PC se desconecta del cable de red y del monitor principal

Nicaindio · 1 Noviembre, 2019 15:34

Hace unos días mi PC comenzó a desconectarse del internet, aunque tengo cable, es decir no es wifi, y sólo he podido reconectar cuando reinicio el PC. El día anterior me sucedió igual, pero cuando reinicié no me daba la conexión al internet. Inicié el PC con un programa LInux Live para ver si el problema era el hardware, es decir, el integrado de la tarjeta que trae la conexión ethernet o por cable, en este programa se reconoció nuevamente el internet por lo que descarté la falla en la tarjeta. También como uso dos pantallas, una integrada y la otra con una tarjeta NVDIA, la cual tengo de monitor principal, y resulta que esta última se desconecta también. Al reiniciar y entrar al setup para ver si había cambios en la configuración, noté que se había desactivado el reconocimiento de pantallas multiples y volví a activar. Hice limpieza del PC e incluso del procesador con nueva pasta térmica para descartar que sea por recalentamiento. También hice limipeza del ventilador. Hice análisis de Avast y con ESET para escaneo en línea, así como el antivirus al iniciar la PC. Apliqué el escaneo de Malware y CCleaner, recién también con Awdcleaner.

¿Puede ser un virus? ¿qué me recomiendan?

Gracias y saludos!

JavierHF · 1 Noviembre, 2019 23:07

Hola @Nicaindio y Bienvenido al Foro…!!!

Nos puedes poner los informes de las herramientas que has usado.??

Saludos.

Nicaindio · 2 Noviembre, 2019 03:56

Gracias por responder @JavierHF pero borré los informes de Malwarebyte y de Awdcleaner. Si te parece vuelvo a hacerlo. El escaneo en línea no arrojó ninguna informaciön.

Gracias

JavierHF · 2 Noviembre, 2019 10:59

Pues entonces… sigue estos pasos, para revisar tu maquina, en el orden indicado y leyendo todo lo explicado.

Desactiva temporalmente el Antivirus Cómo deshabilitar temporalmente su Antivirus, mientras estemos realizando TODOS los pasos.

Vamos a descargar en TU ESCRITORIO(y NO en otro lugar ) todas las herramientas que vamos a utilizar en este procedimiento (pero no las ejecutes todavía) :

CCleaner + Manual.
Malwarebytes’ Anti-Malware + Manual. revisa en detalle el manual, para que sepas usarlo y configurarlo correctamente.
AdwCleaner + Manual.
Junkware Removal Tool.
Farbar Recovery Scan Tool. seleccionando la versión adecuada para la arquitectura(32 o 64bits) de tu equipo. Como saber si Mi Windows es de 32 o 64 Bits ?.

Ejecutas las herramientas de una en una y en el orden indicado :

CCleaner.-

Instalas y Ejecutas CCleaner siguiendo los pasos indicados en el manual.
Úsalo primero en su opción de Limpiador para borrar cookies, temporales de Internet y todos los archivos que te muestre como obsoletos.
Después usa su opción de Registro para limpiar todo el registro de Windows(haciendo copia de seguridad).

Malwarebytes.-

Instalas y Ejecutas MBAM siguiendo los pasos indicados en el manual.
Realiza un Análisis Completo.
Seleccionando TODOS a Cuarentena para enviarlo a la cuarentena y Reinicias el sistema.
En el apartado del manual Historial encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta, para analizarlo.

AdwCleaner.-

Ejecuta Adwcleaner.exe.
Pulsamos en el botón Analizar ahora, y espera a que se realice el proceso, inmediatamente pulsa siempre sobre el botón Iniciar Reparación.
Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
El log/informe lo encontramos en la pestaña “Informes”, volviendo a abrir el programa si fuese necesario, para poder copiarlo y pegarlo en tu próxima respuesta.
El informe también se puede encontrar en C:\AdwCleaner\Logs\AdwCleaner[C00].txt

Junkware Removal Tool.-

Ejecuta JRT.exe.
Y pulsar cualquier tecla para continuar, esperar pacientemente a que termine el proceso.
Si en algún momento te pide Reiniciar hazlo.
Al finalizar, un registro/informe (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.
Copia y pega el contenido de JRT.txt en tu próxima respuesta.

Farbar Recovery Scan Tool.-

Ejecuta FRST.exe.
En el mensaje de la ventana del Disclaimer, pulsamos Yes
En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Poner los informes en tu próxima respuesta de :

Malwarebytes, AdwCleaner, JRT, FRST + Addition.txt, y en ese orden.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Y nos cuentas como funciona tu equipo en relación al problema planteado.

Saludos.

Nicaindio · 21 Noviembre, 2019 18:45

Buenos días. Disculpa que la PC no me encendía del todo. Iniciaba y como que se quedaba iniciando y apagando. Limpié las tarjetas y memorias. Desconecté todos los discos. Y seguía igual. De pronto me inició, y me envió al SETUP para configurar. Hasta ahora puedo enviar las instrucciones que me hicieron.

Gracias

Aquí los resultados:

Ejecuté CCleaner tanto en la limpieza de archivos como del registro.

Ejecuté MBAM (como adminsitrador) y el resultado fue el siguente:

Malwarebytes

www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 21/11/19
Hora del análisis: 11:27
Archivo de registro: 42863e9a-0c84-11ea-a0b9-bc5ff4cfa469.json

-Información del software-
Versión: 3.8.3.2965
Versión de los componentes: 1.0.629
Versión del paquete de actualización: 1.0.13111
Licencia: Gratis

-Información del sistema-
SO: Windows 10 (Build 18362.476)
CPU: x64
Sistema de archivos: NTFS
Usuario: PC-CARLOS\CARLOS-PC

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 390388
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 6 min, 36 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Desactivado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 0
(No hay elementos maliciosos detectados)

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)

Nicaindio · 21 Noviembre, 2019 18:47

Ejecuté AdwCleaner y el resultado fue el siguiente:

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [35839 octets] - [01/11/2019 07:12:28]
AdwCleaner[S00].txt - [2355 octets] - [01/11/2019 07:13:44]
AdwCleaner[C00].txt - [2322 octets] - [01/11/2019 07:14:38]
AdwCleaner[S01].txt - [1510 octets] - [01/11/2019 07:22:05]
AdwCleaner[S02].txt - [1571 octets] - [21/11/2019 11:48:36]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Enterprise x64 
Ran by CARLOS-PC (Administrator) on 21/11/2019 at 12:29:28,16
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


File System: 2 

Successfully deleted: C:\ProgramData\drivergenius (Folder) 
Successfully deleted: C:\ProgramData\mntemp (File) 

Deleted the following from C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\prefs.js
user_pref(browser.newtab.url, hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10440__190321);
user_pref(browser.newtabpage.url, hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10440__190321);



Registry: 0 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 21/11/2019 at 12:33:39,66
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-11-2019
Ran by CARLOS-PC (administrator) on PC-CARLOS (21-11-2019 12:19:43)
Running from C:\Users\CARLOS-PC\Desktop
Loaded Profiles: CARLOS-PC (Available Profiles: CARLOS-PC & Saydrya)
Platform: Windows 10 Pro Version 1903 18362.476 (X64) Language: Español (España, internacional)
Default browser: Opera
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Code Sector -> Code Sector) C:\Program Files\TeraCopy\TeraCopyService.exe
(Intel CASE -> ) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Intel CASE -> Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Node.js Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\postgres.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\postgres.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1794888 2015-06-29] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-06-18] (Intel CASE -> Intel Corporation)
HKLM-x32\...\Run: [EaseUS EPM Tray Agent] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.10\bin\TrayPopupE\TrayTipAgentE.exe [255072 2014-11-18] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3315280 2019-09-10] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [4884016 2019-10-23] (Adobe Inc. -> Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2084920 2019-09-27] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office16\lync.exe [27141624 2019-09-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [5506096 2019-10-23] (Adobe Inc. -> Adobe Systems Incorporated)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.97\Installer\chrmstp.exe [2019-11-15] (Google LLC -> Google LLC)
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa
Startup: C:\Users\CARLOS-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-07-06]
ShortcutTarget: MEGAsync.lnk -> C:\Users\CARLOS-PC\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0CEC7258-830E-4323-90D7-1E68AB00F9F4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0D5D5F12-B82A-4948-82CE-C01D303B998C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {19F45FC4-7E7B-4268-AE32-BD46730B1AF6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-06-04] (Google Inc -> Google Inc.)
Task: {41DC80BC-917D-416F-92CE-5E946D7679E3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4AAF5BAA-0805-4CAD-A8CA-3EFDE4B1673B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {5181BC3F-2E61-4377-8330-CD2F694E4A3E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F3D521A-AE1D-4A04-80EC-CA6A299A9749} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {7758AB18-DAB0-4CA6-8A09-691F42354AFF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {7BA503FA-7CA8-456C-B7A2-5AFDC5EB34F9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-06-04] (Google Inc -> Google Inc.)
Task: {7C8F6FC1-2166-480F-BAA5-C4AF97986F67} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {96EA4970-23A2-414B-85AA-7698EFBA5A2C} - System32\Tasks\Opera scheduled Autoupdate 1553131350 => C:\Users\CARLOS-PC\AppData\Local\Programs\Opera\launcher.exe [1534488 2019-11-05] (Opera Software AS -> Opera Software)
Task: {D5D8ABF9-5D4A-4E0A-81C6-55CEDAF3A6F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

