48 - 000001843 _____ C:\Users\ikerr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2020-03-16 18:46 - 2020-03-19 13:31 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\Spotify
2020-03-16 17:47 - 2020-03-16 17:47 - 000000000 ____D C:\Users\ikerr\Documents\Plantillas personalizadas de Office
2020-03-16 17:37 - 2020-03-16 17:40 - 000000000 ____D C:\Users\ikerr\Desktop\QUÍMICA
2020-03-16 14:37 - 2020-03-16 14:37 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-03-16 14:32 - 2020-03-16 14:34 - 000000000 ____D C:\Users\ikerr\AppData\LocalLow\Adobe
2020-03-16 14:17 - 2020-03-16 18:22 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-03-16 14:17 - 2020-03-16 14:38 - 000000000 ____D C:\Users\ikerr\AppData\Local\Adobe
2020-03-16 14:17 - 2020-03-16 14:17 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2020-03-16 14:17 - 2018-09-19 23:32 - 000195888 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140_2.dll
2020-03-16 14:16 - 2020-03-16 14:19 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2020-03-16 14:16 - 2020-03-16 14:19 - 000002121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2020-03-16 14:15 - 2020-03-16 14:33 - 000000000 ____D C:\ProgramData\Adobe
2020-03-16 14:15 - 2020-03-16 14:15 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-03-16 13:11 - 2020-03-16 13:11 - 000002510 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002499 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002492 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002463 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002462 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2020-03-16 13:11 - 2020-03-16 13:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-03-16 13:08 - 2020-03-16 13:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-03-16 13:02 - 2020-03-16 13:02 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\WinRAR
2020-03-16 13:00 - 2020-03-16 13:00 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-03-16 13:00 - 2020-03-16 13:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-03-16 13:00 - 2020-03-16 13:00 - 000000000 ____D C:\Program Files\WinRAR
2020-03-16 12:34 - 2020-03-16 12:34 - 000000000 ____D C:\Users\ikerr\AppData\Local\MSI_Remind_Manager
2020-03-16 12:06 - 2020-03-18 12:35 - 000003376 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-110367566-794441740-4189522202-1001
2020-03-16 12:06 - 2020-03-18 12:35 - 000002404 _____ C:\Users\ikerr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-03-16 11:55 - 2020-03-16 11:55 - 000000000 ____D C:\Users\ikerr\Documents\temp
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Public\Documents\Mis vídeos
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Public\Documents\Mis imágenes
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Public\Documents\Mi música
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Reciente
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Plantillas
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Mis documentos
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Menú Inicio
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Impresoras
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Entorno de red
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Documents\Mis vídeos
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Documents\Mis imágenes
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Documents\Mi música
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Datos de programa
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\Configuración local
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historial
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\AppData\Local\Datos de programa
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default\AppData\Local\Archivos temporales de Internet
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Reciente
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Plantillas
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Mis documentos
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Menú Inicio
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Impresoras
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Entorno de red
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Documents\Mis vídeos
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Documents\Mis imágenes
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Documents\Mi música
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Datos de programa
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\Configuración local
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Historial
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Datos de programa
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Archivos temporales de Internet
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\Default User
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Users\All Users
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\ProgramData\Plantillas
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programas
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\ProgramData\Menú Inicio
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\ProgramData\Escritorio
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\ProgramData\Documentos
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\ProgramData\Datos de programa
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Program Files\Archivos comunes
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Documents and Settings
2020-03-16 03:18 - 2020-03-16 03:18 - 000000000 _SHDL C:\Archivos de programa
2020-03-16 03:17 - 2020-03-19 21:01 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-03-16 03:17 - 2020-03-16 03:17 - 000023076 _____ C:\Windows\system32\emptyregdb.dat
2020-03-16 03:17 - 2020-03-16 03:17 - 000003398 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000003196 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000003152 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000003016 _____ C:\Windows\system32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000003016 _____ C:\Windows\system32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000003016 _____ C:\Windows\system32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000002984 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000002956 _____ C:\Windows\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000002942 _____ C:\Windows\system32\Tasks\Dragon_Center_updater
2020-03-16 03:17 - 2020-03-16 03:17 - 000002914 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000002846 _____ C:\Windows\system32\Tasks\MSI_Help_Desk_Agent
2020-03-16 03:17 - 2020-03-16 03:17 - 000002838 _____ C:\Windows\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000002768 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task v2
2020-03-16 03:17 - 2020-03-16 03:17 - 000002744 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-16 03:17 - 2020-03-16 03:17 - 000002288 _____ C:\Windows\system32\Tasks\MSISCMTsk
2020-03-16 03:17 - 2020-03-16 03:17 - 000002260 _____ C:\Windows\system32\Tasks\MSI_Dragon Center
2020-03-16 03:17 - 2020-03-16 03:17 - 000000000 ____D C:\Windows\system32\Tasks\Intel
2020-03-16 03:16 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\config\bbimigrate
2020-03-16 03:13 - 2019-08-23 14:30 - 002874368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2020-03-16 03:11 - 2020-03-16 12:29 - 000000000 ____D C:\Intel
2020-03-16 03:11 - 2020-03-16 03:16 - 000000000 ____D C:\ProgramData\Intel
2020-03-16 03:11 - 2020-03-16 03:11 - 000000000 __SHD C:\IntelOptaneData
2020-03-16 03:11 - 2020-03-16 03:11 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2020-03-16 03:11 - 2020-03-16 03:11 - 000000000 ____D C:\Windows\system32\A-Volute
2020-03-16 03:11 - 2020-03-16 03:11 - 000000000 _____ C:\Windows\system32\GfxValDisplayLog.bin
2020-03-16 03:11 - 2020-03-15 19:28 - 000000000 ____D C:\ProgramData\A-Volute
2020-03-16 03:11 - 2018-08-09 01:29 - 000014242 _____ C:\Windows\system32\Drivers\Gen3pKey.dat
2020-03-16 03:10 - 2020-03-20 01:25 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-03-16 03:10 - 2020-03-16 14:37 - 000458680 _____ C:\Windows\system32\FNTCACHE.DAT
2020-03-16 03:10 - 2020-03-16 03:10 - 000000000 ____D C:\Windows\ServiceProfiles
2020-03-16 02:18 - 2020-03-16 14:23 - 000000000 ____D C:\Windows\system32\Tasks\Remediation
2020-03-16 02:18 - 2020-03-16 12:23 - 000000000 ____D C:\Program Files\Common Files\AV
2020-03-15 23:21 - 2020-03-15 23:21 - 000000000 ____D C:\Users\ikerr\Documents\CyberLink
2020-03-15 23:20 - 2020-03-15 23:21 - 000000000 ___HD C:\ProgramData\CyberLink
2020-03-15 23:20 - 2020-03-15 23:20 - 000000000 ____D C:\Users\Public\CyberLink
2020-03-15 22:57 - 2020-03-15 22:57 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-03-15 22:57 - 2020-03-15 22:57 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2020-03-15 22:57 - 2020-03-15 22:57 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-03-15 22:57 - 2020-03-15 22:57 - 000000000 ____D C:\Users\ikerr\AppData\Local\mbamtray
2020-03-15 22:57 - 2020-03-15 22:57 - 000000000 ____D C:\Users\ikerr\AppData\Local\mbam
2020-03-15 22:57 - 2020-03-15 22:57 - 000000000 ____D C:\Users\ikerr\AppData\Local\cache
2020-03-15 22:57 - 2020-03-15 22:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-03-15 22:57 - 2020-03-15 22:57 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-03-15 22:56 - 2020-03-15 22:56 - 000000000 ____D C:\Program Files\Malwarebytes
2020-03-15 20:43 - 2020-03-15 20:44 - 000000000 ____D C:\Windows\pss
2020-03-15 20:43 - 2020-03-15 20:43 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2020-03-15 20:03 - 2020-03-20 10:40 - 000000000 ____D C:\Users\ikerr\AppData\LocalLow\Mozilla
2020-03-15 20:03 - 2020-03-15 20:03 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-03-15 20:03 - 2020-03-15 20:03 - 000001000 _____ C:\Users\Public\Desktop\Firefox.lnk
2020-03-15 20:03 - 2020-03-15 20:03 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\Mozilla
2020-03-15 20:03 - 2020-03-15 20:03 - 000000000 ____D C:\Users\ikerr\AppData\Local\Mozilla
2020-03-15 20:03 - 2020-03-15 20:03 - 000000000 ____D C:\ProgramData\Mozilla
2020-03-15 20:03 - 2020-03-15 20:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-03-15 20:03 - 2020-03-15 20:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-03-15 19:57 - 2020-03-15 20:07 - 000000000 ____D C:\Windows\system32\MRT
2020-03-15 19:57 - 2020-03-15 19:57 - 121542864 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-03-15 19:53 - 2020-03-15 19:53 - 000000000 ____D C:\Users\ikerr\AppData\Local\Micro-Star_International_
2020-03-15 19:51 - 2020-03-15 19:51 - 000000000 ____D C:\Users\ikerr\AppData\Local\OneDrive
2020-03-15 19:45 - 2020-03-15 20:21 - 000000000 ____D C:\Users\ikerr\AppData\Local\Comms
2020-03-15 19:35 - 2020-03-16 11:54 - 000000000 ____D C:\Users\ikerr\AppData\Local\PlaceholderTileLogoFolder
2020-03-15 19:31 - 2020-03-15 21:34 - 000000000 ____D C:\Users\ikerr\AppData\Local\D3DSCache
2020-03-15 19:31 - 2020-03-15 19:31 - 000000000 ____D C:\Users\ikerr\AppData\Local\Portrait Displays
2020-03-15 19:31 - 2020-03-15 19:31 - 000000000 ____D C:\Users\ikerr\AppData\Local\ChromaTune_MSI
2020-03-15 19:30 - 2020-03-18 12:35 - 000000000 ___RD C:\Users\ikerr\OneDrive
2020-03-15 19:30 - 2020-03-15 19:30 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\Portrait Displays
2020-03-15 19:30 - 2020-03-15 19:30 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-03-15 19:29 - 2020-03-15 19:30 - 000000000 ____D C:\Users\ikerr\AppData\Local\NVIDIA Corporation
2020-03-15 19:29 - 2020-03-15 19:29 - 000000000 ____D C:\Users\ikerr\AppData\Local\CEF
2020-03-15 19:28 - 2020-03-20 10:40 - 000003152 _____ C:\Windows\system32\Tasks\NahimicSvc64Run
2020-03-15 19:28 - 2020-03-20 10:40 - 000003152 _____ C:\Windows\system32\Tasks\NahimicSvc32Run
2020-03-15 19:28 - 2020-03-19 21:01 - 000003112 _____ C:\Windows\system32\Tasks\NahimicTask32
2020-03-15 19:28 - 2020-03-19 21:01 - 000003092 _____ C:\Windows\system32\Tasks\NahimicTask64
2020-03-15 19:28 - 2020-03-18 16:13 - 000000000 ____D C:\Users\ikerr\AppData\Local\Packages
2020-03-15 19:28 - 2020-03-16 14:33 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\Adobe
2020-03-15 19:28 - 2020-03-16 12:29 - 000000000 ____D C:\Users\ikerr\AppData\Local\ConnectedDevicesPlatform
2020-03-15 19:28 - 2020-03-16 12:23 - 000000000 __SHD C:\Users\ikerr\IntelGraphicsProfiles
2020-03-15 19:28 - 2020-03-15 19:53 - 000000000 ____D C:\Users\ikerr\AppData\Local\Publishers
2020-03-15 19:28 - 2020-03-15 19:29 - 000000000 ____D C:\Users\ikerr\AppData\Local\MicrosoftEdge
2020-03-15 19:28 - 2020-03-15 19:29 - 000000000 ____D C:\Users\ikerr\AppData\Local\Intel
2020-03-15 19:28 - 2020-03-15 19:28 - 000000000 ___RD C:\Users\ikerr\3D Objects
2020-03-15 19:28 - 2020-03-15 19:28 - 000000000 ___HD C:\Users\ikerr\MicrosoftEdgeBackups
2020-03-15 19:28 - 2020-03-15 19:28 - 000000000 ____D C:\Users\ikerr\Intel
2020-03-15 19:28 - 2020-03-15 19:28 - 000000000 ____D C:\Users\ikerr\AppData\Roaming\Intel
2020-03-15 19:28 - 2020-03-15 19:28 - 000000000 ____D C:\Users\ikerr\AppData\Local\VirtualStore
2020-03-15 19:25 - 2020-03-19 21:41 - 001775178 _____ C:\Windows\system32\PerfStringBackup.INI
2020-03-15 19:22 - 2020-03-15 19:45 - 000000000 ____D C:\ProgramData\Packages
2020-03-15 19:22 - 2020-03-15 19:30 - 000000000 ____D C:\Users\ikerr
2020-03-15 19:22 - 2020-03-15 19:22 - 000000020 ___SH C:\Users\ikerr\ntuser.ini
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Reciente
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Plantillas
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Mis documentos
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Menú Inicio
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Impresoras
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Entorno de red
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Documents\Mis vídeos
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Documents\Mis imágenes
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Documents\Mi música
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Datos de programa
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\Configuración local
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\AppData\Local\Historial
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\AppData\Local\Datos de programa
2020-03-15 19:22 - 2020-03-15 19:22 - 000000000 _SHDL C:\Users\ikerr\AppData\Local\Archivos temporales de Internet
2020-03-15 18:50 - 2020-03-15 18:50 - 000008192 _____ C:\Windows\system32\config\userdiff
2020-03-15 18:50 - 2020-03-15 18:50 - 000000000 ____D C:\Windows\Setup
2020-03-15 18:49 - 2020-03-19 21:41 - 000789634 _____ C:\Windows\system32\perfh00A.dat
