No puedo entrar a algunas paginas de la tarea de mis hijas

MayCool · 14 Octubre, 2019 14:55

Hola amigos, gracias por leer, saben tengo días que me cuesta trabajo entrar a una que otra pagina, pero principalmente a las de la plataforma escolar de mis hijas. en otras paginas puede entrar lente o muy lento o de plano me dice que es incorrecta la dirección y después logro entrar.

Constantemente uso el ccleaner y pago una licencia de Malwarebyts.

el dia de ayer corri AdwCleaner y salio esto:

# -------------------------------
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build:    09-04-2019
# Database: 2019-10-03.2 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    10-13-2019
# Duration: 00:00:37
# OS:       Windows 10 Pro
# Scanned:  35164
# Detected: 3


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.KnightSystemProtector HKLM\Software\Wow6432Node\\Classes\CLSID\{C915F573-4C11-4968-9080-29E611FDBE9F}
PUP.Optional.WebCompanion       HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
PUP.Optional.WinRepairPro       HKCU\Software\win

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[S00].txt - [1622 octets] - [17/04/2018 23:02:31]
AdwCleaner[C00].txt - [1691 octets] - [17/04/2018 23:03:20]
AdwCleaner_Debug.log - [8483 octets] - [13/10/2019 11:34:18]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########

Y funciono de maravilla la plataforma, pero al cambiar a la de mi segunda hija comenzó a fallar de nuevo, espero que tengan alguna idea y me ayuden.

mil gracias.

Miguelgrado · 14 Octubre, 2019 15:17

Hola

Has probado desde otro dispositivo o desde otra red diferente??

El resto de paginas y el pc funciona bien??

Porque lo que creo, si solo tienes problemas con esa plataforma, es que sea problema de esta

MayCool · 14 Octubre, 2019 15:22

son varias, no son las únicas, en un principio pensé que era la plataforma pero, desde mi lap puedo entrar a la plataforma perfectamente. la pc funciona bien, en ocasiones abre lento, pero nada grave. en ocasiones algunas otras paginas también fallan pero re intento y entran.

gracias por responder

Miguelgrado · 14 Octubre, 2019 15:37

Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.
Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits) ¿Cómo saber si mi Windows es de 32 o 64 bits?
Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Yes.
En la nueva ventana que se abre, presiona el botón Scan y espera a que concluya el análisis.
Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.

En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST

Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.

MayCool · 14 Octubre, 2019 16:03

Hola me sale esto y no me deja subir nada

Lo sentimos, los usuarios nuevos solo pueden mencionar a 2 usuarios en una publicación. Lo sentimos, los usuarios nuevos solo pueden poner 2 enlaces en una publicación.

Miguelgrado · 14 Octubre, 2019 16:43

Ya deberías de poder… ahora

MayCool · 14 Octubre, 2019 18:39

perdón por la tardanza pero tengo que ir al trabajo y espero poder hacerlo desde este por que serán varios mensajes gracias por tu ayuda la aprecio mucho

Miguelgrado · 14 Octubre, 2019 19:01

Ok… esperando…

MayCool · 14 Octubre, 2019 20:07

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-10-2019 02
Ran by May Cool (administrator) on MARIOCA (Gigabyte Technology Co., Ltd. To be filled by O.E.M.) (14-10-2019 10:50:15)
Running from C:\Users\May Cool\Desktop
Loaded Profiles: May Cool (Available Profiles: May Cool & maria & azulc)
Platform: Windows 10 Pro Version 1903 18362.418 (X64) Language: Español (México)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe
() [File not signed] C:\Program Files (x86)\Gigabyte\CloudStation\RemoteControl\grckm.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0326037.inf_amd64_6cad8aeb5717c52d\B326079\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0326037.inf_amd64_6cad8aeb5717c52d\B326079\atiesrxx.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(ANDREA VACONDIO -> ANDREA VACONDIO) C:\ProgramData\ANDREA VACONDIO\PDFsam Manager\PDFsam Enhanced\PDFsam Manager.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleFirefoxHost.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12101.4.43017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\82.4.155\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\82.4.155\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\82.4.155\QtWebEngineProcess.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Facebook Inc) C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\WinUAPEntry.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\Gigabyte\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\Gigabyte\CloudStation\HomeCloud\GCloud.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\Gigabyte\CloudStation\HomeCloud\HCLOUD.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
(HP) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Janos Mathe -> H.D.S. Hungary) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe
(Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1001.4.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19091.313.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1909.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Nitro PDF Software -> ) C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe
(Nitro PDF Software -> Nitro PDF Software) C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe
(Panda Security S.L -> Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.52.138.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.52.138.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.52.138.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Telegram FZ-LLC -> Telegram FZ-LLC) C:\Users\May Cool\AppData\Roaming\Telegram Desktop\Telegram.exe
Failed to access process -> HCLOUD.exe
Failed to access process -> ubssrv_oc_only.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2016-12-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3933496 2012-09-20] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3125896 2018-05-17] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2179208 2019-08-27] (Logitech Inc -> Logitech, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6210368 2019-10-02] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49904 2014-08-14] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [FonePaw iPhone Data RecoveryAppService] => C:\Program Files (x86)\FonePaw\FonePaw iPhone Data Recovery\AppService.exe [87832 2018-06-25] (FonePaw Technology Limited -> )
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [8192 2013-04-29] () [File not signed]
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35258768 2019-03-14] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24916512 2019-10-01] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\May Cool\AppData\Local\Microsoft\Teams\Update.exe [1789552 2019-09-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-921498447-3704326434-972431746-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [38400 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\AppCompatFlags\Custom\Rogue Squadron.EXE: [{9fe9f217-a9e0-4032-9f7a-86f7206bafa1}.sdb] -> Star Wars - Rogue Squadron 3D
HKLM\Software\...\AppCompatFlags\InstalledSDB\{9fe9f217-a9e0-4032-9f7a-86f7206bafa1}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{9fe9f217-a9e0-4032-9f7a-86f7206bafa1}.sdb [2017-05-07]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-19] (Google LLC -> Google LLC)
Startup: C:\Users\May Cool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Enviar a OneNote.lnk [2019-07-23]
ShortcutTarget: Enviar a OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\May Cool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-07-30]
ShortcutTarget: MEGAsync.lnk -> C:\Users\May Cool\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {062823DF-1D42-465D-B351-15FCF8AB507F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-09-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {06F5F580-A64F-45AC-88BE-5F32C6A8CED6} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-11] (Adobe Inc. -> Adobe)
Task: {0A3F481B-5AE3-4A7A-9A18-747B613FA2B8} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2168128 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {0BC2A04E-516F-444B-B9F1-0CC90C2C83A1} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {0EC59B95-DC01-4858-A699-844D0348487B} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe [116480 2009-09-23] (Panda Security S.L -> )
Task: {1818F45B-0E05-4996-B1E3-F65091A916DB} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {26DE2FD6-478E-45D2-8EE0-48052AEB5B62} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6292896 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {27600342-A315-4F1C-B1F7-A9B272146E60} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-09-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {27B3EF52-5A6F-44A7-9BDF-37E5CF6D834D} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-06-23] (Dropbox, Inc -> Dropbox, Inc.)
Task: {3B568745-597D-470B-902B-4BCB79853544} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {477BBD44-CD82-47A8-9867-43F008B78AF2} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {497B1B1F-9371-47E6-A450-345C0B623AFA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-06-23] (Google Inc -> Google Inc.)
Task: {4C3F4C26-82F0-43ED-AF4C-73A718F02BD2} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {4F4A8233-1639-4D39-9E68-51A877D8D805} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18732320 2019-10-01] (Piriform Software Ltd -> Piriform Ltd)
Task: {57BBA67A-A088-43CD-A304-6736E0023F56} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2497800 2017-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {5ECE5894-04F5-4389-847D-07579FA2F6DC} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-10-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5FDE13B8-97D5-4968-B930-D58B7BE8FAF9} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_May_20Cool => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [5102680 2017-03-09] (Janos Mathe -> H.D.S. Hungary)
Task: {60763B47-87E2-4643-99C5-61A71F5DE490} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2168128 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {60BC8545-FE7A-4738-A639-803E68335FB1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-09-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {66ED4114-C32F-492E-BBCF-97C490BBE239} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2497800 2017-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {70C7BF79-BB39-4270-8D65-D97B1B950718} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [39176 2017-10-11] (Microsoft Corporation -> Microsoft)
Task: {7385BFF1-4C72-4027-BEF5-431358BA6750} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_270_Plugin.exe [1457720 2019-10-09] (Adobe Inc. -> Adobe)
Task: {773F018D-5035-4177-BC24-1176C9C0BB06} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2016-06-23] (Google Inc -> Google Inc.)
Task: {778A7071-35F9-4015-ABAD-6709BD52CA8E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {85D4FE26-5ACF-4DA5-82D1-CCACE1C0E27B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_270_pepper.exe [1453112 2019-10-11] (Adobe Inc. -> Adobe)
Task: {87760A62-FDD0-4156-997B-5DF1C4333312} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [6526328 2016-03-01] (Nero AG -> Nero AG)
Task: {8F141656-9A5A-4E90-A322-B0EE69C64E1C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6292896 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {948F8EDF-403B-41C1-9301-FDCDF8AD951A} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [1967880 2017-10-11] (Microsoft Corporation -> Microsoft)
Task: {957DED1A-DADB-4215-BC1F-B36B6C788520} - System32\Tasks\DivXUpdate => C:\Program Files (x86)\Common Files\DivX Shared\DivX Update\DivXUpdate.exe [68568 2017-05-01] (DivX, LLC -> DivX, LLC)
Task: {9EF3C51E-083D-4C67-9534-DE103BA9F0E3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {B5A343F7-377F-4ACD-A8D2-B4D500535626} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {C16FB9D5-AE30-4AFD-A6D3-DAEC817CDBB7} - System32\Tasks\Microsoft\Windows\Setup\Windows Upgrade Notification Task => C:\Windows\System32\NotificationUI.exe
Task: {C9BBB8A5-7EE5-447F-A33B-53DBC2037835} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27398000 2019-10-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {CD92A93E-9B37-4B24-BDBB-5E6E749E275E} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-06-23] (Dropbox, Inc -> Dropbox, Inc.)
Task: {CDCF7F70-ECDC-433E-A145-69C5DB8C5529} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {D8C100BC-CD59-4E25-9F16-ADBC0A30EEDA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {DE91315A-6CF1-4105-89AA-70B80EA8F8F4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MpCmdRun.exe [468120 2019-09-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EB11841A-9FE8-42E8-A8B8-353BAFED5B7F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27398000 2019-10-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {ED0C1F69-C3A2-41EA-B8C3-3F0D83A1F6C0} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
Task: {EF4B2BC8-1CD3-4261-B266-D39F3E4DE891} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [150264 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {EFBF12F4-2490-481F-8A89-20EFFDAECD8C} - no filepath
Task: {F2808F36-71F1-46BD-A855-36B3EFEFAF63} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {F78D3A7E-01B8-42FA-B967-71356ACB2640} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1844488 2017-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {FE73BC5B-8170-4715-AEC1-F9F5EA2EEAC3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [150264 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {FEE214D0-7057-4D94-9130-732F648E743A} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2349952 2019-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {FFDCFADA-EFC1-4F76-B65F-B2455ABD2575} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1844488 2017-10-11] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{b89b5b42-c84c-42c9-8ecf-74a0c6e8570c}: [NameServer] 8.8.8.8,8.8.4.4

