Posible malware Explorador de archivos a veces muestra las miniaturas como si fuesen archivo desconocido

Hola @Cristian_Alejandro

Que versión de Ccleaner tienes instalada?

Me imagino que te refieres a FRST, En la Guia que te deje de Como Pegar Reportes en el Foro? menciona claramente:

En todos los Métodos:

En algunas ocasiones los reportes son extremadamente largos, ya sea que intente pegarlos o adjuntarlos, Una ventana le advertirá "Lo siento, el archivo que esta intentando cargar es demasiado grande"

En ese caso solo presione "OK"


Divida el texto del archivo que necesita subir en dos partes e intente nuevamente en dos post.

Salu2

La version de Cc Cleaner es 5.56.7144

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15.04.2019 01
Ran by Cristian (administrator) on DELL-5567 (16-04-2019 22:11:59)
Running from C:\Users\Cristian\Downloads
Loaded Profiles: Cristian (Available Profiles: Cristian)
Platform: Windows 10 Home Single Language Version 1809 17763.437 (X64) Language: Español (México)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0335202.inf_amd64_a8ecda95d87b1c73\B334840\atiesrxx.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxCUIService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHDCPSvc.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(Nitro Software, Inc. -> ) C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe
(Nitro Software, Inc. -> Nitro Software, Inc.) C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1903.4-0\MsMpEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHeciSvc.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\pcdrwi.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0335202.inf_amd64_a8ecda95d87b1c73\B334840\atieclxx.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxEM.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Cristian\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Tweaking LLC -> Tweaking.com) C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\QtWebEngineProcess.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\atiw.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [177928 2019-03-14] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9269088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506144 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [1220416 2018-03-06] (Waves Inc -> Waves Audio Ltd.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [438888 2014-01-15] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [4426560 2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [PowerDVD13Agent] => C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe [513048 2013-03-20] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\...\Run: [SideSync] => C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe [12476064 2019-01-11] (Samsung Electronics CO., LTD. -> )
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\...\MountPoints2: {35d3d4ce-42d4-11e9-b151-18dbf221996b} - "E:\HiSuiteDownLoader.exe" 
HKLM\...\Drivers32: [msacm.l3codecp] => C:\Windows\SysWOW64\l3codecp.acm [189952 2018-09-15] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-10] (Google LLC -> Google Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{a9777bd1-e21d-497e-87f9-8dca1477b3ed}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: rqiushf8.default-1554757225691
FF ProfilePath: C:\Users\Cristian\AppData\Roaming\Mozilla\Firefox\Profiles\rqiushf8.default-1554757225691 [2019-04-16]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 10\npnitromozilla.dll [2016-07-22] (Nitro Software, Inc. -> Nitro PDF)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-04-03] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-04-03] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-03-25] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com.ec/
CHR Profile: C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default [2019-04-16]
CHR Extension: (Presentaciones) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-04-03]
CHR Extension: (Documentos) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-04-03]
CHR Extension: (Google Drive) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-04-03]
CHR Extension: (Video Downloader professional) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\bacakpdjpomjaelpkpkabmedhkoongbi [2019-04-04]
CHR Extension: (YouTube) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-04-03]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-04-04]
CHR Extension: (Adobe Acrobat) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-04-10]
CHR Extension: (Hojas de cálculo) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-04-03]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-04-03]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-04-03]
CHR Extension: (Gmail) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-03]
CHR Extension: (Chrome Media Router) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-03]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\Windows\System32\DriverStore\FileRepository\u0335202.inf_amd64_a8ecda95d87b1c73\B334840\atiesrxx.exe [516016 2018-11-04] (Advanced Micro Devices, Inc. -> AMD)
R2 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2013-03-20] (CyberLink Corp. -> CyberLink)
R2 CyberLink PowerDVD 13 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [323336 2013-03-20] (CyberLink Corp. -> CyberLink)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-03-26] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-03-26] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [209392 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3363824 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [218096 2019-02-28] (Dell Inc -> Dell Inc.)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe [1038144 2019-04-16] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2359312 2019-03-14] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2359312 2019-03-14] (ESET, spol. s r.o. -> ESET)