2020-03-15 18:49 - 2020-03-19 21:41 - 000155888 _____ C:\Windows\system32\perfc00A.dat
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\winrm
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\WCN
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\slmgr
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\winrm
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\WCN
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\slmgr
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2020-03-15 18:49 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\OCR
2020-03-15 18:49 - 2020-03-15 18:49 - 000346834 _____ C:\Windows\system32\perfi00A.dat
2020-03-15 18:49 - 2020-03-15 18:49 - 000043954 _____ C:\Windows\system32\perfd00A.dat
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SysWOW64\sysprep
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SysWOW64\MailContactsCalendarSync
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SysWOW64\es
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SysWOW64\0409
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\OpenSSH
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\MailContactsCalendarSync
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\es
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\0409
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\DigitalLocker
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Program Files\Reference Assemblies
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Program Files\MSBuild
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-03-15 18:49 - 2020-03-15 18:49 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-03-15 18:48 - 2020-02-03 21:56 - 000835688 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-03-15 18:48 - 2020-02-03 21:56 - 000179608 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-03-15 18:47 - 2020-03-20 10:40 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-03-15 18:47 - 2020-03-20 10:32 - 000000000 ____D C:\Windows\AppReadiness
2020-03-15 18:47 - 2020-03-19 21:42 - 000000000 ___HD C:\Program Files\WindowsApps
2020-03-15 18:47 - 2020-03-19 21:41 - 000000000 ____D C:\Windows\INF
2020-03-15 18:47 - 2020-03-19 21:01 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2020-03-15 18:47 - 2020-03-18 19:23 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-03-15 18:47 - 2020-03-18 09:30 - 000000000 ____D C:\Windows\appcompat
2020-03-15 18:47 - 2020-03-17 11:20 - 000000000 ___RD C:\Program Files (x86)
2020-03-15 18:47 - 2020-03-16 13:07 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-03-15 18:47 - 2020-03-16 03:18 - 000000000 ____D C:\Program Files\Windows NT
2020-03-15 18:47 - 2020-03-16 03:17 - 000000000 ____D C:\Windows\Registration
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ___SD C:\Windows\SysWOW64\F12
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ___SD C:\Windows\system32\F12
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ___SD C:\Windows\system32\dsc
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\oobe
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\MUI
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\spool
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\oobe
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\MUI
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\DriverState
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\system32\Dism
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\Resources
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\PolicyDefinitions
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\IME
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Windows\Help
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Program Files\Common Files\System
2020-03-15 18:47 - 2020-03-16 03:16 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-03-15 18:47 - 2020-03-16 03:11 - 000000000 ___RD C:\Windows\PrintDialog
2020-03-15 18:47 - 2020-03-16 03:11 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-03-15 18:47 - 2020-03-16 03:10 - 000000000 ____D C:\Windows\system32\config\TxR
2020-03-15 18:47 - 2020-03-16 03:05 - 000000000 ____D C:\Windows\system32\config\systemprofile
2020-03-15 18:47 - 2020-03-15 19:45 - 000000000 ____D C:\Windows\ServiceState
2020-03-15 18:47 - 2020-03-15 19:29 - 000000000 ____D C:\ProgramData\USOPrivate
2020-03-15 18:47 - 2020-03-15 18:59 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SysWOW64\setup
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SysWOW64\Com
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\SystemResources
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\Sysprep
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\setup
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\migwiz
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Windows\system32\Com
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Program Files\Windows Defender
2020-03-15 18:47 - 2020-03-15 18:49 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 __SHD C:\Program Files\Windows Sidebar
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 __RSD C:\Windows\Media
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 __RHD C:\Users\Public\Libraries
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___SD C:\Windows\SysWOW64\Nui
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___SD C:\Windows\SysWOW64\Configuration
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___SD C:\Windows\system32\UNP
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___SD C:\Windows\system32\Nui
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___SD C:\Windows\system32\Configuration
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___SD C:\Windows\Downloaded Program Files
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___RD C:\Windows\Offline Web Pages
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ___HD C:\Windows\LanguageOverlayCache
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Web
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\WaaS
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Vss
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\tracing
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\TextInput
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\TAPI
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\SMI
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\ras
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\NDF
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\Msdtc
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\Ipmi
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\InputMethod
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\inetsrv
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\IME
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\icsxml
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicyUsers
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\FxsTmp
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\downlevel
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\Bthprops
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\AppLocker
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SystemApps
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\WinMetadata
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\winevt
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ti-et
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ta-lk
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ta-in
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\si-lk
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ShellExperiences
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Sgrm
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ras
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ProximityToast
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\PointOfService
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\osa-Osge-001
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\NDF
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\my-mm
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\MsDtc
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Macromed
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Keywords
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Ipmi
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\InputMethod
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\inetsrv
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\IME
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\icsxml
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ias
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Hydrogen
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\FxsTmp
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\ff-Adlm-SN
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Drivers\DriverData
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\downlevel
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\DDFs
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\config\RegBack
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\config\Journal
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\Bthprops
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\appraiser
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\AppLocker
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\am-et
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\System
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SKB
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\ShellExperiences
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\ShellComponents
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\security
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\schemas
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\SchCache
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\rescache
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Provisioning
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\PLA
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Performance
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\ModemLogs
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\LiveKernelReports
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\L2Schemas
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\InputMethod
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\IdentityCRL
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Globalization
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\GameBarPresenceWriter
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\DiagTrack
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Cursors
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Containers
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\Branding
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\bcastdvr
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\addins
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\ProgramData\WindowsHolographicDevices
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\ProgramData\USOShared
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files\Windows Security
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files\Windows Portable Devices
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files\Windows Multimedia Platform
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files\ModifiableWindowsApps
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files\Common Files\Services
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files (x86)\Windows Portable Devices
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files (x86)\Windows NT
2020-03-15 18:47 - 2020-03-15 18:47 - 000000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2020-03-15 18:47 - 2020-03-15 18:46 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2020-03-15 18:47 - 2020-03-15 18:46 - 000215943 _____ C:\Windows\SysWOW64\dssec.dat
2020-03-15 18:47 - 2020-03-15 18:46 - 000215943 _____ C:\Windows\system32\dssec.dat
2020-03-15 18:47 - 2020-03-15 18:46 - 000207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2020-03-15 18:47 - 2020-03-15 18:46 - 000021504 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2020-03-15 18:47 - 2020-03-15 18:46 - 000018903 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2020-03-15 18:47 - 2020-03-15 18:46 - 000003683 _____ C:\Windows\system32\Drivers\etc\lmhosts.sam
2020-03-15 18:47 - 2020-03-15 18:46 - 000003103 _____ C:\Windows\SysWOW64\mmc.exe.config
2020-03-15 18:47 - 2020-03-15 18:46 - 000003103 _____ C:\Windows\system32\mmc.exe.config
2020-03-15 18:47 - 2020-03-15 18:46 - 000000858 _____ C:\Windows\system32\DefaultQuestions.json
2020-03-15 18:47 - 2020-03-15 18:46 - 000000741 _____ C:\Windows\SysWOW64\NOISE.DAT
2020-03-15 18:47 - 2020-03-15 18:46 - 000000741 _____ C:\Windows\system32\NOISE.DAT
2020-03-15 18:44 - 2020-03-19 21:01 - 100139008 _____ C:\Windows\system32\config\SOFTWARE
2020-03-15 18:44 - 2020-03-19 21:01 - 014680064 _____ C:\Windows\system32\config\SYSTEM
2020-03-15 18:44 - 2020-03-19 21:01 - 000786432 _____ C:\Windows\system32\config\DEFAULT
2020-03-15 18:44 - 2020-03-19 21:01 - 000786432 _____ C:\Windows\system32\config\BBI
2020-03-15 18:44 - 2020-03-19 21:01 - 000131072 _____ C:\Windows\system32\config\SAM
2020-03-15 18:44 - 2020-03-19 21:01 - 000065536 _____ C:\Windows\system32\config\SECURITY
2020-03-15 18:44 - 2020-03-19 19:11 - 000032768 _____ C:\Windows\system32\config\ELAM
2020-03-15 18:44 - 2020-03-15 20:20 - 000000000 ____D C:\Windows\Panther
2020-03-15 18:44 - 2020-03-15 19:57 - 000000000 ____D C:\Windows\servicing
2020-03-15 18:44 - 2020-03-15 19:57 - 000000000 ____D C:\Windows\CbsTemp
2020-03-15 18:44 - 2020-03-15 18:47 - 000000000 ____D C:\Windows\system32\SMI
2020-03-15 18:31 - 2020-03-15 19:00 - 000000000 ___HD C:\$SysReset