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-921498447-3704326434-972431746-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-921498447-3704326434-972431746-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://mx.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10420__180528__yaie&p={searchTerms}
SearchScopes: HKU\S-1-5-21-921498447-3704326434-972431746-1001 -> {F81BED16-EBCF-469B-A50A-474B32F159EF} URL = hxxps://mx.search.yahoo.com/search?p={searchTerms}&intl=mx&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-09-17] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_171\bin\ssv.dll [2018-05-07] (Oracle America, Inc. -> Oracle Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2018-05-17] (Logitech Inc -> Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-05-07] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-09-17] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-05-07] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2018-05-17] (Logitech Inc -> Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-05-07] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-17] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-09-17] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-17] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-09-17] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-17] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-09-17] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-17] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-09-17] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: dj25k9op.default
FF ProfilePath: C:\Users\May Cool\AppData\Roaming\Mozilla\Firefox\Profiles\dj25k9op.default [2019-10-14]
FF DownloadDir: D:\Descargas
FF Homepage: Mozilla\Firefox\Profiles\dj25k9op.default -> hxxp://www.sopitas.com/site/
FF NewTab: Mozilla\Firefox\Profiles\dj25k9op.default -> hxxps://mx.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10420__180528__yaff
FF Extension: (Facebook Container) - C:\Users\May Cool\AppData\Roaming\Mozilla\Firefox\Profiles\dj25k9op.default\Extensions\@contain-facebook.xpi [2019-10-01]
FF Extension: (Marcadores de iCloud) - C:\Users\May Cool\AppData\Roaming\Mozilla\Firefox\Profiles\dj25k9op.default\Extensions\[email protected] [2018-07-31]
FF Extension: (MyJDownloader Browser Extension) - C:\Users\May Cool\AppData\Roaming\Mozilla\Firefox\Profiles\dj25k9op.default\Extensions\[email protected] [2019-10-11] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (Download Manager (S3)) - C:\Users\May Cool\AppData\Roaming\Mozilla\Firefox\Profiles\dj25k9op.default\Extensions\[email protected] [2019-07-10]
FF Extension: (uBlock Origin) - C:\Users\May Cool\AppData\Roaming\Mozilla\Firefox\Profiles\dj25k9op.default\Extensions\[email protected] [2019-09-28]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\May Cool\AppData\Roaming\Mozilla\Firefox\Profiles\dj25k9op.default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2019-10-04]
FF Extension: (Logitech SetPoint) - C:\Users\May Cool\AppData\Roaming\Mozilla\Firefox\Profiles\dj25k9op.default\Extensions\{84380428-8c9d-4bdf-913d-b2c34d6562d9}.xpi [2018-07-25]
FF Extension: (No Name) - C:\Users\May Cool\AppData\Roaming\Mozilla\Firefox\Profiles\dj25k9op.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-22]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2018-07-25] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_270.dll [2019-10-09] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-05-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-05-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-09-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_270.dll [2019-10-09] (Adobe Inc. -> )
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2017-05-15] (DivX, LLC -> DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-05-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-05-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-09-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-09-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\Program Files (x86)\Common Files\Nero\BrowserPlugin\npBrowserPlugin.dll [2016-02-29] (Nero AG -> Nero AG)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll [2014-05-22] (Nitro PDF Software -> Nitro PDF)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-03] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-03] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-921498447-3704326434-972431746-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2016-07-15] (Ubisoft Entertainment Sweden AB -> )

Chrome: 
=======
CHR DefaultSearchURL: Default -> hxxps://es.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://es.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\May Cool\AppData\Local\Google\Chrome\User Data\Default [2019-10-13]
CHR Extension: (Presentaciones) - C:\Users\May Cool\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-23]
CHR Extension: (Documentos) - C:\Users\May Cool\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-15]
CHR Extension: (Google Drive) - C:\Users\May Cool\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-23]
CHR Extension: (YouTube) - C:\Users\May Cool\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-23]
CHR Extension: (Adobe Acrobat) - C:\Users\May Cool\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-10-02]
CHR Extension: (Hojas de cálculo) - C:\Users\May Cool\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-23]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\May Cool\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-03-28]
CHR Extension: (Yahoo Partner) - C:\Users\May Cool\AppData\Local\Google\Chrome\User Data\Default\Extensions\njpedbdniajflhgfoipnjkednnlkngbj [2018-09-03]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\May Cool\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\May Cool\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-20]
CHR Extension: (Chrome Media Router) - C:\Users\May Cool\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-03]
CHR HKLM-x32\...\Chrome\Extension: [dhancbnhabhandieicagelcddkdfgoif] - C:\Program Files (x86)\Allavsoft\Video Downloader Converter\extensions\3.17.3.7036\BVDChromeExt.crx [2019-08-11]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [njpedbdniajflhgfoipnjkednnlkngbj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-09-25] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0326037.inf_amd64_6cad8aeb5717c52d\B326079\atiesrxx.exe [481768 2018-03-23] (Advanced Micro Devices, Inc. -> AMD)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-04-17] (Advanced Micro Devices, Inc.) [File not signed]
S2 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-09-19] (Advanced Micro Devices, Inc. -> )
S3 AppleChargerSrv; C:\WINDOWS\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11595544 2019-10-04] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-06-23] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-06-23] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-10-02] (Dropbox, Inc -> Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-03-22] (Digital Wave Ltd -> Digital Wave Ltd.)
R2 gadjservice; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [16896 2015-04-14] () [File not signed]
R2 GCloud; C:\Program Files (x86)\GIGABYTE\CloudStation\HomeCloud\GCloud.exe [19264 2014-06-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
R2 HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [13824 2011-10-17] (Hewlett-Packard Company) [File not signed]
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [174592 2012-12-04] (HP) [File not signed]
S4 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [62760 2016-06-01] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 NitroDriverReadSpool9; C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9x64.exe [230920 2014-05-22] (Nitro PDF Software -> Nitro PDF Software)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 9\Nitro_UpdateService.exe [417800 2014-05-22] (Nitro PDF Software -> )
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-07-22] (Electronic Arts, Inc. -> Electronic Arts)
R2 PDFsam Manager; C:\ProgramData\ANDREA VACONDIO\PDFsam Manager\PDFsam Enhanced\PDFsam Manager.exe [1050224 2015-11-13] (ANDREA VACONDIO -> ANDREA VACONDIO)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2016-07-14] (Even Balance, Inc. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe [102400 2013-02-22] (Gigabyte Technology CO., LTD.) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11969880 2019-07-03] (TeamViewer GmbH -> TeamViewer GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-09-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-09-26] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdide64; C:\WINDOWS\System32\drivers\amdide64.sys [13848 2016-08-08] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices Inc.)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [49448 2016-08-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0326037.inf_amd64_6cad8aeb5717c52d\B326079\atikmdag.sys [41595872 2018-03-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0326037.inf_amd64_6cad8aeb5717c52d\B326079\atikmpag.sys [546280 2018-03-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [80640 2013-06-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [25344 2013-06-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [60104 2014-09-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 AppleCharger; C:\WINDOWS\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [111112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 gdrv; C:\Windows\gdrv.sys [26192 2019-10-13] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-08-08] (Martin Malik - REALiX -> REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [199768 2019-10-01] (Malwarebytes Corporation -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-10-13] (Malwarebytes Corporation -> Malwarebytes)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2017-10-08] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [38032 2016-01-29] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [946696 2016-12-15] (Realtek Semiconductor Corp. -> Realtek )
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [413912 2016-09-19] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
S1 UsbCharger; C:\WINDOWS\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [58536 2012-08-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46688 2019-09-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [350136 2019-09-26] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-09-26] (Microsoft Windows -> Microsoft Corporation)

MayCool · 14 Octubre, 2019 20:14

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-14 10:45 - 2019-10-14 10:50 - 000094096 _____ C:\Users\May Cool\Desktop\Addition.txt
2019-10-14 10:42 - 2019-10-14 10:51 - 000044422 _____ C:\Users\May Cool\Desktop\FRST.txt
2019-10-14 10:42 - 2019-10-14 10:50 - 000000000 ____D C:\FRST
2019-10-14 10:40 - 2019-10-14 10:40 - 001616384 _____ (Farbar) C:\Users\May Cool\Desktop\FRST64(1).exe
2019-10-13 16:05 - 2019-10-13 16:05 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-10-13 15:57 - 2019-10-13 11:33 - 007622344 _____ (Malwarebytes) C:\Users\May Cool\Desktop\adwcleaner_7.4.1.exe
2019-10-12 19:13 - 2019-10-12 19:13 - 000000000 ____D C:\Users\maria\AppData\Local\mbam
2019-10-12 10:55 - 2019-10-12 10:55 - 000000000 ____D C:\Users\May Cool\Desktop\Fer Guadarrama UVM lomasverdes naucalpan
2019-10-11 08:29 - 2019-10-11 08:29 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 025443840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 022628352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 019811840 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 018019840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 008010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 007195648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 007015936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 006232064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 005915648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 004129616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 003525592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-10-11 08:29 - 2019-10-11 08:29 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2019-10-11 08:29 - 2019-10-11 08:29 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2019-10-11 08:29 - 2019-10-11 08:29 - 002494440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 002422592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-10-11 08:29 - 2019-10-11 08:29 - 002314648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 002236144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 002138472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-10-11 08:29 - 2019-10-11 08:29 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 001394488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-10-11 08:29 - 2019-10-11 08:29 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 001283072 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 001273392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 001217904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-10-11 08:29 - 2019-10-11 08:29 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 001152016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 001098712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000774672 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-10-11 08:29 - 2019-10-11 08:29 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000300184 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-10-11 08:29 - 2019-10-11 08:29 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-10-11 08:29 - 2019-10-11 08:29 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-10-11 08:29 - 2019-10-11 08:29 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2019-10-11 08:28 - 2019-10-11 08:29 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 017787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 009928504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 007600664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 006517640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 005041664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 004562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 004012544 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 003947008 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 003771392 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 003701760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 002861568 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 002762504 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 002723328 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-10-11 08:28 - 2019-10-11 08:28 - 002703360 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 002456064 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 002114048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 002095104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 002081976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 002000168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001952360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001847808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001743672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001730560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001687040 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001664928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001656392 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001562424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001439744 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 001084432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000904208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000890472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000880088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000856576 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-10-11 08:28 - 2019-10-11 08:28 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000829536 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000818688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000758584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mousocoreworker.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000679880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000598024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000516408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000515896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000466416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-10-11 08:28 - 2019-10-11 08:28 - 000452408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-10-11 08:28 - 2019-10-11 08:28 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000412152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000404392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000380216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000225080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2019-10-11 08:28 - 2019-10-11 08:28 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000220472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000202040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-10-11 08:28 - 2019-10-11 08:28 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000165832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000150328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-10-11 08:28 - 2019-10-11 08:28 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2019-10-11 08:28 - 2019-10-11 08:28 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000037176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2019-10-11 08:28 - 2019-10-11 08:28 - 000033048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2019-10-11 08:28 - 2019-10-11 08:28 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2019-10-11 08:28 - 2019-10-11 08:28 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2019-10-11 07:59 - 2019-10-11 07:59 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2019-10-11 07:59 - 2019-10-11 07:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2019-10-11 07:50 - 2019-10-13 11:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-10-04 12:25 - 2019-10-04 12:25 - 000032663 _____ C:\Users\May Cool\Desktop\Visa mario.pdf
2019-10-04 08:53 - 2019-10-04 08:53 - 006084048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 005764872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 005105152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 004481536 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 003964056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 003742032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 002821120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 002799616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-10-04 08:53 - 2019-10-04 08:53 - 002258856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 002190864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 002132280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001957008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001788728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001716752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001692160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001664376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001616784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001611792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001510752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001505320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001501712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001473488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001386000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001334064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdrecordcpu.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001297936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001263616 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001244944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001178816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001054872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001047968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 001043984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\assignedaccessmanagersvc.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000957240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000904704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000827408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000816648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000792296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000784384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000772656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000666128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessManager.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000649016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000599040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2019-10-04 08:53 - 2019-10-04 08:53 - 000568336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000539648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9on12.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000502784 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000501232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-10-04 08:53 - 2019-10-04 08:53 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000495120 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000487576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000463272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000450360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11on12.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-10-04 08:53 - 2019-10-04 08:53 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000394256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000383984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000379840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secproc.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2019-10-04 08:53 - 2019-10-04 08:53 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000285256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000283688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdwriter.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000258064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000236520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgmgr32.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000231440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000228880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000202768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000181776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000173072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-10-04 08:53 - 2019-10-04 08:53 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000145208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000143808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000139264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000137864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devobj.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwclientres.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000125232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000116904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000110080 _____ C:\WINDOWS\system32\ResBParser.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000100664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2019-10-04 08:53 - 2019-10-04 08:53 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000089544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000084496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-10-04 08:53 - 2019-10-04 08:53 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvvmtransport.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvvmtransport.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devrtl.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000037904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000021816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScriptRunner.exe
2019-10-04 08:53 - 2019-10-04 08:53 - 000021544 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwstreamingux.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSErrRedir.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2019-10-04 08:53 - 2019-10-04 08:53 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2019-10-04 08:53 - 2019-10-04 08:53 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-10-04 08:53 - 2019-10-04 08:53 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-10-04 08:53 - 2019-10-04 08:53 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-10-04 08:53 - 2019-10-04 08:53 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-10-04 08:53 - 2019-10-04 08:53 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-10-04 08:53 - 2019-10-04 08:53 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-10-04 08:53 - 2019-10-04 08:53 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-10-04 08:53 - 2019-10-04 08:53 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2019-10-04 08:53 - 2019-10-04 08:53 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2019-10-04 08:53 - 2019-10-04 08:53 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2019-10-04 08:53 - 2019-10-04 08:53 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-10-04 08:52 - 2019-10-04 08:52 - 007905000 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 007848192 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 006425600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 006227624 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 006164480 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 005865272 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizimg.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 004046336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 003590968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 003553280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 003386880 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 003184128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 003105280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 002772032 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 002590208 _____ C:\WINDOWS\system32\dwmscene.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 002160640 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 002069504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001940952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001913296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001857024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001845408 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-04 08:52 - 2019-10-04 08:52 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001607680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001543168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001512320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 001482040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001383856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001372160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-10-04 08:52 - 2019-10-04 08:52 - 001261800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001150240 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001029432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 001023128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000984376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000944664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9on12.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000833312 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000759488 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 000674072 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000673080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000656960 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11on12.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000639400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000598016 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 000541480 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000442704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 000398728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000375720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000363624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000342896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000334936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000293344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgmgr32.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe

MayCool · 14 Octubre, 2019 20:16

2019-10-04 08:52 - 2019-10-04 08:52 - 000284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000278080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxlib.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000176152 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000159112 _____ (Microsoft Corporation) C:\WINDOWS\system32\devobj.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000140496 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ForceSync.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000119840 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000105272 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 000092624 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000066832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\devrtl.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnppolicy.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000053248 _____ C:\WINDOWS\system32\Drivers\UsbPmApi.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000047616 _____ C:\WINDOWS\system32\UsbPmApi.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2019-10-04 08:52 - 2019-10-04 08:52 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000020944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmsgapi.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000016696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizres.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2019-10-04 08:52 - 2019-10-04 08:52 - 000011576 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxlibres.dll
2019-10-04 08:52 - 2019-10-04 08:52 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2019-10-04 08:51 - 2019-10-04 08:52 - 004612520 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-04 08:51 - 2019-10-04 08:51 - 002120704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 002120272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 001036800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-10-04 08:51 - 2019-10-04 08:51 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000732176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-10-04 08:51 - 2019-10-04 08:51 - 000551952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-10-04 08:51 - 2019-10-04 08:51 - 000449888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-10-04 08:51 - 2019-10-04 08:51 - 000355000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-10-04 08:51 - 2019-10-04 08:51 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-10-04 08:51 - 2019-10-04 08:51 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ManageCI.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000223032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-10-04 08:51 - 2019-10-04 08:51 - 000208184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-10-04 08:51 - 2019-10-04 08:51 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-10-04 08:51 - 2019-10-04 08:51 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-10-04 08:51 - 2019-10-04 08:51 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-10-04 08:51 - 2019-10-04 08:51 - 000151568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2019-10-04 08:51 - 2019-10-04 08:51 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-10-04 08:51 - 2019-10-04 08:51 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000079376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uaspstor.sys
2019-10-04 08:51 - 2019-10-04 08:51 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidspi.sys
2019-10-04 08:51 - 2019-10-04 08:51 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000052752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys
2019-10-04 08:51 - 2019-10-04 08:51 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2019-10-04 08:51 - 2019-10-04 08:51 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2019-10-04 08:51 - 2019-10-04 08:51 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32_DeviceGuard.dll
2019-10-04 08:51 - 2019-10-04 08:51 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2019-10-04 08:09 - 2019-10-04 08:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-10-03 13:42 - 2019-10-03 13:42 - 000000823 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-10-03 08:15 - 2019-10-11 07:34 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2019-10-03 08:15 - 2019-10-03 08:15 - 000003518 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2019-10-02 10:07 - 2019-10-02 10:07 - 000000247 _____ C:\Users\May Cool\Desktop\Estafeta.txt
2019-10-02 07:14 - 2019-10-02 07:14 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-10-02 07:14 - 2019-10-02 07:14 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-10-02 07:14 - 2019-10-02 07:14 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-10-02 07:14 - 2019-10-02 07:14 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-10-01 18:18 - 2019-10-01 18:18 - 000199768 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2019-09-29 20:14 - 2019-09-29 20:15 - 000147981 _____ C:\Users\May Cool\Desktop\SkySales.pdf
2019-09-26 13:37 - 2019-10-03 08:07 - 000000000 ____D C:\Users\May Cool\AppData\LocalLow\BitTorrent
2019-09-22 17:43 - 2019-09-22 17:43 - 000002356 _____ C:\Users\azulc\Desktop\Microsoft Teams.lnk
2019-09-22 17:43 - 2019-09-22 17:43 - 000000000 ____D C:\Users\azulc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation
2019-09-22 17:43 - 2019-09-22 17:43 - 000000000 ____D C:\Users\azulc\AppData\Roaming\Microsoft Teams
2019-09-22 17:42 - 2019-09-22 17:44 - 000000000 ____D C:\Users\azulc\AppData\Local\SquirrelTemp
2019-09-20 08:46 - 2019-09-20 08:46 - 001876410 _____ C:\Users\May Cool\Desktop\ANDALUCIA SECC35 170919.pdf
2019-09-19 22:29 - 2019-09-19 22:29 - 000002356 _____ C:\Users\maria\Desktop\Microsoft Teams.lnk
2019-09-19 22:29 - 2019-09-19 22:29 - 000000000 ____D C:\Users\maria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation
2019-09-19 22:29 - 2019-09-19 22:29 - 000000000 ____D C:\Users\maria\AppData\Roaming\Microsoft Teams
2019-09-19 22:27 - 2019-09-19 22:30 - 000000000 ____D C:\Users\maria\AppData\Local\SquirrelTemp
2019-09-18 12:08 - 2019-09-18 12:08 - 000002371 _____ C:\Users\May Cool\Desktop\Microsoft Teams.lnk
2019-09-18 12:08 - 2019-09-18 12:08 - 000000000 ____D C:\Users\May Cool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation
2019-09-18 12:08 - 2019-09-18 12:08 - 000000000 ____D C:\Users\May Cool\AppData\Roaming\Microsoft Teams
2019-09-18 08:17 - 2019-09-18 08:17 - 000000000 ____D C:\Program Files (x86)\Teams Installer
2019-09-15 20:38 - 2019-09-15 17:43 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-09-15 20:38 - 2019-09-15 17:43 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-09-15 17:32 - 2019-09-15 17:32 - 005500928 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 004857856 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 004306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 003817472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 001488216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-09-15 17:32 - 2019-09-15 17:32 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2019-09-15 17:32 - 2019-09-15 17:32 - 001138688 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 001122816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 001105480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000775680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-09-15 17:32 - 2019-09-15 17:32 - 000510984 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-09-15 17:32 - 2019-09-15 17:32 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000431448 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000362056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000316216 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000307200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000283264 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2019-09-15 17:32 - 2019-09-15 17:32 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceCenter.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000167136 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000145720 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-09-15 17:32 - 2019-09-15 17:32 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInput1_4.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000042512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2019-09-15 17:32 - 2019-09-15 17:32 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInput1_4.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecerts.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fvecerts.dll
2019-09-15 17:32 - 2019-09-15 17:32 - 000019984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 005848840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 003750912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 003372448 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 002743808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 002586816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 002576384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 002562048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 001531656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 001413624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 001305608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000957952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000913168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontext.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000822416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000822072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000810808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000797112 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000776704 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-09-15 17:31 - 2019-09-15 17:31 - 000769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcIsoCtnr.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000699904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000680976 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000673456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000667272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000631808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000628400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000593112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000561680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-09-15 17:31 - 2019-09-15 17:31 - 000558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000541264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddraw.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000511488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000488056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000464696 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000454736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000401208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-09-15 17:31 - 2019-09-15 17:31 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000310072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngctasks.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000267496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\twext.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twext.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000147184 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000141840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-09-15 17:31 - 2019-09-15 17:31 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000120344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000106296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddrawex.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ddrawex.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XInputUap.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-09-15 17:31 - 2019-09-15 17:31 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2019-09-15 17:31 - 2019-09-15 17:31 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDKOR.DLL
2019-09-15 17:31 - 2019-09-15 17:31 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2019-09-15 17:31 - 2019-09-15 17:31 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 007582752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 004009472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 003353088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 001601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 001158656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 001068560 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000909736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-09-15 17:30 - 2019-09-15 17:30 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000808960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000731648 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000722288 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000676632 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000596008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-09-15 17:30 - 2019-09-15 17:30 - 000489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-09-15 17:30 - 2019-09-15 17:30 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-09-15 17:30 - 2019-09-15 17:30 - 000396288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000338800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-09-15 17:30 - 2019-09-15 17:30 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000237880 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-09-15 17:30 - 2019-09-15 17:30 - 000182288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2019-09-15 17:30 - 2019-09-15 17:30 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000149504 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-09-15 17:30 - 2019-09-15 17:30 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000146416 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe
2019-09-15 17:30 - 2019-09-15 17:30 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\XInputUap.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll
2019-09-15 17:30 - 2019-09-15 17:30 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dstokenclean.exe
2019-09-15 17:29 - 2019-09-15 17:29 - 001744400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 001686528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 001259424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-09-15 17:29 - 2019-09-15 17:29 - 001094144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000977408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000905728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000804880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-09-15 17:29 - 2019-09-15 17:29 - 000804664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2019-09-15 17:29 - 2019-09-15 17:29 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2019-09-15 17:29 - 2019-09-15 17:29 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-09-15 17:29 - 2019-09-15 17:29 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000252944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-09-15 17:29 - 2019-09-15 17:29 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wosc.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApproveChildRequest.exe
2019-09-15 17:29 - 2019-09-15 17:29 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2019-09-15 17:29 - 2019-09-15 17:29 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys
2019-09-15 17:29 - 2019-09-15 17:29 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2019-09-15 17:29 - 2019-09-15 17:29 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo-overrides.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000055304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2019-09-15 17:29 - 2019-09-15 17:29 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll
2019-09-15 17:29 - 2019-09-15 17:29 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll

MayCool · 14 Octubre, 2019 20:21

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-14 10:49 - 2019-03-18 23:50 - 000000000 ____D C:\WINDOWS\INF
2019-10-14 10:46 - 2019-03-18 23:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-14 10:35 - 2017-03-11 02:28 - 000000000 ____D C:\Users\May Cool\Downloads\Telegram Desktop
2019-10-14 09:45 - 2016-11-30 22:10 - 000000000 ____D C:\Users\May Cool\AppData\Roaming\Telegram Desktop
2019-10-14 09:34 - 2016-11-16 22:17 - 000000000 ____D C:\Users\May Cool\AppData\LocalLow\Mozilla
2019-10-14 09:32 - 2016-06-23 08:38 - 000000000 ____D C:\Users\May Cool\AppData\Local\Adobe
2019-10-14 09:31 - 2019-06-29 23:42 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2019-10-14 09:30 - 2019-06-29 23:42 - 000004206 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{968233B5-814F-4C44-981B-D909FBE583DE}
2019-10-13 17:26 - 2019-06-29 22:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-13 17:14 - 2019-06-29 23:42 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-10-13 16:05 - 2016-06-24 09:05 - 000026192 ____N (Windows (R) Server 2003 DDK provider) C:\WINDOWS\gdrv.sys
2019-10-13 16:05 - 2016-06-23 08:04 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-10-13 16:04 - 2019-06-29 23:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-13 16:03 - 2019-03-18 23:37 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2019-10-13 16:03 - 2017-04-16 20:03 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-10-13 15:56 - 2016-11-18 17:25 - 000000000 ____D C:\Users\maria\AppData\LocalLow\Mozilla
2019-10-13 14:10 - 2016-06-24 11:10 - 000000000 ____D C:\Users\May Cool\AppData\Roaming\vlc
2019-10-13 12:36 - 2018-05-23 21:49 - 000000000 ____D C:\Users\May Cool\AppData\Local\D3DSCache
2019-10-13 11:53 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-13 11:46 - 2017-11-26 19:20 - 000000000 ____D C:\Users\May Cool\AppData\Local\Packages
2019-10-13 11:37 - 2016-06-23 07:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-10-13 11:27 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-10-13 11:20 - 2019-03-18 23:52 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-12 17:09 - 2016-06-23 07:35 - 000000000 ____D C:\Users\May Cool\AppData\Local\JDownloader v2.0
2019-10-12 13:19 - 2016-11-30 22:15 - 000000000 ____D C:\Users\May Cool\AppData\Roaming\WhatsApp
2019-10-12 10:41 - 2016-06-23 07:44 - 000001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-10-12 10:14 - 2019-03-18 23:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-10-12 10:08 - 2016-06-23 07:13 - 000000000 ____D C:\Program Files\Microsoft Office
2019-10-12 10:07 - 2019-06-29 23:15 - 001773362 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-10-12 10:07 - 2019-03-19 06:49 - 000786298 _____ C:\WINDOWS\system32\perfh00A.dat
2019-10-12 10:07 - 2019-03-19 06:49 - 000155132 _____ C:\WINDOWS\system32\perfc00A.dat
2019-10-11 13:53 - 2019-03-18 23:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-10-11 13:53 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-10-11 13:53 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-10-11 13:53 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-10-11 13:53 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SystemResources
2019-10-11 13:53 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-10-11 13:53 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-10-11 13:53 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-10-11 13:53 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-10-11 13:53 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-10-11 13:52 - 2019-06-29 23:02 - 000000000 ____D C:\Users\May Cool
2019-10-11 13:21 - 2019-03-14 20:58 - 000000000 ____D C:\Users\May Cool\AppData\Local\WhatsApp
2019-10-11 08:44 - 2019-03-18 23:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-11 08:43 - 2016-06-23 17:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-10-11 08:36 - 2016-06-23 17:52 - 127230528 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-10-11 07:30 - 2016-10-29 11:17 - 000000000 ___RD C:\Users\azulc\OneDrive
2019-10-11 07:28 - 2019-06-29 23:42 - 000004616 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2019-10-11 07:28 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-10-11 07:28 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-10-09 17:23 - 2019-06-29 23:42 - 000004664 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2019-10-09 16:06 - 2019-06-29 23:02 - 000000000 ____D C:\Users\maria
2019-10-09 16:05 - 2017-11-26 19:19 - 000000000 ____D C:\Users\maria\AppData\Local\Packages
2019-10-09 16:05 - 2016-07-22 20:04 - 000000000 ____D C:\Users\maria\AppData\Roaming\Adobe
2019-10-06 19:38 - 2016-06-24 03:15 - 000000000 ____D C:\Users\May Cool\Documents\Ccleaner
2019-10-06 19:37 - 2018-11-11 19:20 - 000000000 ____D C:\Users\May Cool\AppData\Roaming\BitTorrent
2019-10-05 23:35 - 2019-06-30 00:11 - 000000000 ___RD C:\Users\May Cool\OneDrive - Secretaría de Educación
2019-10-05 23:35 - 2016-06-23 08:05 - 000000000 ___RD C:\Users\May Cool\OneDrive
2019-10-05 19:28 - 2019-06-29 23:42 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-921498447-3704326434-972431746-1005
2019-10-05 19:28 - 2019-06-29 23:02 - 000002363 _____ C:\Users\maria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-05 19:28 - 2016-07-22 20:07 - 000000000 ___RD C:\Users\maria\OneDrive
2019-10-05 15:53 - 2017-11-28 17:06 - 000000000 ___RD C:\Users\maria\3D Objects
2019-10-05 15:53 - 2016-04-27 00:37 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-10-05 15:00 - 2019-06-29 23:02 - 000000000 ____D C:\Users\azulc
2019-10-05 14:36 - 2019-06-29 23:42 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-921498447-3704326434-972431746-1007
2019-10-05 14:36 - 2019-06-29 23:02 - 000002363 _____ C:\Users\azulc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-05 14:32 - 2017-12-02 20:46 - 000000000 ___RD C:\Users\azulc\3D Objects
2019-10-04 18:07 - 2017-11-26 19:49 - 000000000 ___RD C:\Users\May Cool\3D Objects
2019-10-04 18:02 - 2019-06-29 22:54 - 005144496 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-10-04 13:31 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\AppV
2019-10-04 13:31 - 2019-03-18 23:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-10-04 13:31 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2019-10-04 13:31 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-10-04 13:31 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-10-04 12:25 - 2016-06-27 10:33 - 000000000 ____D C:\Users\May Cool\AppData\Roaming\Nitro PDF
2019-10-04 08:10 - 2016-06-23 06:58 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-10-03 10:01 - 2016-06-23 00:45 - 000000000 ____D C:\Users\May Cool\AppData\Roaming\Adobe
2019-10-03 07:45 - 2019-06-30 00:05 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-921498447-3704326434-972431746-1001
2019-10-03 07:44 - 2019-06-29 23:02 - 000002372 _____ C:\Users\May Cool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-03 07:41 - 2019-06-29 23:42 - 000003558 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-03 07:41 - 2019-06-29 23:42 - 000003434 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-03 07:36 - 2016-06-23 08:05 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-02 12:48 - 2016-06-27 11:54 - 000000000 ____D C:\Users\May Cool\AppData\Roaming\Mp3tag
2019-10-01 18:18 - 2019-07-08 23:46 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-10-01 16:29 - 2017-11-26 19:18 - 000000000 ____D C:\Users\azulc\AppData\Local\Packages
2019-09-26 20:02 - 2018-03-01 18:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-09-26 17:08 - 2018-06-05 15:42 - 000000000 ____D C:\Users\maria\AppData\Local\D3DSCache
2019-09-22 17:44 - 2018-05-29 18:06 - 000000000 ____D C:\Users\azulc\AppData\Local\D3DSCache
2019-09-19 13:10 - 2017-05-23 17:12 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-09-18 13:01 - 2019-05-11 17:14 - 000000000 ____D C:\Users\May Cool\Documents\Prezi
2019-09-18 12:09 - 2016-11-30 22:14 - 000000000 ____D C:\Users\May Cool\AppData\Local\SquirrelTemp
2019-09-15 22:48 - 2019-07-30 12:22 - 000000000 ____D C:\Users\May Cool\AppData\Local\MEGAsync
2019-09-15 18:36 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-09-15 18:36 - 2019-03-18 23:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-09-15 18:36 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\TextInput
2019-09-15 18:36 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2019-09-15 18:36 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-09-15 18:36 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\Provisioning
2019-09-15 17:38 - 2019-03-19 06:52 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2019-09-15 17:38 - 2019-03-19 06:52 - 000018903 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml

==================== Files in the root of some directories ================

2019-10-03 10:01 - 2019-10-03 10:01 - 000000000 _____ () C:\Users\May Cool\AppData\Local\oobelibMkey.log