Nicaindio · 21 Noviembre, 2019 18:49

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{027456df-21d3-46a8-ac43-5fffb31bd7b3}: [DhcpNameServer] 152.231.45.222

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2019-09-10] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2019-09-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-03-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-03-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: v1nlyw4q.default-1553107664704
FF ProfilePath: C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704 [2019-11-21]
FF Homepage: Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704 -> www.google.com.ni
FF NewTab: Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704 -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10440__190321
FF Session Restore: Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704 -> is enabled.
FF Extension: (Owl - For comfortable reading) - C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\Extensions\@owl-comfortable-reading-addon.xpi [2019-03-29]
FF Extension: (Botón de Google Académico) - C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\Extensions\[email protected] [2019-03-29]
FF Extension: (Spanish (Spain) Dictionary) - C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\Extensions\[email protected] [2019-03-21]
FF Extension: (YouTube™ Flash® Player) - C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\Extensions\[email protected] [2019-03-29]
FF Extension: (AdBlock) - C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\Extensions\[email protected] [2019-06-13]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\Extensions\[email protected] [2019-10-29]
FF Extension: (Español (España) Language Pack) - C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\Extensions\[email protected] [2019-03-21]
FF Extension: (Google Translator for Firefox) - C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\Extensions\[email protected] [2019-03-29]
FF Extension: (Avast Online Security) - C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\Extensions\[email protected] [2019-03-21]
FF Extension: (VPN - Grab A Proxy - FREE) - C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\Extensions\{32cb491e-ec24-4b50-a6dd-b3ca5f42c4f4}.xpi [2019-03-29]
FF Extension: (EPUBReader) - C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}.xpi [2019-03-29]
FF Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-04-03]
FF Extension: (No Name) - C:\Users\CARLOS-PC\AppData\Roaming\Mozilla\Firefox\Profiles\v1nlyw4q.default-1553107664704\Extensions\{E0B8C461-F8FB-49b4-8373-FE32E9252800}.xpi [2019-03-29]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-10-23]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-09-27] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-03-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-03-21] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-09] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-09] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-10-23] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-09-27] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-2882685397-3555233731-4115562749-1002: @zoom.us/ZoomVideoPlugin -> C:\Users\CARLOS-PC\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2019-10-31] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR Profile: C:\Users\CARLOS-PC\AppData\Local\Google\Chrome\User Data\Default [2019-11-21]
CHR Extension: (Presentaciones) - C:\Users\CARLOS-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-04]
CHR Extension: (Avast Online Security) - C:\Users\CARLOS-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-09-25]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\CARLOS-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-25]
CHR Extension: (Chrome Media Router) - C:\Users\CARLOS-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-25]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

Opera: 
=======
OPR Notifications: hxxps://73pokerdom.com; hxxps://76pokerdom.com; hxxps://blog.uptodown.com; hxxps://calendar.google.com; hxxps://drive.google.com; hxxps://mail.protonmail.com; hxxps://mail.yahoo.com; hxxps://messages.google.com; hxxps://pelisvips.com; hxxps://stockindesign.com; hxxps://twitter.com; hxxps://web.telegram.org; hxxps://www.educaciontrespuntocero.com; hxxps://www.laprensa.com.ni; hxxps://www.movistar.com.ni; hxxps://www.pccomponentes.com; hxxps://www.pelispedia.tv
OPR Extension: (Desktop Messenger for Telegram™) - C:\Users\CARLOS-PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\lamkfhpkhbgfdglofogcdipebpibjbkg [2019-05-03]
OPR Extension: (App for Twitter™) - C:\Users\CARLOS-PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\llanndigbhhdmadbmmhammaheljahnog [2019-03-21]
OPR Extension: (Google Translate) - C:\Users\CARLOS-PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\mchdgimobfnilobnllpdnompfjkkfdmi [2019-10-30]
OPR Extension: (Google™ Keep) - C:\Users\CARLOS-PC\AppData\Roaming\Opera Software\Opera Stable\Extensions\pfdafkloejmpdifkkmfimkpbpggfihce [2019-03-24]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [823352 2019-09-27] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6085360 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-06-18] (Intel CASE -> )
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [974848 2019-06-25] (Microsoft Windows -> )
S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [290816 2019-10-11] (Microsoft Windows -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12054872 2019-10-10] (TeamViewer GmbH -> TeamViewer GmbH)
R2 TeraCopyService; C:\Program Files\TeraCopy\TeraCopyService.exe [110416 2017-05-05] (Code Sector -> Code Sector)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [694016 2019-07-12] (Oracle Corporation -> Oracle Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-11-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 postgresql-x64-9.3; "C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe" runservice -N "postgresql-x64-9.3" -D "C:/Program Files/PostgreSQL/9.3/data" -w [X] <==== ATTENTION

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37616 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [204824 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [274456 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [209552 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [65120 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2019-10-11] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [276952 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42736 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [171520 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110320 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83792 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848432 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460448 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316528 2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [34368 2018-01-16] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFlt; C:\WINDOWS\System32\drivers\EPMVolFlt.sys [30280 2018-07-19] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10848 2016-07-11] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
R3 ikbevent; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [22216 2014-05-27] (Intel CASE -> )
R3 imsevent; C:\WINDOWS\system32\DRIVERS\imsevent.sys [22728 2014-05-27] (Intel CASE -> )
R3 INETMON; C:\WINDOWS\System32\Drivers\INETMON.sys [25800 2014-05-27] (Intel CASE -> )
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-05-27] (Intel CASE -> )
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2019-03-18] (Microsoft Windows -> MediaTek Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [711968 2019-06-04] (Realtek Semiconductor Corp. -> Realtek )
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2019-09-13] (Microsoft Windows -> Microsoft Corporation)
R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [237584 2019-07-12] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [248464 2019-07-12] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [174520 2019-05-13] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-11-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [351968 2019-11-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-11-01] (Microsoft Windows -> Microsoft Corporation)
S3 WUSB54GCv3; C:\WINDOWS\system32\DRIVERS\WUSB54GCv3.sys [797184 2008-12-04] (Microsoft Windows Hardware Compatibility Publisher -> Ralink Technology Corp.)
S3 ALSysIO; \??\C:\Users\CARLOS~1\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION

Nicaindio · 21 Noviembre, 2019 18:51

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-21 12:19 - 2019-11-21 12:21 - 000033645 _____ C:\Users\CARLOS-PC\Desktop\FRST.txt
2019-11-21 12:19 - 2019-11-21 12:20 - 000000000 ____D C:\FRST
2019-11-21 11:19 - 2019-11-21 11:19 - 000002884 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2019-11-21 11:09 - 2019-11-21 11:09 - 002260480 _____ (Farbar) C:\Users\CARLOS-PC\Desktop\FRST64.exe
2019-11-21 11:07 - 2019-11-21 11:07 - 001790024 _____ (Malwarebytes) C:\Users\CARLOS-PC\Downloads\JRT.exe
2019-11-21 11:03 - 2019-11-21 11:03 - 000004210 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1553131350
2019-11-21 10:47 - 2019-11-21 10:47 - 000000000 ___HD C:\adobeTemp
2019-11-16 01:09 - 2019-11-16 01:09 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 006521768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 006232576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 006227104 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 005914112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 004578816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 004129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 003968512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 003791360 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 003728384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 003487232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 002988344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 002956472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 002763016 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 002576384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 002114048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 002081976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001920512 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001866272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001664688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001656392 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001647064 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001413864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 001327064 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001283072 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001171704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 001098712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 001017680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000874936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000774456 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000768488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000679152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000673664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000517432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000477712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-11-16 01:09 - 2019-11-16 01:09 - 000466928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000461320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000452920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000404904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000380944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000372752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-16 01:09 - 2019-11-16 01:09 - 000220472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000193800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-11-16 01:09 - 2019-11-16 01:09 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000089568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000084488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 000084488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\reg.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000061240 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\reg.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000047616 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000021304 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2019-11-16 01:09 - 2019-11-16 01:09 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dstokenclean.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2019-11-16 01:08 - 2019-11-16 01:08 - 000551736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-11-16 00:43 - 2019-11-16 00:44 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2019-11-16 00:43 - 2019-11-16 00:44 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2019-11-09 11:40 - 2019-11-09 11:40 - 000003558 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-09 11:40 - 2019-11-09 11:40 - 000003434 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-09 11:00 - 2019-11-09 11:00 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2882685397-3555233731-4115562749-1004
2019-11-01 09:54 - 2019-11-01 09:59 - 001537786 _____ C:\Users\CARLOS-PC\Downloads\Reporte de Analisis de STOPDjvu.txt
2019-11-01 09:44 - 2019-11-01 09:44 - 002019456 _____ (CybelSoft) C:\Users\CARLOS-PC\Downloads\Drivers_PC-CARLOS.exe
2019-11-01 07:12 - 2019-11-01 07:14 - 000000000 ____D C:\AdwCleaner
2019-11-01 07:12 - 2019-11-01 07:12 - 007622344 ____N (Malwarebytes) C:\Users\CARLOS-PC\Downloads\adwcleaner_7.4.2.exe
2019-10-31 23:49 - 2019-10-31 23:49 - 000001952 _____ C:\Users\CARLOS-PC\Desktop\Zoom.lnk
2019-10-31 23:49 - 2019-10-31 23:49 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2019-10-31 23:09 - 2019-10-31 23:09 - 000000000 ____D C:\.Trash-0
2019-10-31 22:27 - 2019-11-21 11:51 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-10-31 22:27 - 2019-11-21 11:26 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\TeamViewer
2019-10-31 22:27 - 2019-11-02 00:21 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Local\TeamViewer
2019-10-31 22:27 - 2019-10-31 22:27 - 000001125 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk
2019-10-31 22:27 - 2019-10-31 22:27 - 000001113 _____ C:\Users\Public\Desktop\TeamViewer 14.lnk
2019-10-31 22:27 - 2019-10-31 22:27 - 000001113 _____ C:\ProgramData\Desktop\TeamViewer 14.lnk
2019-10-31 22:26 - 2019-10-31 22:26 - 025979792 ____N (TeamViewer GmbH) C:\Users\CARLOS-PC\Downloads\TeamViewer_Setup.exe
2019-10-31 22:16 - 2019-10-31 22:16 - 001926984 _____ (Emsisoft Ltd.) C:\Users\CARLOS-PC\Downloads\decrypt_STOPDjvu.exe
2019-10-31 21:01 - 2019-11-01 01:19 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2019-10-30 22:01 - 2019-10-30 22:01 - 093726760 _____ C:\Users\CARLOS-PC\Downloads\Hacking-ESPAÑOL.rar
2019-10-30 05:15 - 2019-10-30 05:15 - 000002143 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2019-10-30 05:15 - 2019-10-30 05:15 - 000002143 _____ C:\ProgramData\Desktop\3D Vision Photo Viewer.lnk
2019-10-30 05:15 - 2019-10-30 05:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-10-30 03:03 - 2019-10-30 03:03 - 000000000 ____D C:\ProgramData\NortonInstaller
2019-10-30 03:02 - 2019-10-30 03:10 - 000000000 ____D C:\ProgramData\Norton
2019-10-30 03:02 - 2019-10-30 03:02 - 000793536 ____N (Symantec) C:\Users\CARLOS-PC\Downloads\Setup.exe
2019-10-30 00:14 - 2019-10-30 02:22 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\slobs-client
2019-10-30 00:14 - 2019-10-30 00:33 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\obs-studio-node-server
2019-10-30 00:14 - 2019-10-30 00:14 - 000001985 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs OBS.lnk
2019-10-30 00:14 - 2019-10-30 00:14 - 000001973 _____ C:\Users\Public\Desktop\Streamlabs OBS.lnk
2019-10-30 00:14 - 2019-10-30 00:14 - 000001973 _____ C:\ProgramData\Desktop\Streamlabs OBS.lnk
2019-10-30 00:14 - 2019-10-30 00:14 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\slobs-plugins
2019-10-30 00:14 - 2019-10-30 00:14 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Local\slobs-client-updater
2019-10-30 00:13 - 2019-10-30 00:14 - 000000000 ____D C:\Program Files\Streamlabs OBS
2019-10-30 00:09 - 2019-11-01 05:21 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2019-10-30 00:09 - 2019-10-30 00:09 - 000001089 _____ C:\Users\CARLOS-PC\Desktop\SpeedFan.lnk
2019-10-30 00:09 - 2019-10-30 00:09 - 000000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2019-10-30 00:09 - 2019-10-30 00:09 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2019-10-30 00:05 - 2019-10-30 00:09 - 250807192 _____ (General Workings, Inc.) C:\Users\CARLOS-PC\Downloads\Streamlabs+OBS+Setup+0.18.5-gZ6BC6x2UfYB1tx.exe
2019-10-29 22:37 - 2019-10-29 22:37 - 003086696 ____N C:\Users\CARLOS-PC\Downloads\instspeedfan452.exe
2019-10-29 21:36 - 2016-11-14 03:45 - 000615992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2019-10-29 21:15 - 2019-10-29 21:30 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-10-29 21:10 - 2019-10-29 21:10 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_INETMON_01011.Wdf
2019-10-29 21:10 - 2014-05-27 11:21 - 000025800 _____ C:\WINDOWS\system32\Drivers\INETMON.sys
2019-10-29 21:07 - 2019-10-29 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2019-10-29 21:04 - 2019-10-29 21:04 - 022070576 ____N (Microsoft Corporation) C:\Users\CARLOS-PC\Downloads\Intel(R) Smart Connect Technology 5.0.exe
2019-10-29 14:01 - 2019-10-29 14:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-10-29 13:50 - 2019-10-29 13:50 - 000000000 ____D C:\WINDOWS\PCHEALTH
2019-10-29 13:50 - 2019-10-29 13:50 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2019-10-29 13:50 - 2019-10-29 13:50 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2019-10-29 10:25 - 2019-10-29 10:25 - 025901056 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 009711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 008011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 007195648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 007015936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 005763848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 005501952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 004307968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 002399232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 002369552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 002188808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 002158080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001718584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001659192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001616696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001495864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001387024 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001359872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebManagement.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 001189376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001185792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AgentService.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 001047352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000960040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000827192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000816952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000741376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000666640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000637952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000494904 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 000396088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000380928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ManagedEventLogging.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ConfigWrapper.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000259384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000230200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CmUtil.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcXtrnal.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2019-10-29 10:25 - 2019-10-29 10:25 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SyncController.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2019-10-29 10:25 - 2019-10-29 10:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppCore.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CabUtil.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.EventLogMessages.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAgentPolicyGenerator.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000030720 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Management.WmiAccess.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Management.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppData.WinRT.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SyncCommon.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.WinRT.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.LocalSyncProvider.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcXtrnal.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernSync.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevTemplateBaselineGenerator.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevTemplateConfigItemGenerator.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SmbSyncProvider.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.MonitorSyncProvider.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SyncConditions.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2019-10-29 10:25 - 2019-10-29 10:25 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2019-10-29 10:24 - 2019-10-29 10:24 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 007262456 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 006435840 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 006082808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 005943296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 005112320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 004150272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 004047360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 003967920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 003752960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 003371928 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 002871848 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 002772272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 002703872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 002698768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 002586816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 002562048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 002258848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001974824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 001916984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-29 10:24 - 2019-10-29 10:24 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001691648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000982840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000892696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000822072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000811536 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000768528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000638264 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000586768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 000514576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000375720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000251512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\accessibilitycpl.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmd.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\accessibilitycpl.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000164776 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000136536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000113160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AtBroker.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AtBroker.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winnsi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\posetup.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsisvc.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000028344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winnsi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000024792 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 017787904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 007904152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 007849424 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 007278592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 006166016 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 005890048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 004615616 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 004005888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 003591208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 003105792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 002126112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 002120704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001687040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 001428992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 001413912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001259416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 001094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001069064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000911824 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000874536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000657424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000644096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000598016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000589592 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000552448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000416016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000322504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000292664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000291256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000204816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000105488 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2019-10-29 10:23 - 2019-10-29 10:23 - 000088568 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000065272 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000047208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2019-10-29 10:23 - 2019-10-29 10:23 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscisvif.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsilog.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscadminui.exe
2019-10-29 06:05 - 2019-10-29 06:07 - 000000000 ____D C:\Users\CARLOS-PC\AppData\LocalLow\uTorrent
2019-10-23 08:43 - 2019-10-23 08:43 - 000065176 _____ (Adobe Systems Inc) C:\WINDOWS\system32\AdobePDF.dll
2019-10-23 08:43 - 2019-10-23 08:43 - 000036504 _____ (Adobe Systems Inc.) C:\WINDOWS\system32\AdobePDFUI.dll