2020-03-15 16:10 - 2020-03-15 16:10 - 025444352 ____N (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 019812352 ____N (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 011607552 ____N (Microsoft Corporation) C:\Windows\system32\wmp.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 009711616 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 004129648 ____N (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 003488768 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 003243296 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 002956688 ____N (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 002494744 ____N (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 002315680 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 002072664 ____N (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001867816 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001835128 ____N (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001770552 ____N (Microsoft Corporation) C:\Windows\system32\winmde.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001610240 ____N (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001555904 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001490640 ____N (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001417976 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001282944 ____N (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001108040 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001098720 ____N (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001080832 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 001012792 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000952416 ____N (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000757632 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000701440 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000689152 ____N (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000604160 ____N (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000444416 ____N (Microsoft Corporation) C:\Windows\system32\MSFlacDecoder.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000380416 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacDecoder.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000287744 ____N (Microsoft Corporation) C:\Windows\system32\MSFlacEncoder.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000239616 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacEncoder.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000063488 ____N (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2020-03-15 16:10 - 2020-03-15 16:10 - 000026112 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2020-03-15 16:09 - 2020-03-15 16:10 - 006285312 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 025900544 ____N (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 022635008 ____N (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 019850240 ____N (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 018027008 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 009930552 ____N (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 007905784 ____N (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 007755776 ____N (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 007604584 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 007263992 ____N (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 007259648 ____N (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 006520776 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 006436352 ____N (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 006168064 ____N (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 006084344 ____N (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 005911040 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 005764664 ____N (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 005112832 ____N (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 005040640 ____N (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004898144 ____N (Microsoft Corporation) C:\Windows\system32\rtmpltfm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004855808 ____N (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004622280 ____N (Microsoft Corporation) C:\Windows\explorer.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 004580352 ____N (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004563416 ____N (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 004538880 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004471296 ____N (Microsoft Corporation) C:\Windows\system32\InputService.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004348408 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004140544 ____N (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 004048896 ____N (Microsoft Corporation) C:\Windows\system32\SRH.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003971808 ____N (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 003860832 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rtmpltfm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003819520 ____N (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003799552 ____N (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003728896 ____N (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 003708928 ____N (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003587896 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 003552768 ____N (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003371720 ____N (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003263488 ____N (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003260928 ____N (Microsoft Corporation) C:\Windows\system32\esent.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 003143168 ____N (Microsoft Corporation) C:\Windows\system32\directml.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002986808 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 002875904 ____N (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002870272 ____N (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002808832 ____N (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002800640 ____N (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 002773568 ____N (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002768440 ____N (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002755584 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2020-03-15 16:09 - 2020-03-15 16:09 - 002755584 ____N (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2020-03-15 16:09 - 2020-03-15 16:09 - 002740736 ____N (Microsoft Corporation) C:\Windows\SysWOW64\directml.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002715648 ____N (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 002698040 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 002584008 ____N (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002561536 ____N (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002522112 ____N (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002474496 ____N (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002453504 ____N (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002307584 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002305536 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002289152 ____N (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002259872 ____N (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002224952 ____N (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002180408 ____N (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002157056 ____N (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002087376 ____N (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002031104 ____N C:\Windows\system32\rdpnano.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 002021888 ____N (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001999952 ____N (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001985104 ____N (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001972536 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 001885184 ____N (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001854976 ____N (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001835008 ____N (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001823232 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001764336 ____N (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001762304 ____N (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001757304 ____N (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-03-15 16:09 - 2020-03-15 16:09 - 001751040 ____N (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001743888 ____N (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001729024 ____N (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001697792 ____N (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001688064 ____N (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001684992 ____N (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001665416 ____N (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001664896 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001657120 ____N (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001647072 ____N (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001609216 ____N (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001581056 ____N (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001540096 ____N (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001513040 ____N (Microsoft Corporation) C:\Windows\system32\winload.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001484600 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001482040 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 001481216 ____N (Microsoft Corporation) C:\Windows\system32\rdpsharercom.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001480192 ____N (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001458688 ____N (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001428992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 001413632 ____N (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001412096 ____N (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001398584 ____N (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001396152 ____N (Microsoft Corporation) C:\Windows\system32\ole32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001394168 ____N (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001366128 ____N (Microsoft Corporation) C:\Windows\system32\winresume.efi
2020-03-15 16:09 - 2020-03-15 16:09 - 001354080 ____N (Microsoft Corporation) C:\Windows\system32\rtmpal.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001319936 ____N (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001284096 ____N (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001283600 ____N (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2020-03-15 16:09 - 2020-03-15 16:09 - 001273856 ____N (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001264128 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001260544 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rdpsharercom.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001260480 ____N (Microsoft Corporation) C:\Windows\system32\msctf.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001218632 ____N (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001214976 ____N (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001190912 ____N (Microsoft Corporation) C:\Windows\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001182448 ____N (Microsoft Corporation) C:\Windows\system32\winresume.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001180160 ____N (Microsoft Corporation) C:\Windows\system32\localspl.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001153024 ____N (Microsoft Corporation) C:\Windows\system32\windowsperformancerecordercontrol.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001149712 ____N (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001097728 ____N (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001092096 ____N (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001091936 ____N (Microsoft Corporation) C:\Windows\system32\rtmcodecs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001088000 ____N (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001083904 ____N (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001077048 ____N (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001071184 ____N (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 001057792 ____N (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001054376 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001032544 ____N (Microsoft Corporation) C:\Windows\system32\ortcengine.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001031680 ____N (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001027000 ____N (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 001007672 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
13 
2020-03-15 16:09 - 2020-03-15 16:09 - 001000960 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.Internal.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000988160 ____N (Microsoft Corporation) C:\Windows\system32\refsutil.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000983896 ____N (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000980320 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rtmpal.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000974848 ____N (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000945384 ____N (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000935040 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000929144 ____N (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000923136 ____N (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000921088 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000916480 ____N (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000915296 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rtmcodecs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000914944 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000908504 ____N (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000898048 ____N (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000895488 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000892696 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000883712 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000878080 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000877232 ____N (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000874296 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000868864 ____N (Microsoft Corporation) C:\Windows\SysWOW64\windowsperformancerecordercontrol.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000863232 ____N (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000851968 ____N (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000845312 ____N (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000843776 ____N (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000838144 ____N (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Language.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000836608 ____N (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000835584 ____N (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000833616 ____N (Microsoft Corporation) C:\Windows\system32\pkeyhelper.