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================

MayCool · 14 Octubre, 2019 20:24

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-10-2019 02
Ran by May Cool (14-10-2019 10:52:00)
Running from C:\Users\May Cool\Desktop
Windows 10 Pro Version 1903 18362.418 (X64) (2019-06-30 04:44:11)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-921498447-3704326434-972431746-500 - Administrator - Disabled)
azulc (S-1-5-21-921498447-3704326434-972431746-1007 - Limited - Enabled) => C:\Users\azulc
DefaultAccount (S-1-5-21-921498447-3704326434-972431746-503 - Limited - Disabled)
Invitado (S-1-5-21-921498447-3704326434-972431746-501 - Limited - Disabled)
maria (S-1-5-21-921498447-3704326434-972431746-1005 - Limited - Enabled) => C:\Users\maria
May Cool (S-1-5-21-921498447-3704326434-972431746-1001 - Administrator - Enabled) => C:\Users\May Cool
mayel (S-1-5-21-921498447-3704326434-972431746-1010 - Limited - Disabled)
mayem (S-1-5-21-921498447-3704326434-972431746-1011 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-921498447-3704326434-972431746-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS B15.0630.1 (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE) Hidden
@BIOS B15.0630.1 (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE)
µTorrent (HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\uTorrent) (Version: 3.5.4.44632 - BitTorrent Inc.)
7-Zip 16.02 (x64) (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.0.327 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.270 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.270 - Adobe)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0) (Version: 18.0.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC (HKLM-x32\...\{505FF1AC-E7F5-4462-BBA7-08900E7E9EEF}) (Version: 7.0.0 - Adobe Systems Incorporated)
AIDA64 Extreme v5.97 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.97 - FinalWire Ltd.)
Allavsoft 3.17.3.7036 (HKLM-x32\...\{6EBED4D8-13D9-4270-8D44-B57DDB7A787C}_is1) (Version:  - Allavsoft Corporation)
AMD OverDrive (HKLM-x32\...\{EEB605FD-C5F5-4946-90F3-D65C604A9187}) (Version: 4.3.1.0698 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.3.4 - Advanced Micro Devices, Inc.)
APP Center (HKLM-x32\...\{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.17.0801 - Gigabyte) Hidden
APP Center (HKLM-x32\...\InstallShield_{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.17.0801 - Gigabyte)
Apple Application Support (32 bits) (HKLM-x32\...\{5C028510-A6A1-409A-A2BF-4DCB43B21EF9}) (Version: 7.6 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{5C7D4FCF-80C5-4520-9934-D50532AAC59C}) (Version: 7.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Argente - Registry Cleaner 3.1.2.0 (HKLM\...\Argente - Registry Cleaner_is1) (Version: 3.1.2.0 - Raúl Argente)
AVS Audio Editor 8.0 (HKLM-x32\...\AVS Audio Editor_is1) (Version: 8.0.1.500 - Online Media Technologies Ltd.)
BitTorrent (HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\BitTorrent) (Version: 7.10.5.45312 - BitTorrent Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BUSB (HKLM-x32\...\{0AADC50C-C4F8-49A7-8699-AFE46875CA67}) (Version: 1.14.0819.1 -  GIGABYTE)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
Centro de Mouse y Teclado de Microsoft (HKLM\...\{062AC796-601D-4DA6-90CE-62683A8879F6}) (Version: 3.2.116.0 - Microsoft Corporation) Hidden
Centro de Mouse y Teclado de Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 3.2.116.0 - Microsoft Corporation)
Cloud Station Server (HKLM-x32\...\{41B20CB6-32EE-468B-982C-4864E2135BD0}) (Version: 1.00.1607.0101 - GIGABYTE) Hidden
Cloud Station Server (HKLM-x32\...\InstallShield_{41B20CB6-32EE-468B-982C-4864E2135BD0}) (Version: 1.00.1607.0101 - GIGABYTE)
CloudStation (HKLM-x32\...\{6D8DA122-A40A-421B-9D95-FE4C806BCDBE}) (Version: 1.00.0018 - GIGABYTE) Hidden
CloudStation (HKLM-x32\...\InstallShield_{6D8DA122-A40A-421B-9D95-FE4C806BCDBE}) (Version: 1.00.0018 - GIGABYTE)
Convert MP4 to MP3 (HKLM-x32\...\{5067397A-2935-4290-AE14-1BE2863B00A3}_is1) (Version:  - ConvertMP4toMP3.com)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 82.4.155 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.16.0822 - GIGABYTE) Hidden
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.16.0822 - GIGABYTE)
Epic Games Launcher (HKLM-x32\...\{702995E8-B427-468C-8BC0-C944E421CEE3}) (Version: 1.1.163.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
F.E.A.R. 2 - Project Origin + Reborn (HKLM-x32\...\1425479123_is1) (Version: 2.0.0.3 - GOG.com)
FileASSASSIN (HKLM-x32\...\FileASSASSIN) (Version: 1.06 - Malwarebytes)
FonePaw 5.4.0 (HKLM-x32\...\{77B09C3A-839E-4ea7-81BA-E5864F6BF388}_is1) (Version: 5.4.0 - FonePaw)
FormatFactory 4.8.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.8.0.0 - Free Time)
Free Audio Editor (HKLM-x32\...\Free Audio Editor_is1) (Version: 1.1.35.831 - Digital Wave Ltd)
Galería de fotos (HKLM-x32\...\{198CEF22-A27F-4DC7-9B66-2C22A4B1CA09}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GameCtrl B15.1127.1 (HKLM-x32\...\{6BBE6CF2-84B2-4ECA-9ECA-C56925C1CCE2}) (Version: 1.00.0000 - GIGABYTE) Hidden
GameCtrl B15.1127.1 (HKLM-x32\...\InstallShield_{6BBE6CF2-84B2-4ECA-9ECA-C56925C1CCE2}) (Version: 1.00.0000 - GIGABYTE)
Gestion Escolar (HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\1f26c3c1d6802f75) (Version: 1.0.0.0 - Riversoft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.90 - Google LLC)
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Earth Pro (HKLM\...\{70A0F34E-564B-4F93-ADD6-3BAEC6E44075}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Hard Disk Sentinel PRO (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: 5.01 - Janos Mathe)
HDD Regenerator (HKLM-x32\...\{2445981B-A23B-4A0E-AD15-3D391BDAEC3E}) (Version: 1.71.0012 - Abstradrome)
HP LaserJet Pro MFP M127-M128 (HKLM-x32\...\{3b050369-8d19-413d-9dec-84ff278472eb}) (Version: 8.0.13295.984 - Hewlett-Packard)
HP Update (HKLM-x32\...\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}) (Version: 5.003.002.004 - Hewlett-Packard)
hpbDSService (HKLM-x32\...\{62022DCB-BA92-4EC2-AE03-9B946E4DBF12}) (Version: 002.002.07399 - Hewlett-Packard) Hidden
hpbM128DSService (HKLM-x32\...\{F08687B3-BB9A-4CBC-AE6B-BDF4B642E7BA}) (Version: 001.001.08254 - Hewlett-Packard) Hidden
HPDXP (HKLM-x32\...\{EF292659-1504-4F78-A737-471E50D8E0A1}) (Version: 3.0.26.40 - HP) Hidden
HPLJDXPHelper (HKLM-x32\...\{5E4DD8C2-A906-4F1B-94B6-4F6A51D625B2}) (Version: 060.048.005 - HP) Hidden
HPLJProMFPM127M128 (HKLM-x32\...\{B5409C23-DE0C-4B48-8C8A-50AE38694955}) (Version: 1.00.0000 - Hewlett-Packard)
HPLJUTCore (HKLM-x32\...\{30DD7187-F392-4D83-8AED-D9A2DC64EF15}) (Version: 008.000.0001 - HP) Hidden
HPLJUTM127_128 (HKLM-x32\...\{2C886751-51BD-4A8C-B33A-B4C513AB5B9A}) (Version: 008.000.0001 - HP) Hidden
hppLaserJetService (HKLM-x32\...\{178F0383-A2F1-427C-9881-6EACB8728C76}) (Version: 009.033.00905 - Hewlett-Packard) Hidden
hppM125LaserJetService (HKLM-x32\...\{18D5B189-DBDD-4E57-A84B-58C7700E9BB0}) (Version: 001.032.00682 - Hewlett-Packard) Hidden
hpStatusAlerts (HKLM-x32\...\{6470E292-3B55-41DC-B5EB-91C34C5ACB5D}) (Version: 080.040.00171 - Hewlett Packard) Hidden
hpStatusAlertsM127-M128 (HKLM-x32\...\{92374A19-CD4A-498F-92CB-26473EF31FB3}) (Version: 080.046.00111 - Hewlett-Packard) Hidden
HydraVision (HKLM-x32\...\{89CE7F9B-B4DF-8585-638B-6BD807ADE9C7}) (Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden
iCloud (HKLM\...\{2C05E99A-94F0-4F95-B602-CD2D2682D6C3}) (Version: 7.13.0.14 - Apple Inc.)
Instalación de DivX (HKLM\...\DivX Setup) (Version: 3.0.0.238 - DivX, LLC)
Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
Java 8 Update 171 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LJDXPHelperUI (HKLM-x32\...\{EAECD0D7-F27D-4F13-8312-A9C0B5C5F1B7}) (Version: 060.048.005 - HP) Hidden
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Logitech Options (HKLM\...\LogiOptions) (Version: 8.0.863 - Logitech)
Logitech SetPoint 6.68 (HKLM\...\sp6) (Version: 6.68.250 - Logitech)
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Manager (HKLM-x32\...\{3802F563-BAD7-47F3-AF91-ED1C9467B224}) (Version: 3.0.7.25771 - ANDREA VACONDIO) Hidden
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft Office 365 ProPlus - es-es (HKLM\...\O365ProPlusRetail - es-es) (Version: 16.0.11929.20388 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\Teams) (Version: 1.2.00.22654 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{9C82436F-F19C-42A4-B476-F87A28A95BF9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 69.0.3 (x64 es-MX) (HKLM\...\Mozilla Firefox 69.0.3 (x64 es-MX)) (Version: 69.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 69.0.3.7221 - Mozilla)
Mp3tag v2.95 (HKLM-x32\...\Mp3tag) (Version: 2.95 - Florian Heidenreich)
Nero 2016 (HKLM-x32\...\{9C637A56-4287-487F-95BF-1422FC1AA879}) (Version: 17.0.04500 - Nero AG)
Nero 2016 Content Pack (HKLM-x32\...\{006F5CFF-ED35-41AF-9B2A-F52B0F545BF4}) (Version: 17.0.00200 - Nero AG)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2003 - Nero AG)
Nitro Pro 9 (HKLM\...\{3ED78198-D9DC-4318-8416-E03B4834CF2F}) (Version: 9.5.1.12 - Nitro)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.1.2 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20388 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20388 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.11929.20388 - Microsoft Corporation) Hidden
ON_OFF Charge 2 B15.0709.1 (HKLM-x32\...\{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE) Hidden
ON_OFF Charge 2 B15.0709.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.)
Panda USB Vaccine 1.0.1.4 (HKLM-x32\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version:  - Panda Security)
Paquete de controladores de Windows - Realtek (rt640x64) Net  (01/07/2016 10.007.0107.2016) (HKLM\...\04EA68AEF08B6442D708EE4655528359060EDC3C) (Version: 01/07/2016 10.007.0107.2016 - Realtek)
PDFsam Basic (HKLM-x32\...\{06F77008-B6FD-4871-809E-1F3E09985A05}) (Version: 3.30.7.0 - Sober Lemur S.a.s. di Vacondio Andrea)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.6 - Power Software Ltd)
Prerequisite installer (HKLM-x32\...\{5F284483-EE8D-447E-BEBE-2BF13B08C4BF}) (Version: 17.0.0002 - Nero AG) Hidden
Prezi Desktop (HKLM-x32\...\{38CB535D-6D16-4546-840B-507640120B96}) (Version: 6.12.1.0 - Prezi) Hidden
Prezi Desktop (HKLM-x32\...\{b2c1866d-4df0-43b9-bf09-f126fac08e1c}) (Version: 6.12.1.0 - Prezi)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
qBittorrent 4.1.3 (HKLM-x32\...\qBittorrent) (Version: 4.1.3 - The qBittorrent project)
QuickTime (HKLM-x32\...\QuickTime) (Version:  - )
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6650 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8004 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.1.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.5 - VS Revo Group, Ltd.)
Ship Simulator Maritime Search and Rescue (HKLM-x32\...\Ship Simulator Maritime Search and Rescue_is1) (Version:  - )
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.16.0822 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.16.0822 - GIGABYTE)
Smart Recovery 2 B15.1002.1  (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 1.00.0003 - GIGABYTE)
Smart TimeLock B15.0626.1 (HKLM-x32\...\{5D93E30A-78A3-4890-962F-56B61A5873DD}) (Version: 1.00.0001 - GIGABYTE) Hidden
Smart TimeLock B15.0626.1 (HKLM-x32\...\InstallShield_{5D93E30A-78A3-4890-962F-56B61A5873DD}) (Version: 1.00.0001 - GIGABYTE)
Soporte para el iPod (HKLM\...\{E8676067-68D7-483A-BC2B-A7FF808077E2}) (Version: 120.7.3.55 - Apple Inc.)
Spotify (HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\Spotify) (Version: 1.1.12.449.g4109e645 - Spotify AB)
Stashimi Stub Installer (HKLM-x32\...\{910B539D-F257-46C8-9CB8-6C95EFF9CF22}) (Version: 18.001.1 - Nero AG) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.2.0.22654 - Microsoft Corporation)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.4.2669 - TeamViewer)
Telegram Desktop version 1.8.15 (HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.8.15 - Telegram FZ-LLC)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F14FB68A-9188-4036-AD0D-D054BC9C9291}) (Version: 2.59.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 21.0 - Ubisoft)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
VIA Administrador de dispositivos de plataforma (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VTuner (HKLM-x32\...\{C381226E-C402-4976-9411-54282F1396D3}) (Version: 1.15.0909 - GIGABYTE) Hidden
VTuner (HKLM-x32\...\InstallShield_{C381226E-C402-4976-9411-54282F1396D3}) (Version: 1.15.0909 - GIGABYTE)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0-2) (Version: 1.0.37.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1-6) (Version: 1.0.39.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.51.0 (HKLM\...\VulkanRT1.0.51.0) (Version: 1.0.51.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.54.0 (HKLM\...\VulkanRT1.0.54.0) (Version: 1.0.54.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.0 (HKLM\...\VulkanRT1.0.54.0-4) (Version: 1.0.54.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0-2) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\WhatsApp) (Version: 0.3.4941 - WhatsApp)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)

Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.149.100.0_x86__kgqvnymyfvs32 [2019-10-04] (king.com)
Clarovideo -> C:\Program Files\WindowsApps\33D32823.Clarovideo_5.8800.3.0_x64__sw86c7t9xg8q6 [2019-10-11] (DLAINC.)
Correo y Calendario -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation) [MS Ad]
Drawboard PDF -> C:\Program Files\WindowsApps\Drawboard.DrawboardPDF_5.15.0.0_x64__gqbn7fs4pywxm [2019-09-15] (Drawboard)
Extensión de video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-24] (Microsoft Corporation)
Facebook -> C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt [2019-03-18] (Facebook Inc)
FarmVille 2: Country Escape -> C:\Program Files\WindowsApps\D52A8D61.FarmVille2CountryEscape_13.6.4722.0_x86__jwbwg6xx0377a [2019-10-04] (Zynga Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_100.1.581.0_x64__v10z8vjag6ke6 [2019-07-22] (HP Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12101.4.43017.0_x64__nzyj5cx40ttqa [2019-10-08] (Apple Inc.)
Messenger -> C:\Program Files\WindowsApps\Facebook.317180B0BB486_196.2292.59195.0_x86__8xx8rvfyw5nnt [2019-05-15] (Facebook Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-12] (Microsoft Corporation) [MS Ad]
Microsoft Noticias -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-15] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe [2019-08-28] (Microsoft Studios) [MS Ad]
MSN Deportes -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-21] (Microsoft Corporation) [MS Ad]
MSN Dinero -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-22] (Microsoft Corporation) [MS Ad]
MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-15] (Microsoft Corporation) [MS Ad]
MSN Viajes -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2016-07-14] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.94.574.0_x64__mcm4njqhnhss8 [2019-09-28] (Netflix, Inc.)
TuneIn Radio -> C:\Program Files\WindowsApps\TuneIn.TuneInRadio_4.0.7.0_x64__6bhtb546zcxnj [2019-09-20] (TuneIn) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-921498447-3704326434-972431746-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-921498447-3704326434-972431746-1001_Classes\CLSID\{04271989-C4D2-546D-3533-4559C4198879} -> [OneDrive - Secretaría de Educación] => C:\Users\May Cool\OneDrive - Secretaría de Educación [2019-06-30 00:11]
CustomCLSID: HKU\S-1-5-21-921498447-3704326434-972431746-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\May Cool\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-921498447-3704326434-972431746-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\May Cool\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.19178.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-921498447-3704326434-972431746-1001_Classes\CLSID\{E2ECC017-6BF4-4BAC-98CB-799FA25CFDD9} -> [MEGA] => D:\Mega [2019-07-30 12:25]
CustomCLSID: HKU\S-1-5-21-921498447-3704326434-972431746-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => D:\Dropbox [2016-06-23 07:05]
CustomCLSID: HKU\S-1-5-21-921498447-3704326434-972431746-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\May Cool\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\May Cool\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\May Cool\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\May Cool\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\May Cool\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\May Cool\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [DivXShellExtensionItem] -> {48A8A3B0-57E8-4F2B-A49D-19E02B92377B} => C:\Program Files (x86)\Common Files\DivX Shared\DivXShellExtension64.dll [2017-05-01] (DivX, LLC -> DivX, LLC)
ContextMenuHandlers1: [DivXShellExtensionItem64] -> {6B49A276-0DBA-43F4-BC96-A841AD11B40B} => C:\Program Files (x86)\Common Files\DivX Shared\DivXShellExtension64.dll [2017-05-01] (DivX, LLC -> DivX, LLC)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-07-02] (Free Time) [File not signed]
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> No File
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\May Cool\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2017-10-25] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro 9\NPShellExtension.dll [2014-05-22] (Nitro PDF Software -> Nitro PDF)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-05-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-24] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [ShellConverter] -> {30A4E07E-068A-4d91-8F05-691283A1336B} => C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll [2015-04-06] (Online Media Technologies Ltd. -> Online Media Technologies Ltd.) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> No File
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\May Cool\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2017-10-25] (Florian Heidenreich) [File not signed]
ContextMenuHandlers3-x32: [FAExt] -> {05672D66-9736-42F5-8BEB-FA1DD3CA51C4} => C:\Program Files (x86)\FileASSASSIN\FileASSASSINExt.dll [2007-03-30] (Malwarebytes) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\May Cool\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-07-02] (Free Time) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\May Cool\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-15] (Mega Limited -> )
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2017-10-25] (Florian Heidenreich) [File not signed]
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-24] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} =>  -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-24] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2012-12-29] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.FICV] => C:\WINDOWS\system32\ficvdec_x64.dll [652288 2013-05-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2014-01-22 13:53 - 2014-01-22 13:53 - 001607680 _____ () [File not signed] C:\Program Files (x86)\Gigabyte\AppCenter\BDR_info.dll
2015-02-16 10:47 - 2015-02-16 10:47 - 000105472 _____ () [File not signed] C:\Program Files (x86)\Gigabyte\AppCenter\ycc.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 000817152 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2014-04-17 22:29 - 2014-04-17 22:29 - 000214528 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 003650560 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2019-03-18 16:28 - 2019-03-18 16:33 - 262255104 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\App.dll
2019-03-18 16:28 - 2019-03-18 16:33 - 000875008 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\c++_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:33 - 000816640 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\CrossPortability_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:33 - 000053760 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\EGL_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:33 - 000087040 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\exif_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:33 - 000998400 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\ffmpeg_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:33 - 000829952 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\GLESv2_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:33 - 006719488 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\JavaScriptCore_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:33 - 000453120 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\OpenAL_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:34 - 064193536 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:34 - 001305600 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\pgl_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:34 - 000040448 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\pthreadVC_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:34 - 000113664 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\system_malloc_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:34 - 000883200 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\System_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:34 - 000368128 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\SystemResources_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:34 - 000015872 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\unwind_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:34 - 021368832 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\WebCore_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:34 - 004304384 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\WebKit_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:34 - 001553408 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\WebKitLegacy_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:34 - 000095232 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\WinMediaFoundation_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:34 - 000013312 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\WinPhoneBridge_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:35 - 000372736 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\WP8MSVCBridge.dll
2019-03-18 16:28 - 2019-03-18 16:35 - 000147456 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\WP8MSVCCommon.dll
2019-03-18 16:28 - 2019-03-18 16:35 - 000098304 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\WRTBridge_osmeta.dll
2019-03-18 16:28 - 2019-03-18 16:35 - 000096768 _____ () [File not signed] C:\Program Files\WindowsApps\Facebook.Facebook_186.2191.46880.0_x86__8xx8rvfyw5nnt\z_osmeta.dll
2009-09-16 19:44 - 2009-09-16 19:44 - 000153088 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hptcpmib.dll
2009-09-16 19:45 - 2009-09-16 19:45 - 000331264 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\HpTcpMon.dll
2009-09-16 12:44 - 2009-09-16 12:44 - 000132096 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hpzjrd01.dll
2012-12-04 11:52 - 2012-12-04 11:52 - 000041472 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPHTTPProxy.dll
2012-12-04 11:51 - 2012-12-04 11:51 - 000073728 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPTools.dll
2012-12-04 11:52 - 2012-12-04 11:52 - 001219072 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\LEDMXMLObjects.dll
2012-12-04 11:51 - 2012-12-04 11:51 - 000034816 _____ (HP) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPServiceCommunicator.dll
2016-06-23 07:30 - 2016-05-21 03:19 - 000077312 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2009-09-16 19:45 - 2009-09-16 19:45 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\System32\HPTcpMUI.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:1AAB2E68 [183]
AlternateDataStreams: C:\Users\May Cool\Desktop\adwcleaner_7.4.1.exe:com.dropbox.attributes [168]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\sharepoint.com -> hxxps://docentecoahuila-files.sharepoint.com