Nicaindio · 21 Noviembre, 2019 18:53

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-21 12:19 - 2019-11-21 12:21 - 000033645 _____ C:\Users\CARLOS-PC\Desktop\FRST.txt
2019-11-21 12:19 - 2019-11-21 12:20 - 000000000 ____D C:\FRST
2019-11-21 11:19 - 2019-11-21 11:19 - 000002884 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2019-11-21 11:09 - 2019-11-21 11:09 - 002260480 _____ (Farbar) C:\Users\CARLOS-PC\Desktop\FRST64.exe
2019-11-21 11:07 - 2019-11-21 11:07 - 001790024 _____ (Malwarebytes) C:\Users\CARLOS-PC\Downloads\JRT.exe
2019-11-21 11:03 - 2019-11-21 11:03 - 000004210 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1553131350
2019-11-21 10:47 - 2019-11-21 10:47 - 000000000 ___HD C:\adobeTemp
2019-11-16 01:09 - 2019-11-16 01:09 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 006521768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 006232576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 006227104 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 005914112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 004578816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 004129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 003968512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 003791360 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 003728384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 003487232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 002988344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 002956472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 002763016 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 002576384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 002114048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 002081976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001920512 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001866272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001664688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001656392 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001647064 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001413864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 001327064 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001283072 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001171704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 001098712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 001017680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000874936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000774456 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000768488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000679152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000673664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000517432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000477712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-11-16 01:09 - 2019-11-16 01:09 - 000466928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000461320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000452920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000404904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000380944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000372752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-16 01:09 - 2019-11-16 01:09 - 000220472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000193800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-11-16 01:09 - 2019-11-16 01:09 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000089568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000084488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 000084488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-11-16 01:09 - 2019-11-16 01:09 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\reg.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000061240 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\reg.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000047616 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000021304 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2019-11-16 01:09 - 2019-11-16 01:09 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dstokenclean.exe
2019-11-16 01:09 - 2019-11-16 01:09 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2019-11-16 01:09 - 2019-11-16 01:09 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2019-11-16 01:08 - 2019-11-16 01:08 - 000551736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-11-16 00:43 - 2019-11-16 00:44 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2019-11-16 00:43 - 2019-11-16 00:44 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2019-11-09 11:40 - 2019-11-09 11:40 - 000003558 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-09 11:40 - 2019-11-09 11:40 - 000003434 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-09 11:00 - 2019-11-09 11:00 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2882685397-3555233731-4115562749-1004
2019-11-01 09:54 - 2019-11-01 09:59 - 001537786 _____ C:\Users\CARLOS-PC\Downloads\Reporte de Analisis de STOPDjvu.txt
2019-11-01 09:44 - 2019-11-01 09:44 - 002019456 _____ (CybelSoft) C:\Users\CARLOS-PC\Downloads\Drivers_PC-CARLOS.exe
2019-11-01 07:12 - 2019-11-01 07:14 - 000000000 ____D C:\AdwCleaner
2019-11-01 07:12 - 2019-11-01 07:12 - 007622344 ____N (Malwarebytes) C:\Users\CARLOS-PC\Downloads\adwcleaner_7.4.2.exe
2019-10-31 23:49 - 2019-10-31 23:49 - 000001952 _____ C:\Users\CARLOS-PC\Desktop\Zoom.lnk
2019-10-31 23:49 - 2019-10-31 23:49 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2019-10-31 23:09 - 2019-10-31 23:09 - 000000000 ____D C:\.Trash-0
2019-10-31 22:27 - 2019-11-21 11:51 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-10-31 22:27 - 2019-11-21 11:26 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\TeamViewer
2019-10-31 22:27 - 2019-11-02 00:21 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Local\TeamViewer
2019-10-31 22:27 - 2019-10-31 22:27 - 000001125 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk
2019-10-31 22:27 - 2019-10-31 22:27 - 000001113 _____ C:\Users\Public\Desktop\TeamViewer 14.lnk
2019-10-31 22:27 - 2019-10-31 22:27 - 000001113 _____ C:\ProgramData\Desktop\TeamViewer 14.lnk
2019-10-31 22:26 - 2019-10-31 22:26 - 025979792 ____N (TeamViewer GmbH) C:\Users\CARLOS-PC\Downloads\TeamViewer_Setup.exe
2019-10-31 22:16 - 2019-10-31 22:16 - 001926984 _____ (Emsisoft Ltd.) C:\Users\CARLOS-PC\Downloads\decrypt_STOPDjvu.exe
2019-10-31 21:01 - 2019-11-01 01:19 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2019-10-30 22:01 - 2019-10-30 22:01 - 093726760 _____ C:\Users\CARLOS-PC\Downloads\Hacking-ESPAÑOL.rar
2019-10-30 05:15 - 2019-10-30 05:15 - 000002143 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2019-10-30 05:15 - 2019-10-30 05:15 - 000002143 _____ C:\ProgramData\Desktop\3D Vision Photo Viewer.lnk
2019-10-30 05:15 - 2019-10-30 05:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-10-30 03:03 - 2019-10-30 03:03 - 000000000 ____D C:\ProgramData\NortonInstaller
2019-10-30 03:02 - 2019-10-30 03:10 - 000000000 ____D C:\ProgramData\Norton
2019-10-30 03:02 - 2019-10-30 03:02 - 000793536 ____N (Symantec) C:\Users\CARLOS-PC\Downloads\Setup.exe
2019-10-30 00:14 - 2019-10-30 02:22 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\slobs-client
2019-10-30 00:14 - 2019-10-30 00:33 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\obs-studio-node-server
2019-10-30 00:14 - 2019-10-30 00:14 - 000001985 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs OBS.lnk
2019-10-30 00:14 - 2019-10-30 00:14 - 000001973 _____ C:\Users\Public\Desktop\Streamlabs OBS.lnk
2019-10-30 00:14 - 2019-10-30 00:14 - 000001973 _____ C:\ProgramData\Desktop\Streamlabs OBS.lnk
2019-10-30 00:14 - 2019-10-30 00:14 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\slobs-plugins
2019-10-30 00:14 - 2019-10-30 00:14 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Local\slobs-client-updater
2019-10-30 00:13 - 2019-10-30 00:14 - 000000000 ____D C:\Program Files\Streamlabs OBS
2019-10-30 00:09 - 2019-11-01 05:21 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2019-10-30 00:09 - 2019-10-30 00:09 - 000001089 _____ C:\Users\CARLOS-PC\Desktop\SpeedFan.lnk
2019-10-30 00:09 - 2019-10-30 00:09 - 000000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2019-10-30 00:09 - 2019-10-30 00:09 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2019-10-30 00:05 - 2019-10-30 00:09 - 250807192 _____ (General Workings, Inc.) C:\Users\CARLOS-PC\Downloads\Streamlabs+OBS+Setup+0.18.5-gZ6BC6x2UfYB1tx.exe
2019-10-29 22:37 - 2019-10-29 22:37 - 003086696 ____N C:\Users\CARLOS-PC\Downloads\instspeedfan452.exe
2019-10-29 21:36 - 2016-11-14 03:45 - 000615992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2019-10-29 21:15 - 2019-10-29 21:30 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-10-29 21:10 - 2019-10-29 21:10 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_INETMON_01011.Wdf
2019-10-29 21:10 - 2014-05-27 11:21 - 000025800 _____ C:\WINDOWS\system32\Drivers\INETMON.sys
2019-10-29 21:07 - 2019-10-29 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2019-10-29 21:04 - 2019-10-29 21:04 - 022070576 ____N (Microsoft Corporation) C:\Users\CARLOS-PC\Downloads\Intel(R) Smart Connect Technology 5.0.exe
2019-10-29 14:01 - 2019-10-29 14:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-10-29 13:50 - 2019-10-29 13:50 - 000000000 ____D C:\WINDOWS\PCHEALTH
2019-10-29 13:50 - 2019-10-29 13:50 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2019-10-29 13:50 - 2019-10-29 13:50 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2019-10-29 10:25 - 2019-10-29 10:25 - 025901056 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 009711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 008011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 007195648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 007015936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 005763848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 005501952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 004307968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 002399232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 002369552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 002188808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 002158080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001718584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001659192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001616696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001495864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001387024 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001359872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebManagement.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 001189376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001185792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AgentService.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 001126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 001047352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000960040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000827192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000816952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000741376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000666640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000637952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000494904 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 000396088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000380928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ManagedEventLogging.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ConfigWrapper.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000259384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000230200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CmUtil.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcXtrnal.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2019-10-29 10:25 - 2019-10-29 10:25 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SyncController.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2019-10-29 10:25 - 2019-10-29 10:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppCore.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CabUtil.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.EventLogMessages.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAgentPolicyGenerator.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000030720 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Management.WmiAccess.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Management.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppData.WinRT.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SyncCommon.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.WinRT.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.LocalSyncProvider.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcXtrnal.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernSync.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevTemplateBaselineGenerator.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevTemplateConfigItemGenerator.exe
2019-10-29 10:25 - 2019-10-29 10:25 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SmbSyncProvider.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.MonitorSyncProvider.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SyncConditions.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2019-10-29 10:25 - 2019-10-29 10:25 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2019-10-29 10:25 - 2019-10-29 10:25 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2019-10-29 10:24 - 2019-10-29 10:24 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 007262456 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 006435840 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 006082808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 005943296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 005112320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 004150272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 004047360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 003967920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 003752960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 003371928 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 002871848 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 002772272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 002703872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 002698768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 002586816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 002562048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 002258848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001974824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 001916984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-29 10:24 - 2019-10-29 10:24 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001691648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000982840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000892696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000822072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000811536 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000768528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000638264 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000586768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 000514576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000375720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000251512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\accessibilitycpl.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmd.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\accessibilitycpl.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000164776 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000136536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000113160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AtBroker.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AtBroker.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winnsi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\posetup.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsisvc.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000028344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winnsi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000024792 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2019-10-29 10:24 - 2019-10-29 10:24 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2019-10-29 10:24 - 2019-10-29 10:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-10-29 10:24 - 2019-10-29 10:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 017787904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 007904152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 007849424 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 007278592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 006166016 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 005890048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 004615616 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 004005888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 003591208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 003105792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 002126112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 002120704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001687040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 001428992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 001413912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001259416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 001094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001069064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000911824 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000874536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000657424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000644096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000598016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000589592 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000552448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.UserService.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000416016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000322504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000292664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000291256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000204816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2019-10-29 10:23 - 2019-10-29 10:23 - 000105488 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2019-10-29 10:23 - 2019-10-29 10:23 - 000088568 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000065272 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000047208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2019-10-29 10:23 - 2019-10-29 10:23 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2019-10-29 10:23 - 2019-10-29 10:23 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscisvif.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsilog.dll
2019-10-29 10:23 - 2019-10-29 10:23 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscadminui.exe
2019-10-29 06:05 - 2019-10-29 06:07 - 000000000 ____D C:\Users\CARLOS-PC\AppData\LocalLow\uTorrent
2019-10-23 08:43 - 2019-10-23 08:43 - 000065176 _____ (Adobe Systems Inc) C:\WINDOWS\system32\AdobePDF.dll
2019-10-23 08:43 - 2019-10-23 08:43 - 000036504 _____ (Adobe Systems Inc.) C:\WINDOWS\system32\AdobePDFUI.dll