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000814080 ____N (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000802304 ____N (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000796904 ____N (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000783480 ____N (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000782848 ____N (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000776488 ____N (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000772096 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000769552 ____N (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000765440 ____N (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000749568 ____N (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000748032 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000741392 ____N (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000734720 ____N (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000732000 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ortcengine.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000710144 ____N (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000705536 ____N (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000691712 ____N (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000680448 ____N (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000680184 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000678912 ____N (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000670720 ____N (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000669496 ____N (Microsoft Corporation) C:\Windows\system32\computecore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000668672 ____N (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000668296 ____N (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000667136 ____N (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000661816 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000654336 ____N (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000649728 ____N (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000646656 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000642216 ____N (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000638464 ____N (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000637240 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000636848 ____N (Microsoft Corporation) C:\Windows\system32\sxs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000627216 ____N (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000613888 ____N (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000605896 ____N (Microsoft Corporation) C:\Windows\system32\sechost.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000605184 ____N (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000599552 ____N (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000595968 ____N (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000592896 ____N (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000578560 ____N (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000568832 ____N (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000568832 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.UXRes.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000562688 ____N (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000562176 ____N (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000561464 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000551824 ____N (Microsoft Corporation) C:\Windows\SysWOW64\sxs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000550400 ____N (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000540672 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2020-03-15 16:09 - 2020-03-15 16:09 - 000535552 ____N (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000532480 ____N (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000531768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2020-03-15 16:09 - 2020-03-15 16:09 - 000526848 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000525312 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000522384 ____N (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000518656 ____N (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000516096 ____N (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000510768 ____N (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000500224 ____N (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000489984 ____N (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000478792 ____N (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000477496 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2020-03-15 16:09 - 2020-03-15 16:09 - 000469504 ____N (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000460800 ____N (Microsoft Corporation) C:\Windows\system32\slui.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000459688 ____N (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000457216 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000457016 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000455168 ____N (Microsoft Corporation) C:\Windows\system32\upnphost.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000448000 ____N (Microsoft Corporation) C:\Windows\system32\SettingsEnvironment.Desktop.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000443904 ____N (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000441144 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000435200 ____N (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000433152 ____N (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountExtension.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000429880 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000415744 ____N (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2020-03-15 16:09 - 2020-03-15 16:09 - 000403456 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000401408 ____N (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000392192 ____N (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000382976 ____N (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000379904 ____N (Microsoft Corporation) C:\Windows\system32\provengine.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000368128 ____N (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000358912 ____N (Microsoft Corporation) C:\Windows\system32\dusmsvc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000355840 ____N (Microsoft Corporation) C:\Windows\system32\XpsDocumentTargetPrint.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000355000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000353960 ____N (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000338432 ____N (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000337920 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\Acx01000.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000336384 ____N (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000330240 ____N (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000329216 ____N (Microsoft Corporation) C:\Windows\system32\DiagnosticLogCSP.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000328192 ____N (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000327680 ____N (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000324096 ____N (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000320312 ____N (Microsoft Corporation) C:\Windows\system32\SecurityHealthAgent.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000309248 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000308736 ____N (Microsoft Corporation) C:\Windows\system32\msIso.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000307712 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000307712 ____N (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000299520 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000294400 ____N (Microsoft Corporation) C:\Windows\system32\provops.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000291840 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000291328 ____N (Microsoft Corporation) C:\Windows\system32\DeviceDirectoryClient.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000287232 ____N (Microsoft Corporation) C:\Windows\SysWOW64\sppcomapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000285184 ____N (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000283136 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000282112 ____N (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000279040 ____N (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000277504 ____N (Microsoft Corporation) C:\Windows\system32\scecli.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000273408 ____N (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountCloudAP.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000271872 ____N (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000268288 ____N (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000265216 ____N (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000263168 ____N (Microsoft Corporation) C:\Windows\system32\wpnservice.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000262656 ____N (Microsoft Corporation) C:\Windows\system32\netman.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000260920 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000259584 ____N (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000258048 ____N (Microsoft Corporation) C:\Windows\system32\VPNv2CSP.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000251904 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000251392 ____N (Microsoft Corporation) C:\Windows\SysWOW64\XpsDocumentTargetPrint.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000250896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000250880 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000248064 ____N (Microsoft Corporation) C:\Windows\system32\weretw.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000240640 ____N (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000239104 ____N (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000235520 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000234984 ____N (Microsoft Corporation) C:\Windows\system32\EditionUpgradeManagerObj.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000233472 ____N (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000232960 ____N (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000231936 ____N (Microsoft Corporation) C:\Windows\system32\TetheringMgr.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000231936 ____N (Microsoft Corporation) C:\Windows\system32\InstallServiceTasks.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthA2dp.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000228864 ____N (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountTokenProvider.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000227840 ____N (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000226816 ____N (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000225792 ____N (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000224056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000222520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000221200 ____N (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000214016 ____N (Microsoft Corporation) C:\Windows\SysWOW64\scecli.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000213984 ____N (Microsoft Corporation) C:\Windows\SysWOW64\EditionUpgradeManagerObj.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000211968 ____N (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000210744 ____N (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000208696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000206336 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000204800 ____N (Microsoft Corporation) C:\Windows\system32\mssph.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000201744 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000201728 ____N (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000201528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000199992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000199480 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000193592 ____N (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000183808 ____N (Microsoft Corporation) C:\Windows\system32\ResetEngOnline.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000183608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000182272 ____N (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000181248 ____N (Microsoft Corporation) C:\Windows\system32\notepad.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000181248 ____N (Microsoft Corporation) C:\Windows\notepad.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000180232 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000179712 ____N (Microsoft Corporation) C:\Windows\SysWOW64\InstallServiceTasks.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000179712 ____N (Microsoft Corporation) C:\Windows\system32\LanguageComponentsInstaller.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000179200 ____N (Microsoft Corporation) C:\Windows\system32\rtm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000177152 ____N (Microsoft Corporation) C:\Windows\system32\EditionUpgradeHelper.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000175616 ____N (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000174592 ____N (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000174392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000168448 ____N (Microsoft Corporation) C:\Windows\SysWOW64\EditionUpgradeHelper.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000166400 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000165504 ____N (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000164776 ____N (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000161792 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000160768 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000155136 ____N (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000155136 ____N (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000151568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000148992 ____N (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000147456 ____N (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000146712 ____N (Microsoft Corporation) C:\Windows\system32\profext.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000146432 ____N (Microsoft Corporation) C:\Windows\system32\DeviceUpdateAgent.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000144384 ____N (Microsoft Corporation) C:\Windows\system32\GraphicsCapture.