MayCool · 14 Octubre, 2019 20:26

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 00:26 - 2017-03-07 22:54 - 000001227 _____ C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1       localhost
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
0.0.0.0 cdn.appround.biz
0.0.0.0 cdn.bigspeedpro.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Windows Live\Shared;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-921498447-3704326434-972431746-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\May Cool\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\kukulkan.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: HwmRecordService => 3
MSCONFIG\Services: Smart TimeLock => 2
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "EvtMgr6"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "FonePaw iPhone Data RecoveryAppService"
HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0"
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\StartupApproved\StartupFolder: => "Enviar a OneNote.lnk"
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_D02231A2959C4CDFDF8E55228B03B2A2"
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\StartupApproved\Run: => "Chromium"
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_FFEFF7BDE29A8609CE1E10EE840AA989"
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\StartupApproved\Run: => "GUDelayStartup"
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-921498447-3704326434-972431746-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B7F94F34-1E9F-42B1-AC9E-5F935ACA145D}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{9C8BEC0A-65E2-42F6-BB20-95933CDA1707}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{D97D2B59-BEAC-41CD-BFFE-E9D6E194202E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{3D302892-32C8-4A79-B43C-1F8E3464A196}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{8716E68C-76AE-4B36-AF38-D806CFF9B99E}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{A4AA4D7A-9260-4B2A-81C2-1AC0584FE7F9}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{B5B2C951-DEAF-4D78-9682-6C3AEBDB4409}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{E2B93A0C-FC99-4513-B21A-8676891042FD}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{2C4C6D62-6BD4-4EFB-BEEA-DA4408B7EAAD}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{D24A8DFB-D80C-4CC4-B0B5-E86A5C4425CC}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{1867B3CE-2FEF-4A2E-AC16-A08655151172}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{5B39AF97-F955-45A3-83A5-60CE0184478C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{235111EF-3038-47C2-889D-7FC4B62110C2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{594593C7-43F4-4E2E-AB08-BB48BAFC198A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{FF48B59C-EDE4-45DE-9ED6-C7BE052A5598}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{6120DA30-F3C9-4B56-BD40-A25C7B361D0F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{A6B195A2-0294-4A2B-9C51-6B947BA972C5}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{0B257E25-1ABB-4EDF-9BFA-9406BF7538EF}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{42F968BA-A61A-4A60-9AA7-7C33A9B7334E}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{51B0B100-E550-4746-8EB4-24DB556A6B50}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [UDP Query User{A7B9772F-30BB-4726-9EFC-C29CF1D2E1E4}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{672B27EE-83F7-4E91-8824-64BF116C7904}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{30283E9C-5079-442C-8A61-9786EF9B2757}] => (Allow) C:\Users\May Cool\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{B5C7F8DD-1FBD-493A-82F0-B38359AE800D}] => (Allow) C:\Users\May Cool\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{175E78E6-8A49-4A3E-8970-F3057D1268E1}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{1CB6FBCE-C5DE-42BE-A271-B1A47405B48D}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{38621C62-CA15-4CA9-BA0E-D93CA13FD326}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{146C7718-6FE7-4625-8855-7F2817A38183}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{92C75180-EC3C-42A7-9A21-3A51C9EF6AD3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{A2A60E22-8338-47A8-B97E-02FB04BE6A94}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [UDP Query User{288044E6-50B4-431F-9DCB-8D8C630BFF2F}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{2AEF939B-C2AC-4265-B81A-DAB49BA1E518}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{9A235294-C71E-42FE-B604-B92BD06D315D}] => (Allow) D:\SteamLibrary\steamapps\common\Transmissions Element 120\hl2.exe (Valve -> )
FirewallRules: [{40D9B32D-652E-41E7-B2A0-DAEB2D17224B}] => (Allow) D:\SteamLibrary\steamapps\common\Transmissions Element 120\hl2.exe (Valve -> )
FirewallRules: [UDP Query User{4DCEA54B-F96C-4A48-A502-0D86C8D9F88A}C:\users\may cool\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\may cool\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{45D58B07-166B-44CE-A343-663FC54DC980}C:\users\may cool\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\may cool\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B09F6C36-FD11-4BCB-9D0B-73CBC2EE042C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{1ACE7DD8-0F31-4CC6-8A13-D361DB779AAE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{F50D5E15-80AC-4950-8E0F-FCCC44F372CE}] => (Allow) C:\Users\May Cool\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{96471FE3-C428-48A8-A267-6C96DC48C270}] => (Allow) C:\Users\May Cool\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{E2BB019C-98DD-420B-98CD-DEB37284A279}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{90AAE48A-3597-4ED8-AA91-1BDA1D459454}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{414DA27D-8107-4BE1-9C47-6687C7B90741}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{2A1495E5-E149-40A8-90B1-897275B69EAF}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{F49999C8-19D9-45ED-97D8-F7706F5560F9}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{CFCA66EC-F725-4F69-86E0-040F21A79F71}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{C9BB3C81-FAC1-4C08-8C55-835874109456}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [{A130DCF9-910C-4AB7-8C47-BF27B14CDC8E}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe (Valve -> Valve)
FirewallRules: [{8DCD29E6-DF8B-465E-B4F8-F7F1AF60EFF3}] => (Allow) D:\SteamLibrary\steamapps\common\RogueSquadron\ROGUE\ROGUE.EXE (LucasArts Entertainment Company LLC) [File not signed]
FirewallRules: [{4C4654A9-69C7-476A-BA2F-F318CE9964DC}] => (Allow) D:\SteamLibrary\steamapps\common\RogueSquadron\ROGUE\ROGUE.EXE (LucasArts Entertainment Company LLC) [File not signed]
FirewallRules: [UDP Query User{1AEBE011-0383-4981-9BC7-C6A476495435}C:\program files (x86)\gigabyte\appcenter\gbupdate.exe] => (Allow) C:\program files (x86)\gigabyte\appcenter\gbupdate.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [TCP Query User{AC13379A-286B-4E63-B0F1-5249B72C59D8}C:\program files (x86)\gigabyte\appcenter\gbupdate.exe] => (Allow) C:\program files (x86)\gigabyte\appcenter\gbupdate.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [UDP Query User{D6F41CCF-12D0-4410-982D-75F2C4ACCF71}C:\users\may cool\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\may cool\appdata\local\jdownloader v2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [TCP Query User{E7F83148-9A2B-470A-85B4-76D664862E69}C:\users\may cool\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\may cool\appdata\local\jdownloader v2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [{63A06050-B96C-40E2-9AE6-AF406599944D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 2\hl2.exe (Valve -> )
FirewallRules: [{FD2885BD-8579-41D3-8D13-E786FE10057C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Half-Life 2\hl2.exe (Valve -> )
FirewallRules: [{E30A6B0C-6A0D-44ED-B04B-21B8C7A27858}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3\bin\farcry3_d3d11.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{96FC34B9-2CAF-4E6D-BC41-2BFBDAE0C7FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3\bin\farcry3_d3d11.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{BC4B3AC0-ABDA-464F-822F-4DF347989C60}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3\bin\farcry3.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{1F88DAEC-D85A-4EC6-88FA-BC983E34008A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Far Cry 3\bin\farcry3.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{ED8FCEA5-6EEC-45E5-B838-47E93880832A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{D031F7D2-BC7B-4672-8532-EE165E75B2AD}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{F129FE8E-1E2F-44E9-9D1F-1F004F17A5D7}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{E05075EF-E919-48F0-A8ED-D697275FF441}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{D2EF0FC3-71FC-43A4-AAA1-14DF81ADD1C9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{5979408D-48B9-435B-992A-8EE1E723116D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{827C4E94-D4E4-4F0C-8316-7FBB196C2C3F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DDD980A8-E97D-4080-BA62-1CC325235712}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F6EF2505-8CC8-40BA-ADF3-299E946874E3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{47EDE4A1-0C2C-4710-99D8-5B0B499E2CF5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{01B04ED6-34F8-4CBB-97A4-D60DF4E660AB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4EF611C6-3507-459D-B665-3469B521A478}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{536A6C0A-90E3-4D2F-ACB6-BAE952263C3B}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\StartNBR.exe (Nero AG -> Nero AG)
FirewallRules: [{CB3CD280-1DB8-4B34-A2BD-5EFCE8DEEB1C}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe (Nero AG -> Nero AG)
FirewallRules: [{42BA95F8-6FF0-4C57-9AE6-6A57A5F6853E}] => (Allow) C:\Program Files (x86)\Nero\KM\MediaHome.exe (Nero AG -> Nero AG)
FirewallRules: [{87BD5850-4DE3-48E9-8300-4AECF9BE137F}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\nero.exe (Nero AG -> Nero AG)
FirewallRules: [TCP Query User{84ED7050-2A7A-4D67-8CA7-BF9B9E3774C8}C:\users\may cool\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\may cool\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{9C2B1DC2-8FBD-4310-8D68-281B6CC934CA}C:\users\may cool\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\may cool\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{35C9ABA8-6327-4254-99CF-303312FF01BE}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{65FAC667-F914-4331-B8E1-DCF007506DE1}] => (Allow) LPort=2869
FirewallRules: [{6F99F0BF-4B22-4334-A5DB-CE3B1915439B}] => (Allow) LPort=1900
FirewallRules: [{FF1A04BC-B79C-42A5-A195-99F30FA38325}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Codename CURE\cure.exe (Valve -> )
FirewallRules: [{ECB09FB1-B4E1-481C-B597-C0C6ACC3CE0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Codename CURE\cure.exe (Valve -> )
FirewallRules: [{C0E4B2F7-075F-48B4-9633-1AB252F04209}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bionic Commando\bionic_commando.exe (Valve Corp. -> Capcom Entertainment, Inc) [File not signed]
FirewallRules: [{6BC15CA3-1A34-4FFE-8827-B8A727D6E8ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bionic Commando\bionic_commando.exe (Valve Corp. -> Capcom Entertainment, Inc) [File not signed]
FirewallRules: [{204BB614-DED5-48F1-AD3E-02E936B644C8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sniper Ghost Warrior\Sniper_x86.exe (City Interactive) [File not signed]
FirewallRules: [{53941056-B144-4616-B4D6-B60984F68320}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sniper Ghost Warrior\Sniper_x86.exe (City Interactive) [File not signed]
FirewallRules: [TCP Query User{0C64FF7C-F22A-45CF-BB49-54AD4AE230F5}C:\program files (x86)\freetime\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\freetime\formatfactory\formatfactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [UDP Query User{2B3128BA-9F0D-4240-B1D8-3D7D1EDFF739}C:\program files (x86)\freetime\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\freetime\formatfactory\formatfactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{CDE6948B-774B-4985-8C4A-C840320698C3}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{255EBFD4-C59D-46BF-8608-97B71286199D}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{00A72748-160D-4406-BDB5-539D3AAF3377}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D8C8EAB0-2DDA-42C3-8A7F-20C38578B342}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{B657474A-C41A-4198-A700-B5AC1929CA05}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{A2684F1A-3C25-4C97-9BE0-EEF7F98853AC}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{9BF19F49-FB8F-4B5C-860B-1E5B87B5F0E4}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{15A12ECD-36DD-4475-A801-D047DBBDA253}] => (Allow) C:\Users\May Cool\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{40016958-B9F3-4D48-8A97-0E737B3A9561}] => (Allow) C:\Users\May Cool\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{8C0D565D-AC6D-4848-BFF5-1BCBCB42672A}] => (Allow) C:\Users\May Cool\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{A075ED0A-9D39-48E3-AA67-0F9B8F8E7AD7}] => (Allow) C:\Users\May Cool\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{EB67C9C5-E4C9-4787-BE1F-CE35AB5827F1}] => (Allow) C:\Users\May Cool\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5FB9951C-A124-4CA8-8B66-BC3A78B03DA6}] => (Allow) C:\Users\May Cool\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{E1FC3EB4-1674-4A63-8386-C68B4E385734}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{7EE23639-9DCD-4ED6-B743-0A8E6E19083D}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{87FD0666-2F19-4C3B-A9AF-8BF5895C5FA2}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{EC3479C3-81AF-414C-8071-97B319862796}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{CE4E9926-1142-48BA-8C32-BE7FC8B94D97}] => (Allow) C:\Program Files\HP\HP LaserJet Pro MFP M127-M128\bin\SendAFax.exe (VistaName -> Hewlett-Packard Co.) [File not signed]
FirewallRules: [{7410AAE1-DC29-4CD1-84C3-3B7947CF382F}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet Pro MFP M127-M128\bin\FaxApplications.exe (VistaName -> Hewlett-Packard Co.) [File not signed]
FirewallRules: [{FA7CE949-9A02-42A3-AB30-C9A520A471E7}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet Pro MFP M127-M128\Bin\HPNetworkCommunicatorCom.exe (VistaName -> Hewlett-Packard Co.) [File not signed]
FirewallRules: [{2A9AB922-941D-4CBF-8520-2283EDCBA8F8}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet Pro MFP M127-M128\bin\EWSProxy.exe (VistaName -> Hewlett-Packard Co.) [File not signed]
FirewallRules: [{F30F6218-73E1-4B35-A400-EBE7D5F8AB82}] => (Allow) C:\Program Files\HP\HP LaserJet Pro MFP M127-M128\Bin\HPNetworkCommunicatorCom.exe (VistaName -> Hewlett-Packard Co.) [File not signed]
FirewallRules: [{1720547B-396C-4C03-A72B-4B8A60CB22D0}] => (Allow) C:\Program Files\HP\HP LaserJet Pro MFP M127-M128\bin\FaxPrinterUtility.exe (VistaName -> Hewlett-Packard Co.) [File not signed]
FirewallRules: [{F24E8F1F-28C9-4402-A657-0505BAEE7BF3}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{49411A94-6A9B-4427-ADD8-28D5CC18250E}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{701AD0AA-C557-4C25-8324-827EEE2AD800}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{F60C4E36-A826-438D-880D-300ECDC5CBCF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{8FF3377A-B50B-46F4-AB31-7C0EF061E110}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{AA260FA6-A6BD-4986-817E-48A0788AF76E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{E7C86F2E-FAE5-4962-95E7-1FD816E3A26B}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{DFBC63CA-0C69-42D4-A9F7-AC436E78B0A8}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{840E2988-0457-462B-9A75-AB07BA266B51}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技（上海）有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{2809DCA9-D691-46E0-B3B4-3046C831935D}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{6B7CD73A-3196-4992-BB0B-11BD381A2D3F}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{64599C56-3A9E-430B-A383-B0A34C0249AD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5B2A5A64-2108-4355-9485-781D8570592A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{056CA42C-BAA1-4651-9E83-EA1C989A13E1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4F6B2B8C-0B7C-4A6C-9F4F-84D47811D391}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1681121E-4C8F-4DC7-A4C1-2E2C89902867}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D25AFC02-3776-4A4E-828A-D5CA00F0ED82}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{A4592FAF-D993-49D8-BC88-783403CAB218}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{2BF7D54B-B018-4D4A-BACC-ED7B7E71A53F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12101.4.43017.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4B7337C7-C005-4212-8C0A-0F954D028105}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12101.4.43017.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7F78F7E1-19B2-455E-8EA4-B2D9B34D77D2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12101.4.43017.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FF6A94B6-094B-4E3E-86F9-4FD871062084}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12101.4.43017.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1465F743-6142-43B8-BE57-88B1B5679A44}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12101.4.43017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F95CBD65-9A50-4EE8-A4B5-1ADB1C5F5A12}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12101.4.43017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2E5E4F13-6BA5-4C17-A208-FB775DFA4B2E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12101.4.43017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1A57AB3E-CC99-4EEC-9014-557024919904}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12101.4.43017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D601B679-A01A-4340-A844-92A70C7F0545}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation\HomeCloud\HCLOUD.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
FirewallRules: [{CE6FF7E1-C5E8-4BE4-8FAA-BE04734549E7}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation\RemoteOC\ubssrv_oc_only.exe () [File not signed]
FirewallRules: [{ABD41F16-3E44-4F0C-8DE9-668F767137A0}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation\RemoteControl\grckm.exe () [File not signed]
FirewallRules: [{39214153-5E81-4A1A-9297-43586AE2CE91}] => (Allow) LPort=1980
FirewallRules: [{C835F589-FD3F-4C25-9E59-C20BE323C339}] => (Allow) LPort=1900
FirewallRules: [{2FD22080-7758-4656-98AF-211546068D69}] => (Allow) LPort=1900
FirewallRules: [{08F50E1B-E9C1-4430-BEDC-8892C08EE61E}] => (Allow) LPort=8836