Nicaindio · 21 Noviembre, 2019 18:53

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-21 12:19 - 2019-10-16 23:06 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2019-11-21 12:19 - 2019-10-16 23:06 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2019-11-21 12:18 - 2019-03-21 04:12 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Local\AVAST Software
2019-11-21 12:17 - 2019-06-24 11:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-11-21 12:17 - 2019-03-20 12:49 - 000000000 __SHD C:\Users\CARLOS-PC\IntelGraphicsProfiles
2019-11-21 12:17 - 2019-03-18 22:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-11-21 11:51 - 2019-06-24 12:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-11-21 11:51 - 2019-03-20 15:57 - 000000000 ____D C:\ProgramData\NVIDIA
2019-11-21 11:50 - 2019-03-18 22:37 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2019-11-21 11:26 - 2019-03-22 14:20 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Local\CrashDumps
2019-11-21 11:26 - 2019-03-20 19:55 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\uTorrent
2019-11-21 11:26 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-11-21 11:26 - 2019-03-18 22:50 - 000000000 ____D C:\WINDOWS\INF
2019-11-21 11:03 - 2019-03-20 19:22 - 000001484 _____ C:\Users\CARLOS-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera.lnk
2019-11-21 11:00 - 2019-10-07 06:33 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2019-11-21 10:48 - 2019-10-16 23:21 - 000000000 ___RD C:\Users\CARLOS-PC\Creative Cloud Files
2019-11-21 10:45 - 2019-10-07 06:34 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Local\Adobe
2019-11-21 10:44 - 2019-03-20 12:22 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Local\PlaceholderTileLogoFolder
2019-11-16 01:42 - 2019-06-24 12:14 - 001767630 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-16 01:42 - 2019-03-19 05:59 - 000783276 _____ C:\WINDOWS\system32\perfh00A.dat
2019-11-16 01:42 - 2019-03-19 05:59 - 000152746 _____ C:\WINDOWS\system32\perfc00A.dat
2019-11-16 01:38 - 2019-06-24 11:50 - 000471288 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-16 01:35 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-11-16 01:35 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\SystemResources
2019-11-16 01:35 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-11-16 01:35 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-11-16 01:35 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-11-16 01:35 - 2018-11-23 13:16 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-11-16 01:29 - 2018-11-23 13:16 - 128443096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-11-16 01:24 - 2018-09-15 01:31 - 000000167 _____ C:\WINDOWS\win.ini
2019-11-16 01:17 - 2019-03-18 22:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-11-15 23:56 - 2018-11-23 13:11 - 000748816 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-11-15 23:54 - 2019-06-04 17:58 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-09 11:40 - 2019-06-04 17:54 - 000000000 ____D C:\Program Files (x86)\Google
2019-11-09 11:14 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-11-09 11:08 - 2019-03-18 22:52 - 000000000 ___HD C:\Program Files\WindowsApps
2019-11-09 11:00 - 2019-06-24 09:49 - 000002382 _____ C:\Users\Saydrya\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-11-09 11:00 - 2019-05-04 21:07 - 000000000 ___RD C:\Users\Saydrya\OneDrive
2019-11-09 10:53 - 2019-05-04 21:05 - 000000000 ___RD C:\Users\Saydrya\3D Objects
2019-11-09 10:53 - 2018-11-23 07:56 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-11-09 10:51 - 2019-05-04 21:05 - 000000000 __SHD C:\Users\Saydrya\IntelGraphicsProfiles
2019-11-03 19:21 - 2019-03-21 01:20 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Local\PokerStars
2019-11-03 17:06 - 2018-11-23 07:56 - 000000000 ____D C:\ProgramData\Packages
2019-11-01 09:46 - 2019-03-24 17:26 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2019-11-01 08:53 - 2019-03-20 12:42 - 000000000 ____D C:\Users\CARLOS-PC\AppData\LocalLow\Mozilla
2019-11-01 07:28 - 2019-03-27 21:32 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\tor
2019-11-01 07:04 - 2019-03-22 14:51 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\KeePass
2019-11-01 05:59 - 2019-03-20 12:18 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\TeraCopy
2019-11-01 05:27 - 2018-11-23 07:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-11-01 02:08 - 2019-03-22 20:15 - 000007623 _____ C:\Users\CARLOS-PC\AppData\Local\Resmon.ResmonCfg
2019-11-01 01:44 - 2019-06-24 09:49 - 000000000 ____D C:\Users\CARLOS-PC
2019-11-01 01:43 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-11-01 01:40 - 2019-03-25 21:12 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\Zoom
2019-11-01 01:19 - 2019-06-24 12:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2019-10-31 21:00 - 2019-10-07 06:33 - 000002123 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2019-10-31 21:00 - 2019-10-07 06:33 - 000002100 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2019-10-31 21:00 - 2019-10-07 06:33 - 000002100 _____ C:\ProgramData\Desktop\Adobe Acrobat DC.lnk
2019-10-30 02:56 - 2019-08-17 13:31 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-10-30 00:33 - 2019-03-22 20:04 - 000001156 _____ C:\Users\CARLOS-PC\Desktop\PokerTracker 4.lnk
2019-10-29 21:35 - 2019-04-05 11:23 - 000000000 ____D C:\Program Files\Core Temp
2019-10-29 21:30 - 2018-11-23 12:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-10-29 21:23 - 2018-11-23 12:38 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-10-29 21:06 - 2019-03-20 12:48 - 000000000 ____D C:\Program Files\Intel
2019-10-29 21:00 - 2019-03-31 16:47 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Roaming\obs-studio
2019-10-29 13:55 - 2019-03-18 22:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-10-29 11:00 - 2019-03-20 12:19 - 000000000 ___RD C:\Users\CARLOS-PC\3D Objects
2019-10-29 10:52 - 2019-03-18 22:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-10-29 10:52 - 2019-03-18 22:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-10-29 10:52 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-10-29 10:52 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-10-29 10:52 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-10-29 10:52 - 2019-03-18 22:52 - 000000000 ____D C:\WINDOWS\DiagTrack
2019-10-29 08:21 - 2019-07-22 13:58 - 000000000 ___RD C:\Users\CARLOS-PC\Desktop\ 
2019-10-29 06:53 - 2019-07-06 23:14 - 000000000 ____D C:\Users\CARLOS-PC\AppData\Local\Winner Poker
2019-10-29 06:13 - 2019-10-16 22:47 - 000000000 ____D C:\Program Files\Common Files\Adobe

==================== Files in the root of some directories ========

2019-07-15 20:17 - 2019-07-28 02:37 - 000001680 _____ () C:\Users\CARLOS-PC\AppData\Local\Adobe Guardar para Web 13.0 Prefs
2019-03-24 13:39 - 2019-03-24 13:39 - 000000001 _____ () C:\Users\CARLOS-PC\AppData\Local\llftool.4.25.agreement
2019-06-10 18:59 - 2019-06-24 06:04 - 000000205 _____ () C:\Users\CARLOS-PC\AppData\Local\oobelibMkey.log
2019-03-22 20:15 - 2019-11-01 02:08 - 000007623 _____ () C:\Users\CARLOS-PC\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

JavierHF · 21 Noviembre, 2019 22:19

Hola.

Falta que pongas el informe de Addition.txt y además que comentes cómo sigue el problema inicialmente planteado.

Saludos.

Nicaindio · 22 Noviembre, 2019 01:46

Bueno, no he vuelto a tener el problema planteado en las pocas horas que llevo conectado. Espero informar si se vuelve a presentar la desconexión a internet.

El informe addition.txt creí que estaba incluido, como tiene la limitación de 65000 caracteres tuve que hacer muchos archivos.