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000143872 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000141840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000141824 ____N (Microsoft Corporation) C:\Windows\system32\provpackageapidll.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000139776 ____N (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000138752 ____N (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000138752 ____N (Microsoft Corporation) C:\Windows\system32\DeviceMetadataRetrievalClient.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000138240 ____N (Microsoft Corporation) C:\Windows\system32\TelephonyInteractiveUser.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000137216 ____N (Microsoft Corporation) C:\Windows\system32\pnpclean.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000136328 ____N (Microsoft Corporation) C:\Windows\SysWOW64\omadmapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000135168 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\NdisImPlatform.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000133944 ____N (Microsoft Corporation) C:\Windows\system32\ImplatSetup.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000133256 ____N (Microsoft Corporation) C:\Windows\system32\profapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000131896 ____N (Microsoft Corporation) C:\Windows\system32\DTUHandler.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000130112 ____N (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000128512 ____N (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000128312 ____N (Microsoft Corporation) C:\Windows\system32\wifitask.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000127064 ____N (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000123904 ____N (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000120560 ____N (Microsoft Corporation) C:\Windows\SysWOW64\profext.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000120320 ____N (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000120048 ____N (Microsoft Corporation) C:\Windows\system32\OpenWith.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000118784 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Taskbar.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000117248 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000114176 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000113152 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000112128 ____N (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000108032 ____N (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000107832 ____N (Microsoft Corporation) C:\Windows\system32\SecurityHealthProxyStub.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000107520 ____N (Microsoft Corporation) C:\Windows\SysWOW64\GraphicsCapture.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000105984 ____N (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000105832 ____N (Microsoft Corporation) C:\Windows\SysWOW64\OpenWith.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000105472 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000105472 ____N (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000103936 ____N (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000102912 ____N (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000102760 ____N (Microsoft Corporation) C:\Windows\SysWOW64\profapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2020-03-15 16:09 - 2020-03-15 16:09 - 000098104 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000097792 ____N (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000097080 ____N (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000093184 ____N (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000092672 ____N (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000092160 ____N (Microsoft Corporation) C:\Windows\system32\dot3api.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000091136 ____N (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000089616 ____N (Microsoft Corporation) C:\Windows\system32\DeviceReactivation.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000089568 ____N (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000089088 ____N (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000089088 ____N (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000087552 ____N (Microsoft Corporation) C:\Windows\SysWOW64\dot3api.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000087040 ____N (Microsoft Corporation) C:\Windows\SysWOW64\dot3msm.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000087040 ____N (Microsoft Corporation) C:\Windows\system32\EditBufferTestHook.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000084992 ____N (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000084480 ____N (Microsoft Corporation) C:\Windows\system32\provtool.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000084480 ____N (Microsoft Corporation) C:\Windows\system32\enterpriseresourcemanager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000078848 ____N (Microsoft Corporation) C:\Windows\system32\ProvSysprep.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000077824 ____N (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000076288 ____N (Microsoft Corporation) C:\Windows\system32\autopilot.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000074752 ____N (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000071680 ____N (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000070656 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000068408 ____N (Microsoft Corporation) C:\Windows\SysWOW64\DeviceReactivation.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000068096 ____N (Microsoft Corporation) C:\Windows\system32\udhisapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000067112 ____N (Microsoft Corporation) C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000066560 ____N (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000066336 ____N (Microsoft Corporation) C:\Windows\system32\wlrmdr.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000066048 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000066048 ____N (Microsoft Corporation) C:\Windows\SysWOW64\enterpriseresourcemanager.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000065536 ____N (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000063288 ____N (Microsoft Corporation) C:\Windows\system32\SecurityHealthHost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000061952 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000061952 ____N (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000060928 ____N (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000060416 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000060416 ____N (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000060416 ____N (Microsoft Corporation) C:\Windows\system32\AxInstUI.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000058368 ____N (Microsoft Corporation) C:\Windows\SysWOW64\udhisapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000056672 ____N (Microsoft Corporation) C:\Windows\system32\rtmmvrortc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000056632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000055376 ____N (Microsoft Corporation) C:\Windows\SysWOW64\rtmmvrortc.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000054784 ____N (Microsoft Corporation) C:\Windows\system32\MSAProfileNotificationHandler.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000052736 ____N (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000048640 ____N (Microsoft Corporation) C:\Windows\system32\dusmapi.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000048256 ____N (Microsoft Corporation) C:\Windows\system32\tbs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000046080 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000046080 ____N (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000045568 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000045568 ____N (Microsoft Corporation) C:\Windows\system32\cellulardatacapabilityhandler.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000045056 ____N (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000045056 ____N (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000044544 ____N (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000043520 ____N (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000043008 ____N (Microsoft Corporation) C:\Windows\system32\WiredNetworkCSP.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000042336 ____N (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000042296 ____N (Microsoft Corporation) C:\Windows\system32\SysResetErr.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000041984 ____N (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000041472 ____N (Microsoft Corporation) C:\Windows\system32\WordBreakers.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000040960 ____N (Microsoft Corporation) C:\Windows\system32\upnpcont.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000040960 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\afunix.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000038912 ____N (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000037888 ____N (Microsoft Corporation) C:\Windows\system32\dusmtask.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000037376 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthMini.SYS
2020-03-15 16:09 - 2020-03-15 16:09 - 000036352 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000036352 ____N (Microsoft Corporation) C:\Windows\system32\sxstrace.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000035328 ____N (Microsoft Corporation) C:\Windows\SysWOW64\upnpcont.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000033792 ____N (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000033280 ____N (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000032256 ____N (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000032056 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000031232 ____N (Microsoft Corporation) C:\Windows\system32\FaxPrinterInstaller.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000030720 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\KNetPwrDepBroker.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000030008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000029712 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\tbs.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000029696 ____N (Microsoft Corporation) C:\Windows\SysWOW64\sxstrace.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000029696 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Drivers\afunix.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000029696 ____N (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000028936 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000026112 ____N (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000026112 ____N (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000025600 ____N (Microsoft Corporation) C:\Windows\system32\autopilotdiag.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000024064 ____N (Microsoft Corporation) C:\Windows\system32\wci.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000023040 ____N (Microsoft Corporation) C:\Windows\system32\msauserext.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000019984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000019768 ____N (Microsoft Corporation) C:\Windows\system32\ResetEngine.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000019456 ____N (Microsoft Corporation) C:\Windows\system32\mpnotify.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000018944 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msauserext.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000017408 ____N (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000016912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys
2020-03-15 16:09 - 2020-03-15 16:09 - 000016384 ____N (Microsoft Corporation) C:\Windows\system32\MUILanguageCleanup.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000015872 ____N (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000014336 ____N (Microsoft Corporation) C:\Windows\system32\LangCleanupSysprepAction.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000012288 ____N (Microsoft Corporation) C:\Windows\system32\pacjsworker.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000011776 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000011776 ____N (Microsoft Corporation) C:\Windows\system32\LaunchTM.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000011776 ____N (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000010752 ____N (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000010240 ____N (Microsoft Corporation) C:\Windows\SysWOW64\LaunchTM.exe
2020-03-15 16:09 - 2020-03-15 16:09 - 000010240 ____N (Microsoft Corporation) C:\Windows\system32\lpksetupproxyserv.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000009216 ____N (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000008192 ____N (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000007680 ____N (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000007168 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000003584 ____N (Microsoft Corporation) C:\Windows\SysWOW64\TpmCertResources.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000003584 ____N (Microsoft Corporation) C:\Windows\system32\TpmCertResources.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000002560 ____N (Microsoft Corporation) C:\Windows\system32\tier2punctuations.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000002560 ____N (Microsoft Corporation) C:\Windows\system32\TelephonyInteractiveUserRes.dll
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth9.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth8.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth7.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth6.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth5.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth4.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth3.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth2.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth12.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth11.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth10.bin
2020-03-15 16:09 - 2020-03-15 16:09 - 000000315 ____N C:\Windows\system32\DrtmAuth1.bin
2020-03-15 15:59 - 2020-02-11 05:48 - 000390656 ____N (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-03-15 15:59 - 2020-02-11 05:37 - 000492544 ____N (Microsoft Corporation) C:\Windows\system32\poqexec.exe