==================== Restore Points =========================

03-10-2019 10:18:18 Punto de control programado
11-10-2019 07:58:02 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/14/2019 10:45:15 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2308,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/14/2019 10:32:21 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7972,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/14/2019 09:59:26 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10460,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/14/2019 09:50:57 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6020,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/14/2019 09:43:36 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8632,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/14/2019 09:25:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: ubssrv_oc_only.exe, versión: 1.0.0.0, marca de tiempo: 0x530dce70
Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.18362.418, marca de tiempo: 0x2b181c2c
Código de excepción: 0xe0434352
Desplazamiento de errores: 0x00113572
Identificador del proceso con errores: 0x27f8
Hora de inicio de la aplicación con errores: 0x01d5829b3b6ab4c2
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Gigabyte\CloudStation\RemoteOC\ubssrv_oc_only.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNELBASE.dll
Identificador del informe: 17b3f357-c83c-4cd5-bccf-060d3433249a
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (10/14/2019 09:25:36 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplicación: ubssrv_oc_only.exe
Versión de Framework: v4.0.30319
Descripción: el proceso terminó debido a una excepción no controlada.
Información de la excepción: System.AccessViolationException
   en Gigabyte.NativeFunctions.NativeCpuMethods.GBFunc2(Int32, Int32, System.Text.StringBuilder, System.Text.StringBuilder)
   en Gigabyte.ComputerSystemHardware.Processor.GenericCPU.UpdateMemberVariables(System.String)
   en Gigabyte.ComputerSystemHardware.Processor.GenericCPU..ctor()
   en Gigabyte.EnvironmentControl.Mainboard.SystemInfoControl.InitObject()
   en HW_OBJ.New_Tune..ctor()
   en HW_OBJ.HWmonitorObj..ctor(System.Windows.Forms.Control)
   en ubssrv.Program..cctor()

Información de la excepción: System.TypeInitializationException
   en ubssrv.Program.Main(System.String[])

Error: (10/14/2019 09:25:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: ubssrv_oc_only.exe, versión: 1.0.0.0, marca de tiempo: 0x530dce70
Nombre del módulo con errores: KERNELBASE.dll, versión: 10.0.18362.418, marca de tiempo: 0x2b181c2c
Código de excepción: 0xe0434352
Desplazamiento de errores: 0x00113572
Identificador del proceso con errores: 0x21f0
Hora de inicio de la aplicación con errores: 0x01d5829b1296dd23
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Gigabyte\CloudStation\RemoteOC\ubssrv_oc_only.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\System32\KERNELBASE.dll
Identificador del informe: 61d99060-fedc-49e8-a651-a7412c0b52bf
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:


System errors:
=============
Error: (10/13/2019 04:05:36 PM) (Source: HTTP) (EventID: 15005) (User: )
Description: No se puede enlazar con el transporte subyacente para 192.168.1.70:8836. Es posible que la lista IP de solo escucha contenga una referencia a una interfaz que no existe en este equipo. El campo de datos contiene el número de error.

Error: (10/13/2019 04:04:36 PM) (Source: Tcpip) (EventID: 4199) (User: )
Description: El sistema ha detectado un conflicto por la dirección IP 192.168.1.70. La dirección 
de hardware de red es 68-27-37-DB-9F-D7, las operaciones de red en este sistema 
pueden verse afectadas por este problema.

Error: (10/13/2019 03:59:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Adaptador de rendimiento de WMI terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 120000 milisegundos: Reiniciar el servicio.

Error: (10/13/2019 03:59:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Nero Update se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (10/13/2019 03:59:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Servicio Hacer clic y ejecutar de Microsoft Office terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio.

Error: (10/13/2019 03:59:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio GIGABYTE Adjust se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (10/13/2019 03:59:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio HP LaserJet Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (10/13/2019 03:59:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Digital Wave Update Service se terminó de manera inesperada. Esto ha sucedido 1 veces.


Windows Defender:
===================================
Date: 2019-10-08 08:45:06.417
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {FCDF105A-5747-4938-BC44-248802C050C3}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-10-04 19:49:32.557
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {06343249-CBFF-4F9B-BB32-7CD7FC0B8D61}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-10-04 19:22:24.350
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {08283159-62F0-487F-B601-824E1F6422D7}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-10-04 19:01:33.682
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {AA31BE44-8BE0-4798-8A77-2E6462C9C4FF}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-10-04 18:55:00.841
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {8FCFE825-CA07-4DC9-8D8C-474F5A544518}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-10-13 16:15:40.828
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.303.1601.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.16400.2
Código de error: 0x80240438
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulta Ayuda y soporte técnico. 

Date: 2019-10-06 18:29:50.766
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.303.958.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.16400.2
Código de error: 0x8024402c
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulta Ayuda y soporte técnico. 

Date: 2019-10-06 15:44:28.969
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.303.958.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.16400.2
Código de error: 0x8024402c
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulta Ayuda y soporte técnico. 

Date: 2019-08-28 12:28:51.246
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.299.2980.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.16300.1
Código de error: 0x8024402c
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulta Ayuda y soporte técnico. 

Date: 2019-08-27 12:18:20.392
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.299.2899.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.16200.1
Código de error: 0x80240016
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulta Ayuda y soporte técnico. 

CodeIntegrity:
===================================

Date: 2019-10-14 09:42:52.914
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-14 09:42:52.297
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-14 09:42:51.803
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-14 09:42:51.217
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-14 09:42:50.561
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-14 09:42:49.360
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-14 09:42:48.706
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-10-14 09:42:48.693
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. FD 02/26/2016
Motherboard: Gigabyte Technology Co., Ltd. 970A-DS3P
Processor: AMD FX-8320E Eight-Core Processor 
Percentage of memory in use: 26%
Total physical RAM: 24534.54 MB
Available physical RAM: 18105.86 MB
Total Virtual: 28118.54 MB
Available Virtual: 19605.56 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:499.13 GB) (Free:79.58 GB) NTFS
Drive d: () (Fixed) (Total:1363.01 GB) (Free:208.88 GB) NTFS
Drive f: (Disco 2) (Fixed) (Total:1862.89 GB) (Free:216.42 GB) NTFS

\\?\Volume{1316b32d-3905-11e6-be66-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.34 GB) (Free:0.1 GB) NTFS
\\?\Volume{86df27c9-0000-0000-0000-40de7c000000}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 86DF27C9)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=499.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=541 MB) - (Type=27)
Partition 4: (Not Active) - (Size=1363 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: E577E577)

Partition: GPT.

==================== End of Addition.txt ============================

MayCool · 14 Octubre, 2019 20:26

listo mil gracias por tanta ayuda.

espero noticias y me pongo a trabajar jajajajaja

Miguelgrado · 15 Octubre, 2019 12:35

Una pregunta…sucede igual con cualquier navegador que uses??

Edge, Internet Explorer,chrome

MayCool · 16 Octubre, 2019 01:08

Si, yo uso Firefox, pero he probado con Explorer y con Chrome e igual

Miguelgrado · 16 Octubre, 2019 11:32

Bien… y ahora sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :

Para hacerlo descarga Delfix en tu escritorio.
Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")
Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO
Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

En el equipo con los demas programas cerrados:

Inicio >>> Ejecutar >>>Escribes notepad.exe.

Ahora copia y pega estos archivos dentro del Notepad:


Start
CreateRestorePoint:
CloseProcesses:

GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {1818F45B-0E05-4996-B1E3-F65091A916DB} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {EFBF12F4-2490-481F-8A89-20EFFDAECD8C} - no filepath
SearchScopes: HKU\S-1-5-21-921498447-3704326434-972431746-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://mx.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10420__180528__yaie&p={searchTerms}
SearchScopes: HKU\S-1-5-21-921498447-3704326434-972431746-1001 -> {F81BED16-EBCF-469B-A50A-474B32F159EF} URL = hxxps://mx.search.yahoo.com/search?p={searchTerms}&intl=mx&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
FF NewTab: Mozilla\Firefox\Profiles\dj25k9op.default -> hxxps://mx.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10420__180528__yaff
FF Extension: (No Name) - C:\Users\May Cool\AppData\Roaming\Mozilla\Firefox\Profiles\dj25k9op.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-22]
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
CHR DefaultSearchURL: Default -> hxxps://es.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://es.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [njpedbdniajflhgfoipnjkednnlkngbj] - hxxps://clients2.google.com/service/update2/crx
AlternateDataStreams: C:\ProgramData\TEMP:1AAB2E68 [183]
AlternateDataStreams: C:\Users\May Cool\Desktop\adwcleaner_7.4.1.exe:com.dropbox.attributes [168]

HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.

Y ahora usa esta Faq de Windows ¿Cómo iniciar Windows en Modo Seguro (Aplicable a Windows 10)?, para trabajar desde ese modo de windows. (Usa el Metodo 1 y si no puedes, usa el Metodo 2)
Ejecutas Frst.exe.
Presionas el botón Fix y aguardas a que termine.
La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).

Lo pegas en tu próxima respuesta, comentado como va el problema

MayCool · 16 Octubre, 2019 18:38

mil gracias, hoy en la noche lo hago porque me parece delicado y quiero tener suficiente tiempo, mil gracias por tu ayuda. mañana tendrás noticias.

Miguelgrado · 16 Octubre, 2019 19:04

Ok… esperamos,…