Aqui va:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-11-2019
Ran by CARLOS-PC (21-11-2019 12:21:46)
Running from C:\Users\CARLOS-PC\Desktop
Windows 10 Pro Version 1903 18362.476 (X64) (2019-06-24 18:22:05)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-2882685397-3555233731-4115562749-500 - Administrator - Disabled)
CARLOS-PC (S-1-5-21-2882685397-3555233731-4115562749-1002 - Administrator - Enabled) => C:\Users\CARLOS-PC
DefaultAccount (S-1-5-21-2882685397-3555233731-4115562749-503 - Limited - Disabled)
Invitado (S-1-5-21-2882685397-3555233731-4115562749-501 - Limited - Disabled)
nicai (S-1-5-21-2882685397-3555233731-4115562749-1003 - Limited - Enabled)
Saydrya (S-1-5-21-2882685397-3555233731-4115562749-1004 - Limited - Enabled) => C:\Users\Saydrya
WDAGUtilityAccount (S-1-5-21-2882685397-3555233731-4115562749-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\uTorrent) (Version: 3.5.5.45365 - BitTorrent Inc.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
888poker (HKLM-x32\...\{D22A2C85-EAC3-48FD-865A-806D3CAA7B0B}) (Version: 7.14.00112 - 888) Hidden
888poker (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\InstallShield_{D22A2C85-EAC3-48FD-865A-806D3CAA7B0B}) (Version: 7.14.00112 - 888)
Actualización de NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.021.20056 - Adobe Systems Incorporated)
Adobe Bridge 2019 (HKLM-x32\...\KBRG_9_1) (Version: 9.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.0.0.354 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.255 - Adobe)
Adobe InDesign 2019 (HKLM-x32\...\IDSN_14_0_3) (Version: 14.0.3 - Adobe Systems Incorporated)
AIDA64 Engineer v5.97 (HKLM-x32\...\AIDA64 Engineer_is1) (Version: 5.97 - FinalWire Ltd.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Blender (HKLM\...\{E29A1273-2E7A-40E7-AA63-428A11D59429}) (Version: 2.79.2 - Blender Foundation)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
Core Temp 1.15 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.15 - ALCPU)
EaseUS Partition Master 12.10 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version:  - EaseUS)
Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
EPSON Printer Software (HKLM\...\EPSON Printer and Utilities) (Version:  - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - )
Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
GGPoker (HKLM-x32\...\{2FC54B12-A2E4-438C-8B00-1D7C333BC6DD}) (Version: 1.0.0.60 - NSUS Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.97 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Hetman Partition Recovery 2.8 (HKLM-x32\...\Hetman Partition Recovery) (Version:  - )
Intel(R) Smart Connect Technology (HKLM\...\{D3011052-0DB7-4979-B3AB-7F5FF4070864}) (Version: 5.0.10.2850 - Intel Corporation)
Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
KeePass Password Safe 2.43 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.43 - Dominik Reichl)
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft Office Language Pack 2016  - Spanish/Español (HKLM\...\Office16.OMUI.es-es) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\OneDriveSetup.exe) (Version: 19.152.0927.0012 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Mozilla Firefox 70.0 (x64 en-US) (HKLM\...\Mozilla Firefox 70.0 (x64 en-US)) (Version: 70.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 62.0.3 - Mozilla)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.7.1 - Notepad++ Team)
NVIDIA Controlador de 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Controlador de audio HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 22.0.2 - OBS Project)
Opera Stable 64.0.3417.92 (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\Opera 64.0.3417.92) (Version: 64.0.3417.92 - Opera Software)
Oracle VM VirtualBox 6.0.10 (HKLM\...\{6A145EBB-FA61-4F90-BDE1-2308B1C26C0F}) (Version: 6.0.10 - Oracle Corporation)
OStoGO (HKLM-x32\...\{4562754D-0F13-4EBD-9480-323899324E77}) (Version: 1.0.0 - A-DATA)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Panel de control de NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
PokerStars (HKLM-x32\...\PokerStars) (Version:  - PokerStars)
PokerStrategy.com Equilab (HKLM-x32\...\{86D09F48-CDAB-4B4C-8806-F6C16F17935A}) (Version: 1.2.8.0 - PokerStrategy.com)
PokerTracker 4 (remove only) (HKLM-x32\...\PokerTracker4) (Version:  - )
PostgreSQL 9.3  (HKLM\...\PostgreSQL 9.3) (Version: 9.3 - PostgreSQL Global Development Group)
PUSH Entertainment - Video Wallpaper (HKLM\...\Video Wallpaper_is1) (Version: 2.23 - PUSH Entertainment)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.3 beta r3258 - Rainmeter)
Registry Trash Keys Finder (Freeware) (HKLM-x32\...\Registry Trash Keys Finder) (Version: 3.9.4.0 - SNC)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
SD Card Formatter (HKLM-x32\...\{A61131DC-B92D-4AD8-A925-E2D6D5FE217C}) (Version: 5.0.1 - SD Association)
Signal 1.24.1 (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 1.24.1 - Open Whisper Systems)
Signal 1.27.2 (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\{7d96caee-06e6-597c-9f2f-c7bb2e0948b4}) (Version: 1.27.2 - Open Whisper Systems)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Streamlabs OBS 0.18.5 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.18.5 - General Workings, Inc.)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.7.1965 - TeamViewer)
Telegram Desktop version 1.8.2 (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.8.2 - Telegram FZ-LLC)
TeraCopy version 3.26 (HKLM\...\TeraCopy_is1) (Version: 3.26 - Code Sector)
Update for Skype for Business 2016 (KB4484102) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{BE84972D-5F00-49E3-8F22-316ACAB0E6FF}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB4484102) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{BE84972D-5F00-49E3-8F22-316ACAB0E6FF}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB4484102) 64-Bit Edition (HKLM\...\{90160000-012B-0409-1000-0000000FF1CE}_Office16.PROPLUS_{BE84972D-5F00-49E3-8F22-316ACAB0E6FF}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB4484102) 64-Bit Edition (HKLM\...\{90160000-012B-0C0A-1000-0000000FF1CE}_Office16.OMUI.es-es_{BE84972D-5F00-49E3-8F22-316ACAB0E6FF}) (Version:  - Microsoft)
USB Disk Storage Format Tool 6.0 (HKLM\...\USB Disk Storage Format Tool_is1) (Version:  - Authorsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Winaero Tweaker (HKLM\...\Winaero Tweaker_is1) (Version: 0.14.0.0 - Winaero)
Windows Deployment Tools (HKLM-x32\...\{C4443D4E-AC00-CF0E-9519-C9111E83ADBB}) (Version: 10.1.17134.1 - Microsoft)
Windows PE x86 x64 (HKLM-x32\...\{346FC109-E9A8-2224-5726-843C7283E4F7}) (Version: 10.1.17134.1 - Microsoft)
Windows PE x86 x64 wims (HKLM-x32\...\{64FF0563-D6F1-C8E4-56F8-F678D1158C58}) (Version: 10.1.17134.1 - Microsoft)
Winner Poker (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\winnerpoker) (Version: 1.1.1.35 - Winner Poker)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
XMind 8 Update 8 (v3.7.8) (HKLM-x32\...\XMind_is1) (Version: 3.7.8.201807240049 - XMind Ltd.)
Zoom (HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\ZoomUMX) (Version: 4.5 - Zoom Video Communications, Inc.)