==================== Un mes (modificado) ==================

(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)

2020-03-20 10:42 - 2018-09-18 00:52 - 000000000 ____D C:\ProgramData\NVIDIA
2020-03-16 14:37 - 2018-09-18 01:24 - 000000000 ____D C:\ProgramData\Norton
2020-03-16 03:17 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\Tasks_Migrated
2020-03-16 03:16 - 2018-09-18 01:35 - 000000000 ____D C:\ProgramData\Portrait Displays
2020-03-16 03:16 - 2018-09-18 01:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI True Color
2020-03-16 03:16 - 2018-09-18 01:35 - 000000000 ____D C:\Program Files\Portrait Displays
2020-03-16 03:16 - 2018-09-18 01:25 - 000000000 ____D C:\Users\Public\Symantec
2020-03-16 03:16 - 2018-09-18 01:24 - 000000000 ____D C:\Windows\RE_DRIVE
2020-03-16 03:16 - 2018-09-18 01:24 - 000000000 ____D C:\ProgramData\NortonInstaller
2020-03-16 03:16 - 2018-09-18 01:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2020-03-16 03:16 - 2018-09-18 01:22 - 000000000 ____D C:\Program Files (x86)\MSI
2020-03-16 03:16 - 2018-09-18 01:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BurnRecovery
2020-03-16 03:16 - 2018-09-18 01:21 - 000000000 ____D C:\Program Files (x86)\BurnRecovery
2020-03-16 03:16 - 2018-09-18 01:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-03-16 03:16 - 2018-09-18 00:59 - 000000000 ___HD C:\Windows\system32\WLANProfiles
2020-03-16 03:16 - 2018-09-18 00:56 - 000000000 ____D C:\Program Files\DIFX
2020-03-16 03:16 - 2018-09-18 00:55 - 000000000 ____D C:\Program Files\Common Files\Intel Corporation
2020-03-16 03:16 - 2018-09-18 00:53 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-03-16 03:16 - 2018-09-18 00:53 - 000000000 ____D C:\Program Files (x86)\Realtek
2020-03-16 03:16 - 2018-09-18 00:52 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-03-16 03:16 - 2018-09-18 00:52 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-03-16 03:16 - 2018-09-18 00:51 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2020-03-16 03:16 - 2018-09-18 00:50 - 000000000 ____D C:\ProgramData\Package Cache
2020-03-16 03:16 - 2018-09-14 02:53 - 000000000 ____D C:\User Manual
2020-03-15 19:30 - 2018-09-18 00:52 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-03-15 19:29 - 2018-09-18 01:22 - 000000000 ____D C:\ProgramData\MSI
2020-03-15 19:28 - 2018-09-18 00:55 - 000000000 ____D C:\Program Files\Common Files\Intel
2020-03-15 19:28 - 2018-09-18 00:53 - 000000000 ____D C:\Program Files (x86)\Intel
2020-03-15 19:28 - 2018-09-18 00:40 - 000000000 ____D C:\Program Files\Intel
2020-03-15 19:28 - 2018-08-08 15:58 - 000000000 __RHD C:\Users\Public\AccountPictures

==================== Archivos en la raíz de algunos directorios ========

2020-03-16 14:16 - 2020-03-16 14:16 - 000000410 _____ () C:\Users\*****\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(No existe una corrección automática para los archivos que no pasan la verificación.)

==================== Final de FRST.txt ========================
14 
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 08-03-2020
Ejecutado por Iker Arrizabalaga (20-03-2020 10:49:35)
Ejecutado desde C:\Users\ikerr\Downloads
Windows 10 Home Versión 1903 18362.720 (X64) (2020-03-16 02:18:07)
Modo de Inicio: Normal
==========================================================


==================== Cuentas: =============================

Administrador (S-1-5-21-110367566-794441740-4189522202-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-110367566-794441740-4189522202-503 - Limited - Disabled)
Iker Arrizabalaga (S-1-5-21-110367566-794441740-4189522202-1001 - Administrator - Enabled) => C:\Users\ikerr
Invitado (S-1-5-21-110367566-794441740-4189522202-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-110367566-794441740-4189522202-504 - Limited - Disabled)

==================== Centro de Seguridad ========================

(Si una entrada es incluida en el fixlist, será eliminada.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programas instalados ======================

(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)

Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.008.20081 - Adobe Systems Incorporated)
Battery Calibration (HKLM-x32\...\{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1807.0401 - Micro-Star International Co., Ltd.) Hidden
Battery Calibration (HKLM-x32\...\InstallShield_{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1807.0401 - Micro-Star International Co., Ltd.)
BurnRecovery (HKLM-x32\...\{92A6B009-1343-4C44-AFB1-8849137CA3F0}) (Version: 5.0.1807.301 - Application) Hidden
BurnRecovery (HKLM-x32\...\InstallShield_{92A6B009-1343-4C44-AFB1-8849137CA3F0}) (Version: 5.0.1807.301 - Application)
CCleaner (HKLM\...\CCleaner) (Version: 5.64 - Piriform)
Dragon Center (HKLM-x32\...\{C65B26BC-5A6F-4135-9678-55A877655471}) (Version: 2.3.1808.2701 - Micro-Star International Co., Ltd.) Hidden
Dragon Center (HKLM-x32\...\InstallShield_{C65B26BC-5A6F-4135-9678-55A877655471}) (Version: 2.3.1808.2701 - Micro-Star International Co., Ltd.)
Help Desk (HKLM-x32\...\{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 2.0.1807.3101 - Micro-Star International Co., Ltd.) Hidden
Help Desk (HKLM-x32\...\InstallShield_{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 2.0.1807.3101 - Micro-Star International Co., Ltd.)
Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1823.12.0.1137 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c700a043-5a4c-4d61-aa88-6c4191f25b64}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{D175D43C-776D-436D-A75A-E637EDE76973}) (Version: 16.5.0.1027 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{b67c644b-bbfa-45cf-a1fa-2e1ef2f99be6}) (Version: 20.60.0 - Intel Corporation)
KB9X Radio Switch Driver (HKLM\...\7A70B8EDE77ED614C261B89A36D4C656443FD153) (Version: 1.1.8.0 - ENE TECHNOLOGY INC.)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Mendeley Desktop 1.19.4 (HKLM-x32\...\Mendeley Desktop) (Version: 1.19.4 - Mendeley Ltd.)
Microsoft Office Profesional Plus 2019 - es-es (HKLM\...\ProPlus2019Retail - es-es) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - en-us (HKLM\...\ProPlus2019Retail - en-us) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-110367566-794441740-4189522202-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0010 - Microsoft Corporation)
Microsoft Project Professional 2019 - en-us (HKLM\...\ProjectPro2019Retail - en-us) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft Project Professional 2019 - es-es (HKLM\...\ProjectPro2019Retail - es-es) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft Visio Professional 2019 - en-us (HKLM\...\VisioPro2019Retail - en-us) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft Visio Professional 2019 - es-es (HKLM\...\VisioPro2019Retail - es-es) (Version: 16.0.12527.20278 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mozilla Firefox 74.0 (x64 es-ES) (HKLM\...\Mozilla Firefox 74.0 (x64 es-ES)) (Version: 74.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 74.0 - Mozilla)
MSI True Color (HKLM\...\{B4A2776D-59CD-4193-A19D-DE15CB7FC5AA}) (Version: 2.1.2.0 - Portrait Displays, Inc.)
NVIDIA 3D Vision Driver 398.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 398.84 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.14.0.139 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.0.139 - NVIDIA Corporation)
NVIDIA Graphics Driver 398.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.84 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.18.0628 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0628 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.26.328.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8519 - Realtek Semiconductor Corp.)
Spotify (HKU\S-1-5-21-110367566-794441740-4189522202-1001\...\Spotify) (Version: 1.1.28.721.g5b5ee660 - Spotify AB)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)