Packages:
=========
Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2019-10-16] (Adobe Systems Incorporated)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc [2019-10-16] (Adobe Systems Incorporated)
Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-03-23] (Microsoft Corporation)
Correo y Calendario -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-25] (Microsoft Corporation) [MS Ad]
EdgeDevtoolsPlugin -> C:\WINDOWS\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2019-10-29] (Microsoft Corporation)
Meteor Showers -> C:\Program Files\WindowsApps\Microsoft.MeteorShowers_1.0.0.0_neutral__8wekyb3d8bbwe [2019-06-24] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-11] (Microsoft Studios) [MS Ad]
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_2.2.16.0_x64__nfy108tqq3p12 [2019-09-25] (Thumbmunkeys Ltd) [MS Ad]
Speedtest by Ookla -> C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.8.36.0_x64__43tkc6nmykmb6 [2019-11-03] (Ookla)
TV Player Online -> C:\Program Files\WindowsApps\11865smurz.TVPlayerOnline_1.0.9.0_x64__gxfbnsvapweh2 [2019-05-04] (smurz) [MS Ad]
Twitch Player: Live Game Streaming -> C:\Program Files\WindowsApps\42731GoodMediaGroup.VidsTokforTwitchGamingLiveStre_1.1.8.0_x64__wzw6dymc89v9p [2019-06-18] (Good Media Group) [MS Ad]
YouTube v2.0 -> C:\Program Files\WindowsApps\4041090013366.YouTubev2.0_1.0.19.0_x64__k5n3qe4w2etea [2019-10-29] (CopyPaste) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002_Classes\CLSID\{04271989-C4D2-7DB2-AD74-23662A807611} -> [UPONIC] => C:\Users\CARLOS-PC\UPONIC [2019-10-07 07:51]
CustomCLSID: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002_Classes\CLSID\{04271989-C4D2-B344-C5CB-7A61879C1827} -> [OneDrive - UPONIC] => C:\Users\CARLOS-PC\OneDrive - UPONIC [2019-05-04 20:28]
CustomCLSID: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-8E1DDC2BF542} -> [Creative Cloud Files] => C:\Users\CARLOS-PC\Creative Cloud Files [2019-10-16 23:21]
CustomCLSID: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2018-10-14] (Notepad++ -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ContextMenuHandlers1: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ContextMenuHandlers2: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\CARLOS-PC\AppData\Local\MEGAsync\ShellExtX64.dll [2019-09-18] (Mega Limited -> )
ContextMenuHandlers4: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-11] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => C:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-10-23 08:43 - 2019-10-23 08:43 - 000010240 _____ () [File not signed] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\acrotray.esp
2019-03-22 20:09 - 2017-05-08 22:59 - 000178688 _____ () [File not signed] C:\Program Files\PostgreSQL\9.3\bin\LIBPQ.dll
2019-03-22 20:10 - 2016-08-02 04:40 - 002257408 _____ () [File not signed] C:\Program Files\PostgreSQL\9.3\bin\libxml2.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 000013824 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp
2019-03-22 20:09 - 2011-01-10 09:16 - 000240862 _____ (Free Software Foundation) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\libintl-8.dll
2019-03-26 02:35 - 2019-02-21 10:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2019-10-29 21:36 - 2016-11-14 03:45 - 001408200 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2019-03-22 20:10 - 2017-01-31 00:35 - 001662976 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\LIBEAY32.dll
2019-03-22 20:10 - 2017-01-31 00:35 - 000353280 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\SSLEAY32.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\sharepoint.com -> hxxps://uponic-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 01:31 - 2019-10-07 06:47 - 000001934 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1                   activate.adobe.com
127.0.0.1                   practivate.adobe.com
127.0.0.1                   ereg.adobe.com
127.0.0.1                   activate.wip3.adobe.com
127.0.0.1 		    		wip3.adobe.com
127.0.0.1                   3dns-3.adobe.com
127.0.0.1                   3dns-2.adobe.com
127.0.0.1                   adobe-dns.adobe.com
127.0.0.1                   adobe-dns-2.adobe.com
127.0.0.1                   adobe-dns-3.adobe.com
127.0.0.1                   ereg.wip3.adobe.com
127.0.0.1                   activate-sea.adobe.com
127.0.0.1                   wwis-dubc1-vip60.adobe.com
127.0.0.1                   activate-sjc0.adobe.com
127.0.0.1                   hl2rcv.adobe.com
127.0.0.1                   na2m-pr.licenses.adobe.com
127.0.0.1                   na4r.services.adobe.com
127.0.0.1                   ims-na1-prprod.adobelogin.com
127.0.0.1                   na1r.services.adobe.com
127.0.0.1                   hlrcv.stage.adobe.com
127.0.0.1                   lmlicenses.wip4.adobe.com
127.0.0.1                   lm.licenses.adobe.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\CARLOS-PC\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img13.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "Open-Shell Start Menu"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "EaseUS EPM Tray Agent"
HKLM\...\StartupApproved\Run32: => "KeePass 2 PreLoad"
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\StartupApproved\Run: => "Lync"
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\StartupApproved\Run: => "Driver Updater"
HKU\S-1-5-21-2882685397-3555233731-4115562749-1002\...\StartupApproved\Run: => "CCleaner"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{731A466B-3A03-4D17-9237-9AA48907A769}] => (Allow) D:\Portables\Rufus\rufus-3.3p.exe (Akeo Consulting -> Akeo Consulting)
FirewallRules: [{672E6088-58BB-41D8-A7A7-5299CCAB16AB}] => (Allow) D:\Portables\Rufus\rufus-3.3p.exe (Akeo Consulting -> Akeo Consulting)
FirewallRules: [{3C6DB419-50ED-4F7C-9715-19EC2D0A6D9C}] => (Allow) D:\Portables\Rufus\rufus-3.3p.exe (Akeo Consulting -> Akeo Consulting)
FirewallRules: [{3B56C224-E0E3-43F3-A0F9-EB730EDB4396}] => (Allow) D:\Portables\Rufus\rufus-3.3p.exe (Akeo Consulting -> Akeo Consulting)
FirewallRules: [{23C31FD6-2EF9-4207-8D17-563E4690B4C0}] => (Allow) D:\PROGRAMAS\Victoria4.3\victoria468\Victoria.exe (Victoria Software) [File not signed]
FirewallRules: [{9FCA7CED-AB2A-4A67-A832-07567EDED131}] => (Allow) D:\PROGRAMAS\Victoria4.3\victoria468\Victoria.exe (Victoria Software) [File not signed]
FirewallRules: [{BFBF68C2-F0F1-4D20-B05A-094CCDF217EF}] => (Allow) D:\PROGRAMAS\Victoria4.3\victoria468\Victoria.exe (Victoria Software) [File not signed]
FirewallRules: [{6AEEE909-4E7A-4568-9228-E88524274C20}] => (Allow) D:\PROGRAMAS\Victoria4.3\victoria468\Victoria.exe (Victoria Software) [File not signed]
FirewallRules: [UDP Query User{952035FA-92EC-4A24-85BD-145C428CA7A1}C:\program files\microsoft office\office16\lync.exe] => (Block) C:\program files\microsoft office\office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{03CB7A1E-4BF0-4C54-B68F-51DBCD096CCE}C:\program files\microsoft office\office16\lync.exe] => (Block) C:\program files\microsoft office\office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5B8F2290-9449-42AF-9F9F-779437046F9C}] => (Allow) C:\Users\CARLOS-PC\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{F3D6F4FA-922D-48D0-95B3-3DC7C2F06630}] => (Allow) C:\Users\CARLOS-PC\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5EBDE1FC-CE8D-4A9B-B9A9-AB36E1A500F8}] => (Allow) C:\Users\CARLOS-PC\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{62AC81D2-24E9-4EE0-8760-77BAEEDD29C5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D3D0656E-8D29-45DD-BA5F-92E329A138BF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{09638A82-B646-41B8-B5FB-4728A39F804B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{EDB4F778-3609-4C22-BD22-7D72BD90C08E}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{6AE74B8A-C09F-4F9B-AB4E-41EB5D5A94C3}] => (Block) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [{67B2A764-3A94-4DB9-ACF1-DC2FEC8CFC39}] => (Block) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [UDP Query User{C3F3AA53-E663-4A62-A093-5AF828B78DBC}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [TCP Query User{38C13D9B-5FF6-4577-AA80-D3FB371C1F72}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [{7AA507B9-7A44-4E7C-A412-191171F36169}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C0B34191-128E-4F62-9A99-B61B2EF4EB2F}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{678F3A77-FDB2-411A-BBB4-6C522E0F05E9}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DF68088A-2FFF-4703-9EE1-672443783D7E}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [{85E143AA-987C-48F2-BD01-35501D9317DF}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTracker4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{42037E13-E516-4921-9A73-EDB1103BF967}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTracker4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{0B47B47E-AF43-4684-929E-E3A31FEC7DF4}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTracker4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{B3377F9F-F1D3-48B1-97B6-1AE3B5EBCFE3}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTracker4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{FF83257B-B35D-4E2B-8287-F94ED6589EF4}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerHud4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{D3D611D6-5F68-4F01-8F9F-E9911988612A}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerHud4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{E3BDE53F-325E-4D8E-A0CB-6437E41504F7}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerHud4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{F2578D5D-A081-4E4D-A3A7-E7E94A6B671E}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerHud4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{6EC14F66-F2A6-47B3-A8BC-9310EE18B274}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerWeb4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{58FF7F98-3643-4617-B55A-784DABAE72A1}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerWeb4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{C3FD7D08-CC3B-4983-85C1-DAA8700D12FC}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerWeb4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{D9D2D113-522C-457B-9FA9-8BA16E1BE13C}] => (Allow) C:\Program Files (x86)\PokerTracker 4\PokerTrackerWeb4.exe (Max Value Software, LLC. -> PokerTracker Software, LLC.)
FirewallRules: [{A43E5794-7DE3-40C4-91E3-58EC19DAA5E3}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\postgres.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{C631D194-51FB-4850-8A70-ECC5751F6491}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\postgres.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{9C3C8403-D4CC-4F8F-AF4C-F43ADBABBC61}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\postgres.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{A89824C1-8C69-43DA-9AE7-B4B68A47BB03}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\postgres.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{349868AD-4FEC-4D1E-8AC5-984A2E370741}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{7C0EFCB0-6D72-49EF-B854-8E8BAF6135E4}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{3AC7DF5B-673A-41FD-ABE2-FAF2EFADD826}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{17EF6C85-0B69-4C24-B5EB-00666DBBA77C}] => (Allow) C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe (PostgreSQL Global Development Group) [File not signed]
FirewallRules: [{09694D3D-C77F-4EC9-A37E-146ED42571AB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2210FA05-0E70-421A-917C-008CCDD0C971}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3011DCB5-02E7-479C-84C3-885E183F90AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{86679529-92B0-4FE7-AF1E-4DA89F8FDADC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{84DFCDA7-D9C8-4359-94B9-D506B105B195}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0CB5ACF3-C59B-4D64-8E1A-669533025EFC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{07C6E93C-A41B-40B8-9B45-089246F2112B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2C5A645E-D916-4CBD-921B-581965AE35B2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.114.475.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{20F30C46-468B-4D43-A2E9-87D7B5082F08}C:\program files\oracle\virtualbox\virtualboxvm.exe] => (Allow) C:\program files\oracle\virtualbox\virtualboxvm.exe (Oracle Corporation -> Oracle Corporation)
FirewallRules: [UDP Query User{C81E1193-0FB6-4AF9-BB4B-87E525F8F4C5}C:\program files\oracle\virtualbox\virtualboxvm.exe] => (Allow) C:\program files\oracle\virtualbox\virtualboxvm.exe (Oracle Corporation -> Oracle Corporation)
FirewallRules: [{73935F3F-E795-4CCE-AF61-BCCC54903F01}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7FD9413E-6497-4A5A-B5C4-9E428F9483EE}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9292D32A-1599-4A18-8D79-9316F5839D11}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{E95A1CE6-EEE2-4135-9B6D-4EEFDA098AD1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{4FFCA829-52FF-423C-9936-FE3778FFCE5A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{CFED998A-E7C8-4210-A998-78321C7AFA6B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{9217D441-DC11-4D09-A9DF-32CCE6631B60}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

01-11-2019 09:36:40 Installed DriversCloud.com (64 bits)
16-11-2019 00:42:46 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (11/21/2019 11:58:25 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3592,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (11/21/2019 11:43:26 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7760,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (11/21/2019 11:27:33 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1936,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (11/21/2019 11:15:56 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3668,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (11/21/2019 10:49:35 AM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: Se agotó el tiempo de espera al inicio del servidor

Error: (11/21/2019 10:49:34 AM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: 2019-11-21 10:49:34 CST FATAL:  el archivo de bloqueo �postmaster.pid� ya existe
2019-11-21 10:49:34 CST HINT:  �Hay otro postmaster (PID 4400) corriendo en el directorio de datos �C:/Program Files/PostgreSQL/9.3/data�?

Error: (11/21/2019 10:40:56 AM) (Source: PostgreSQL) (EventID: 0) (User: )
Description: Se agotó el tiempo de espera al inicio del servidor

Error: (11/16/2019 04:48:22 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5180,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


System errors:
=============
Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Disco virtual terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio.

Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Adobe Genuine Monitor Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio.

Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Adobe Genuine Software Integrity Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio AdobeUpdateService se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Adobe Acrobat Update Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) HD Graphics Control Panel Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (11/21/2019 11:49:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio NVIDIA Stereoscopic 3D Driver Service se terminó de manera inesperada. Esto ha sucedido 1 veces.


Windows Defender:
===================================
Date: 2019-11-21 11:36:04.146
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {186E6E58-29D8-475C-8BCC-71FA2BD0F885}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-09-04 19:21:06.201
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.B!ml&threatid=2147735505&enterprise=0
Nombre: Trojan:Win32/Wacatac.B!ml
Id.: 2147735505
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: containerfile:_C:\Users\CARLOS-PC\Downloads\Adobe InDesign CC 20181 Portable.iso; file:_C:\Users\CARLOS-PC\Downloads\Adobe InDesign CC 20181 Portable.iso->Adobe InDesign CC 20181 Portable.exe; webfile:_C:\Users\CARLOS-PC\Downloads\Adobe InDesign CC 20181 Portable.iso|http://dhr2qa7vmdkjg.cloudfront.net/187b4b33dc1720c34757c6e00c045d5bb4fa1d607bbacecccd3072d749fbb685/|pid:10064,ProcessStart:132121166014530222
Origen de detección: Internet
Tipo de detección: FastPath
Origen de detección: Descargas y datos adjuntos
Usuario: PC-CARLOS\CARLOS-PC
Nombre de proceso: Unknown
Versión de inteligencia de seguridad: AV: 1.301.549.0, AS: 1.301.549.0, NIS: 1.301.549.0
Versión de motor: AM: 1.1.16300.1, NIS: 1.1.16300.1

Date: 2019-09-04 19:20:41.199
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para más información, consulta lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.B!ml&threatid=2147735505&enterprise=0
Nombre: Trojan:Win32/Wacatac.B!ml
Id.: 2147735505
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: containerfile:_C:\Users\CARLOS-PC\Downloads\Adobe InDesign CC 20181 Portable.iso; file:_C:\Users\CARLOS-PC\Downloads\Adobe InDesign CC 20181 Portable.iso->Adobe InDesign CC 20181 Portable.exe; webfile:_C:\Users\CARLOS-PC\Downloads\Adobe InDesign CC 20181 Portable.iso|http://dhr2qa7vmdkjg.cloudfront.net/187b4b33dc1720c34757c6e00c045d5bb4fa1d607bbacecccd3072d749fbb685/|pid:10064,ProcessStart:132121166014530222
Origen de detección: Internet
Tipo de detección: FastPath
Origen de detección: Descargas y datos adjuntos
Usuario: PC-CARLOS\CARLOS-PC
Nombre de proceso: Unknown
Versión de inteligencia de seguridad: AV: 1.301.549.0, AS: 1.301.549.0, NIS: 1.301.549.0
Versión de motor: AM: 1.1.16300.1, NIS: 1.1.16300.1

Date: 2019-11-16 00:00:16.036
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.305.2207.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor: 
Versión anterior del motor: 1.1.16500.1
Código de error: 0x80240016
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico. 

Date: 2019-11-01 01:56:17.388
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.301.549.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 1.1.16300.1
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-11-01 01:56:17.387
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.301.549.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 1.1.16300.1
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-11-01 01:56:17.386
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.301.549.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 1.1.16300.1
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-11-01 01:56:17.373
Description: 
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad: 
Versión anterior de inteligencia de seguridad: 1.301.549.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión actual del motor: 
Versión anterior del motor: 1.1.16300.1
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

CodeIntegrity:
===================================

Date: 2019-11-21 11:53:25.630
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-11-21 11:53:25.615
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-11-21 11:53:25.484
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-11-21 11:52:56.299
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-11-21 11:52:56.281
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-11-21 11:52:56.262
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-11-21 11:52:56.242
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-11-21 11:52:56.221
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. P1.40 07/12/2013
Motherboard: ASRock H61M-VG4
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz
Percentage of memory in use: 41%
Total physical RAM: 8082.32 MB
Available physical RAM: 4690.89 MB
Total Virtual: 12946.32 MB
Available Virtual: 8159.27 MB

==================== Drives ================================

Drive c: (PRINCIPAL) (Fixed) (Total:456 GB) (Free:327.82 GB) NTFS
Drive d: (DATOS) (Fixed) (Total:474.47 GB) (Free:396.55 GB) NTFS
Drive e: () (Fixed) (Total:235.2 GB) (Free:166.67 GB) NTFS
Drive f: (CMM2) (Fixed) (Total:105.63 GB) (Free:58.65 GB) NTFS
Drive i: (Linux) (Fixed) (Total:123.86 GB) (Free:123.61 GB) NTFS

\\?\Volume{751bf3c8-255d-4471-af2a-b6bbd382ab09}\ (Recuperación) (Fixed) (Total:0.44 GB) (Free:0.12 GB) NTFS
\\?\Volume{1a757d22-5a10-47c3-9425-fbf843c74398}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
\\?\Volume{bd753abc-f23f-4507-8a20-f1a180918921}\ (Recuperación) (Fixed) (Total:0.44 GB) (Free:0.12 GB) NTFS
\\?\Volume{5d4040d2-0c90-48f2-85c0-c2b71e52c013}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\\?\Volume{62156262-b1da-44a8-bd28-0bb4d9cb0802}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{3a050261-e3aa-44c9-b0f7-b133d08b4dee}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 92352768)

Partition: GPT.

==========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: 94336703)

Partition: GPT.

==================== End of Addition.txt =======================

Nicaindio · 22 Noviembre, 2019 01:49

Hola. También actualicé Windows y la compu se reinició varias veces. Parece que ahora la siento un poco más rápida, pero esperaré por si hay problemas.

Gracias, y saludos!

JavierHF · 25 Noviembre, 2019 00:07

Hola.

Si haces pasos por tu cuenta que nadie te pidió, los informes que has puesto de FRST y Addition YA NO nos valen, al haber actualizado Windows los valores del registro/claves y demas parametros-valores son diferentes y YA no nos sirven para confeccionar las pasos del script personalizado que te hubiéramos dado.

Nos comentas como sigue tu problema inicial para darte los últimos pasos de eliminación de las herramientas usadas.

Saludos.

Nicaindio · 27 Noviembre, 2019 02:23

Hola. No he hecho pasos diferentes. Lo que informé es que después de haber hecho los pasos también se había actualizado el Windows, Así que en el reinicio también se actualizó.

Pregunto: ¿debo hacer los mismos pasos de nuevo?

Hasta el momento la compu anda bien, una vez se desconectó del internet, pero no pude ver si era el modem o algún corte de la señal, dado que se encuentra en un cuarto diferente al que no podía entrar.

saludos!

JavierHF · 27 Noviembre, 2019 10:39

Hola.

Esto fue lo que tu dijiste :

Perdona… pero NO es lo mismo decir que “También actualicé Windows” a decir que “también se había actualizado el Windows”.

Que se actualice Windows el solito y sin más remedio es inevitable, pero SI tu decides hacerlo por TU cuenta(que es lo que expresa o da a entender tu primer comentario) SI es evitable.

Dicho esto, el resultado de la actualizacion que te hizo windows, que por lo que tu dijiste “y la compu se reinició varias veces” es una actualización MAYOR, desajusta absolutamente el contenido de los informes que nos habías dado de FRST y Addition.

Por lo tanto necesitaría otros informes nuevos-frescos para poder valorarlos y darle nuevas instrucciones de ser necesarias.

Saludos.

Nicaindio · 29 Noviembre, 2019 15:09

De acuerdo. Haré de nuevo los pasos indicados y enviaré el contenido de los informes de cada programa indicado.

Gracias y saludos!

Nicaindio · 2 Marzo, 2020 06:56

No pude aplicar las recomendaciones porque la compu ya no me inició. Cuando le presiono el botón encendido se escucha que funciona el ventilador y a los segundos (unos 10) se reinicia. Limpié el ventilador y cambié la pasta térmica, así también quité la tarjeta gráfica y tarjeta de red. Ahora tengo una conexión vía USB. Limpié las memorias y las probé independiente una y otra, sólo una y sin ellas y el resultado es el mismo.

Así que me quedé varado sin poder continuar. Sólo queda llevar a un técnico?

JavierHF · 2 Marzo, 2020 12:45

Hola.

Veamos… el problema que planteas NADA tiene que ver con el problema que planteaste inicialmente el 1 de Noviembre del año pasado(2019).

Tu ultima respuesta en este tema fue el 29 de noviembre de 2019, es decir hace TRES MESES y MEDIO.

Y en ella nos indicabas :

Y estábamos todavía esperando que NOS pongas los informes que habías prometido.

Lamentablemente ahora tendrás que llevar tu maquina a un servicio técnico, desde nuestro Foro NO podemos resolver el problema de una maquina en esas condiciones.

Damos este tema por TERMINADO.

Saludos.