Packages:
=========
Escritorio remoto de Microsoft -> C:\Program Files\WindowsApps\Microsoft.RemoteDesktop_10.1.1195.0_x86__8wekyb3d8bbwe [2020-03-15] (Microsoft Corporation)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2020-03-15] (LinkedIn)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-03-15] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-03-15] (Microsoft Corporation) [MS Ad]
Microsoft Jigsaw -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJigsaw_1.9.1911.0_x86__8wekyb3d8bbwe [2020-03-15] (Microsoft Studios) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_3.10.2011.0_x64__8wekyb3d8bbwe [2020-03-15] (Microsoft Studios) [MS Ad]
Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_2.9.1913.0_x86__8wekyb3d8bbwe [2020-03-15] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-03-16] (Microsoft Studios) [MS Ad]
Microsoft Sudoku -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSudoku_1.7.10190.0_x86__8wekyb3d8bbwe [2020-03-15] (Microsoft Studios) [MS Ad]
Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_3.6.10070.0_x64__8wekyb3d8bbwe [2020-03-15] (Microsoft Studios) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20503.0_x64__8wekyb3d8bbwe [2020-03-15] (Microsoft Corporation) [MS Ad]
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.1.1.0_x64__a2t3txkz9j1jw [2020-03-15] (MAGIX)
Nahimic -> C:\Program Files\WindowsApps\A-Volute.Nahimic_1.3.11.0_x64__w2gh52qy24etm [2020-03-15] (A-Volute)
Norton Studio -> C:\Program Files\WindowsApps\symanteccorporation.nortonstudio_2.2.0.0_x86__v68kp9n051hdp [2020-03-15] (Symantec Corporation)
PhotoDirector8 for MSI -> C:\Program Files\WindowsApps\cyberlink.photodirector8formsi_8.0.4020.0_x64__jtmmp2jxy9gb6 [2020-03-15] (CyberLink)
PowerDirector for MSI -> C:\Program Files\WindowsApps\cyberlink.powerdirectorformsi_15.0.4024.0_x64__jtmmp2jxy9gb6 [2020-03-15] (CyberLink)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.2.168.0_x64__dt26b99r8h8gj [2020-03-15] (Realtek Semiconductor Corp)
Traductor -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2020-03-15] (Microsoft Corporation)

==================== Personalizado CLSID (Lista blanca): ==============

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

ShellIconOverlayIdentifiers: [  OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-05-23] () [Archivo no firmado]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-03-15] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2018-05-23] () [Archivo no firmado]
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-03-15] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Lista blanca) ====================

==================== Accesos directos & WMI ========================

==================== Módulos cargados (Lista blanca) =============

2018-05-23 22:32 - 2018-05-23 22:32 - 000125952 _____ (Intel Corporation) [Archivo no firmado] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll
2015-06-12 03:35 - 2015-06-12 03:35 - 000047816 _____ (MICRO-STAR INTERNATIONAL CO., LTD -> www.internals.com) [Archivo no firmado] C:\Program Files (x86)\MSI\Dragon Center\WinIo64.dll

==================== Alternate Data Streams (Lista blanca) ========

==================== Modo Seguro (Lista blanca) ==================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Asociación (Lista blanca) =================

==================== Internet Explorer sitios de confianza/restringidos ==========

==================== Hosts contenido: =========================

(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)

2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Otras Áreas ===========================

(Actualmente no existe una corrección automática para esta sección.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-110367566-794441740-4189522202-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\system32\oobe\info\wallpaper\backgrounddefault.jpg
DNS Servers: 212.166.210.87 - 212.166.132.96
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Firewall de Windows está habilitado.

==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==

(Si una entrada es incluida en el fixlist, será eliminada.)

HKLM\...\StartupApproved\Run: => "MsiTrueColor"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKU\S-1-5-21-110367566-794441740-4189522202-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-110367566-794441740-4189522202-1001\...\StartupApproved\Run: => "SteelSeries Engine"

==================== Reglas de firewall (Lista blanca) ================

(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)

FirewallRules: [{13788C94-4211-4FE3-88C1-6C33792B81A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4E86F971-D361-4FE5-8D6B-3184419D18FB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4C1A5636-DFFF-4A7B-91F9-7B5941101EA6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{862E511F-285E-423A-9DAA-F6B4C43E1AA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CFC5C8C2-E7BB-412F-AB7E-F1CB03E1250C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{18D46D77-6EEA-4541-A924-A83FAA13E3B4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{088D2042-8BAB-4E80-96DB-3C4ECC1374D6}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{6D4E0012-99D6-4985-8B32-67619808C66B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{667D8B35-3B8C-484F-91D4-9A656C27B4DA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E9AD5410-7785-4585-8B7F-341B40F131EC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{42374C4E-90ED-4A6F-A2B3-5DC6612819DE}] => (Block) %ProgramFiles% (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe Ningún archivo
FirewallRules: [{FF1A55C7-ED4E-41EF-BAEE-5E42A3D467FE}] => (Block) %ProgramFiles% (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe Ningún archivo
FirewallRules: [TCP Query User{99C4F112-98E2-4AF4-A6F6-ABB6A22CF4C3}C:\users\ikerr\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ikerr\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{C35E53F7-1BAD-4A36-99B8-42D7E95F9044}C:\users\ikerr\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ikerr\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{8D0E8CBB-A2E0-4E6C-8A94-87FEB3F82DF9}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{0D463755-485B-4FC9-8ABB-A8A5100AE831}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

==================== Puntos de Restauración =========================

19-03-2020 18:28:45 Punto de control programado

==================== Dispositivos defectuosos en el Administrador de dispositivos ============


==================== Errores del registro de eventos: ========================

Errores de aplicación:
==================
Error: (03/19/2020 09:01:11 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.

Error: (03/19/2020 09:01:11 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]

Error: (03/18/2020 07:23:51 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.

Error: (03/18/2020 07:23:51 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]

Error: (03/16/2020 12:39:00 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Error de adquisición de la licencia para el usuario final. hr=0xC004C003
Id. de Sku=39a1be8c-9e7f-4a75-81f4-21cfac7cbecb

Error: (03/16/2020 12:39:00 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Detalles del error de adquisición de licencias. 
hr=0xC004C003

Error: (03/16/2020 12:20:33 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Error de adquisición de la licencia para el usuario final. hr=0xC004C003
Id. de Sku=39a1be8c-9e7f-4a75-81f4-21cfac7cbecb

Error: (03/16/2020 12:20:33 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Detalles del error de adquisición de licencias. 
hr=0xC004C003


Errores del sistema:
=============
Error: (03/20/2020 01:25:35 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/20/2020 01:25:35 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/20/2020 01:25:35 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/20/2020 01:25:34 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/20/2020 01:25:34 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/20/2020 01:25:34 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/20/2020 01:25:34 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (03/19/2020 09:42:15 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80073d02: 9WZDNCRFJ364-MICROSOFT.SKYPEAPP.


Windows Defender:
===================================
Date: 2020-03-16 14:37:29.321
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 0.0.0.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 0.0.0.0
Código de error: 0x80240022
Descripción del error: El programa no puede buscar actualizaciones de definiciones. 

Date: 2020-03-16 14:37:29.321
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 0.0.0.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 0.0.0.0
Código de error: 0x80240022
Descripción del error: El programa no puede buscar actualizaciones de definiciones. 

Date: 2020-03-16 14:33:38.060
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 0.0.0.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 0.0.0.0
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2020-03-16 14:33:38.059
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 0.0.0.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 0.0.0.0
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2020-03-16 14:33:38.058
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 0.0.0.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 0.0.0.0
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

CodeIntegrity:
===================================

Date: 2020-03-20 10:41:55.559
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2020-03-20 10:41:55.177
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64\NahimicOSD.dll that did not meet the Store signing level requirements.

Date: 2020-03-20 10:41:55.164
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64\A-Volute.NahimicDevProps2.dll that did not meet the Store signing level requirements.

Date: 2020-03-19 22:18:49.967
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2020-03-19 22:18:49.731
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64\NahimicOSD.dll that did not meet the Store signing level requirements.

Date: 2020-03-19 22:18:49.722
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64\A-Volute.NahimicDevProps2.dll that did not meet the Store signing level requirements.

Date: 2020-03-19 21:33:12.851
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2020-03-19 21:33:12.653
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64\A-Volute.NahimicDevProps2.dll that did not meet the Store signing level requirements.

==================== Información de la memoria =========================== 

BIOS: American Megatrends Inc. E16Q3IMS.104 09/18/2018
Placa base: Micro-Star International Co., Ltd. MS-16Q3
Procesador: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz
Porcentaje de memoria en uso: 26%
RAM física total: 16230.15 MB
RAM física disponible: 11946.6 MB
Virtual total: 19174.15 MB
Virtual disponible: 13851.46 MB

==================== Unidades ================================

Drive c: (Windows) (Fixed) (Total:298.87 GB) (Free:243.35 GB) NTFS
Drive d: (Data) (Fixed) (Total:158.59 GB) (Free:158.45 GB) NTFS

\\?\Volume{0a9589fb-975a-4be4-8a6f-4c6af309b556}\ (WinRE tools) (Fixed) (Total:0.88 GB) (Free:0.44 GB) NTFS
\\?\Volume{9ae5f62a-1c5c-4045-ba5c-cdd2c60d1d01}\ (BIOS_RVY) (Fixed) (Total:18.17 GB) (Free:1.57 GB) NTFS
\\?\Volume{4cefefbb-77c9-4d62-aaf0-f4b3e268af42}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.26 GB) FAT32

==================== MBR & Tabla de particiones ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 6BF890C2)

Partition: GPT.

==================== Final de Addition.txt =======================
15

Disculpa y muchas gracias.

16

Hola

Alguna entrada sigue modificada, por ejemplo esta:

==================== Archivos en la raíz de algunos directorios ========

2020-03-16 14:16 - 2020-03-16 14:16 - 000000410 _____ () C:\Users\ *****\AppData\Local\oobelibMkey.log

En donde están los asteriscos debería ir el nombre.

Pon la entrada completa.

Un saludo

17

Hola, vuelvo a disculparme :sweat_smile: Adjunto los archivos.

FRST.txt (127,2 KB) Addition.txt (29,7 KB)

18

Hola

No descargaste y ejecutaste FRST desde el escritorio como te indiqué, muevelo allí si no fallará el paso siguiente.

:arrow_forward: MUY Importante :arrow_backward: Realiza una copia de seguridad del registro :

  • Para hacerlo descarga :arrow_forward: DelFix.exe( en tu escritorio).

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).

  • Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO.

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

A continuación :warning: con los demás programas cerrados ve a :arrow_forward: Inicio :arrow_forward: Ejecutar :arrow_forward: y escribe Notepad.exe.

  • Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKLM-x32\...\Run: [] => [X]
Task: {03afca3b-3880-46c3-9680-961f6db14c35} - no ruta de acceso de archivo
Task: {116dbd0e-d337-4d42-a11e-6cf1be6f4c49} - no ruta de acceso de archivo
Task: {11d6f3be-eaba-4853-968b-5415190eb4f4} - no ruta de acceso de archivo
Task: {18661c9c-7bd7-4c8c-bdae-e081597a571c} - no ruta de acceso de archivo
Task: {282f4e5d-69f8-4d56-95e3-916cb9a13e76} - no ruta de acceso de archivo
Task: {761427ac-0456-4eb1-a3b6-6a546dc14dfd} - no ruta de acceso de archivo
Task: {78261df5-5a3a-4c0e-a80a-0cf0c8205585} - no ruta de acceso de archivo
Task: {88613f89-efe2-40c3-bed6-2550c045b17b} - no ruta de acceso de archivo
Task: {a3662fca-daa6-48d9-a3cb-231273567f54} - no ruta de acceso de archivo
Task: {ad63e604-83a3-4634-a717-f1d04c65876d} - no ruta de acceso de archivo
Task: {c17ee6ae-e83e-4727-958b-a843c1c411f3} - no ruta de acceso de archivo
Task: {e7292551-a42c-4669-b0c9-5a04b898ac65} - no ruta de acceso de archivo
2020-03-16 14:16 - 2020-03-16 14:16 - 000000410 _____ () C:\Users\ikerr\AppData\Local\oobelibMkey.log
FirewallRules: [{42374C4E-90ED-4A6F-A2B3-5DC6612819DE}] => (Block) %ProgramFiles% (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe Ningún archivo
FirewallRules: [{FF1A55C7-ED4E-41EF-BAEE-5E42A3D467FE}] => (Block) %ProgramFiles% (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe Ningún archivo

HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio :arrow_backward: Esto es muy importante.

:o: Nota :o: Es importante que la herramienta FRST.exe (Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.


Y ahora usa el 2º MÉTODO: de esta Faq de Windows 8(aplicable a Windows 10) :arrow_forward: ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.

  • Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).
  • Presionar el botón FIX/Corregir y aguardar a que termine.
  • La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pega el contenido de este fichero en tu próxima respuesta.

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Un saludo

19

Hola. Aquí el reporte


Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 08-03-2020
Ejecutado por Iker Arrizabalaga (22-03-2020 22:54:09) Run:1
Ejecutado desde C:\Users\ikerr\Desktop
Perfiles cargados: Iker Arrizabalaga (Perfiles disponibles: Iker Arrizabalaga)
Modo de Inicio: Safe Mode (with Networking)
==============================================

fixlist contenido:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKLM-x32\...\Run: [] => [X]
Task: {03afca3b-3880-46c3-9680-961f6db14c35} - no ruta de acceso de archivo
Task: {116dbd0e-d337-4d42-a11e-6cf1be6f4c49} - no ruta de acceso de archivo
Task: {11d6f3be-eaba-4853-968b-5415190eb4f4} - no ruta de acceso de archivo
Task: {18661c9c-7bd7-4c8c-bdae-e081597a571c} - no ruta de acceso de archivo
Task: {282f4e5d-69f8-4d56-95e3-916cb9a13e76} - no ruta de acceso de archivo
Task: {761427ac-0456-4eb1-a3b6-6a546dc14dfd} - no ruta de acceso de archivo
Task: {78261df5-5a3a-4c0e-a80a-0cf0c8205585} - no ruta de acceso de archivo
Task: {88613f89-efe2-40c3-bed6-2550c045b17b} - no ruta de acceso de archivo
Task: {a3662fca-daa6-48d9-a3cb-231273567f54} - no ruta de acceso de archivo
Task: {ad63e604-83a3-4634-a717-f1d04c65876d} - no ruta de acceso de archivo
Task: {c17ee6ae-e83e-4727-958b-a843c1c411f3} - no ruta de acceso de archivo
Task: {e7292551-a42c-4669-b0c9-5a04b898ac65} - no ruta de acceso de archivo
2020-03-16 14:16 - 2020-03-16 14:16 - 000000410 _____ () C:\Users\ikerr\AppData\Local\oobelibMkey.log
FirewallRules: [{42374C4E-90ED-4A6F-A2B3-5DC6612819DE}] => (Block) %ProgramFiles% (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe Ningún archivo
FirewallRules: [{FF1A55C7-ED4E-41EF-BAEE-5E42A3D467FE}] => (Block) %ProgramFiles% (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe Ningún archivo

HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

Error: El punto de restauración solamente puede ser creado en modo normal.
Procesos cerrados correctamente.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03afca3b-3880-46c3-9680-961f6db14c35}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{116dbd0e-d337-4d42-a11e-6cf1be6f4c49}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{11d6f3be-eaba-4853-968b-5415190eb4f4}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{18661c9c-7bd7-4c8c-bdae-e081597a571c}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{282f4e5d-69f8-4d56-95e3-916cb9a13e76}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{761427ac-0456-4eb1-a3b6-6a546dc14dfd}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78261df5-5a3a-4c0e-a80a-0cf0c8205585}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{88613f89-efe2-40c3-bed6-2550c045b17b}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{a3662fca-daa6-48d9-a3cb-231273567f54}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ad63e604-83a3-4634-a717-f1d04c65876d}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{c17ee6ae-e83e-4727-958b-a843c1c411f3}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{e7292551-a42c-4669-b0c9-5a04b898ac65}" => eliminado correctamente
C:\Users\ikerr\AppData\Local\oobelibMkey.log => movido correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{42374C4E-90ED-4A6F-A2B3-5DC6612819DE}" => eliminado correctamente
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FF1A55C7-ED4E-41EF-BAEE-5E42A3D467FE}" => eliminado correctamente
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-110367566-794441740-4189522202-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-110367566-794441740-4189522202-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente


========= Final de RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= Final de CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
est‚n desconectados.

========= Final de CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= Final de CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to connect to BITS - 0x8007043c
El servicio no puede iniciarse en modo a prueba de errores



========= Final de CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= Final de CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= Final de CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= Final de CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 7364608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 15960717 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 9587096 B
Edge => 1929570 B
Chrome => 0 B
Firefox => 692181579 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 12410 B
NetworkService => 18320 B
ikerr => 6299371 B

RecycleBin => 2017002 B
EmptyTemp: => 701.3 MB datos temporales eliminados.

================================


El sistema necesita reiniciarse.

==== Final de Fixlog 22:54:24 ====
20

El ordenador funciona perfectamente y estos días no he vuelto a tener ningún susto. De nuevo, muchas gracias y si el último reporte lo ves bien por mi parte puedes proceder a cerrar el tema. Saludos.

1 me gusta
21

Hola @hansen

Sigue estos pasos, para eliminar las herramientas utilizadas:

Para hacerlo utiliza de nuevo/descarga >> DelFix.exe en tu escritorio.

  • Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador)

  • Marca todas las casillas, y pulsas en Run

Se abrirá el informe (DelFix.txt), puedes cerrarlo.

Gracias a ti por confiar en ForoSpyware. Ha sido un placer ayudarte :handshake:

Nos alegramos que se te haya resuelto :+1: Damos el tema por solucionado.

Solucionado

Un saludo

1 me gusta