R2 esifsvc; C:\Windows\System32\Intel\DPTF\esif_uf.exe [1705040 2017-11-21] (Intel Corporation -> Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [17976 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\Windows\system32\ibtsiva.exe [190208 2016-11-08] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [742704 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [668472 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [213648 2017-11-09] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2017-03-21] (Intel Corporation-Wireless Connectivity Solutions -> )
R2 NitroDriverReadSpool10; C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe [327320 2016-07-22] (Nitro Software, Inc. -> Nitro Software, Inc.)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe [417944 2016-07-22] (Nitro Software, Inc. -> )
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [268128 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39384 2019-03-20] (Dell Inc. -> Dell Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [882496 2018-03-06] (Waves Inc -> Waves Audio Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\NisSrv.exe [3856504 2019-04-08] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MsMpEng.exe [113992 2019-04-08] (Microsoft Corporation -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3750304 2017-03-21] (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation)
S3 Browser; %SystemRoot%\System32\browser.dll [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\u0335202.inf_amd64_a8ecda95d87b1c73\B334840\atikmdag.sys [47511984 2018-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DriverStore\FileRepository\u0335202.inf_amd64_a8ecda95d87b1c73\B334840\atikmpag.sys [597936 2018-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [313112 2019-03-14] (Bluestack Systems, Inc. -> Bluestack System Inc. )
R3 DDDriver; C:\Windows\System32\drivers\dddriver64Dcsa.sys [40824 2019-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\Windows\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [31560 2016-12-03] (WDKTestCert Andy_Chen6,131219483243550933 -> OSR Open Systems Resources, Inc.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\Windows\System32\drivers\dptf_acpi.sys [74144 2017-11-21] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [69536 2017-11-21] (Intel Corporation -> Intel Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [145600 2019-03-14] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15800 2019-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [188240 2019-03-14] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [110000 2019-03-14] (ESET, spol. s r.o. -> ESET)
R3 esif_lf; C:\Windows\System32\drivers\esif_lf.sys [382880 2017-11-21] (Intel Corporation -> Intel Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-04-11] (Malwarebytes Corporation -> Malwarebytes)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [356608 2016-11-08] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [198512 2019-04-11] (Malwarebytes Corporation -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [127136 2019-04-16] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73912 2019-04-16] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [274416 2019-04-16] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [114040 2019-04-16] (Malwarebytes Corporation -> Malwarebytes)
R3 Netwtw04; C:\Windows\System32\drivers\Netwtw04.sys [7708160 2018-09-15] (Microsoft Windows -> Intel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [955392 2016-12-07] (Realtek Semiconductor Corp. -> Realtek )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [436224 2016-11-12] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver; C:\Windows\System32\Drivers\ss_conn_usb_driver.sys [43648 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [343520 2019-04-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [68576 2019-04-08] (Microsoft Windows -> Microsoft Corporation)
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [130320 2013-03-19] (CyberLink Corp. -> CyberLink Corp.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-16 22:11 - 2019-04-16 22:13 - 000026918 _____ C:\Users\Cristian\Downloads\FRST.txt
2019-04-16 22:11 - 2019-04-16 22:11 - 000000000 ____D C:\FRST
2019-04-16 22:08 - 2019-04-16 22:09 - 002434048 _____ (Farbar) C:\Users\Cristian\Downloads\FRST64.exe
2019-04-16 13:20 - 2019-04-16 13:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2019-04-16 12:14 - 2019-04-16 12:14 - 000073912 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-04-16 12:13 - 2019-04-16 12:13 - 000274416 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-04-16 12:13 - 2019-04-16 12:13 - 000127136 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-04-16 12:13 - 2019-04-16 12:13 - 000114040 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-04-15 21:15 - 2019-04-15 21:15 - 000003650 _____ C:\Windows\System32\Tasks\CreateExplorerShellUnelevatedTask
2019-04-15 20:18 - 2019-04-15 20:18 - 000000207 _____ C:\Windows\tweaking.com-regbackup-DELL-5567-Windows-10-Home-Single-Language-(64-bit).dat
2019-04-15 20:17 - 2019-04-15 20:17 - 000002260 _____ C:\Users\Cristian\Desktop\Tweaking.com - Windows Repair.lnk
2019-04-15 20:17 - 2019-04-15 20:17 - 000000000 ____D C:\RegBackup
2019-04-15 20:16 - 2019-04-15 20:16 - 000003776 _____ C:\Windows\System32\Tasks\Tweaking.com - Windows Repair Tray Icon
2019-04-15 20:16 - 2019-04-15 20:16 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2019-04-15 20:15 - 2019-04-15 20:17 - 000295297 _____ C:\Windows\Tweaking.com - Windows Repair Setup Log.txt
2019-04-15 20:15 - 2019-04-15 20:15 - 000000000 ____D C:\Program Files (x86)\Tweaking.com
2019-04-15 20:04 - 2019-04-15 20:13 - 039161480 _____ (Tweaking.com) C:\Users\Cristian\Downloads\tweaking.com_windows_repair_aio_setup.exe
2019-04-14 22:35 - 2019-04-14 22:35 - 000000000 ____D C:\ProgramData\Tencent
2019-04-14 22:02 - 2019-04-15 11:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software
2019-04-14 21:56 - 2019-04-15 11:02 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\Tencent
2019-04-14 21:56 - 2019-04-14 21:56 - 000000000 ____D C:\Temp
2019-04-14 20:25 - 2019-04-14 20:25 - 000187529 _____ C:\Users\Cristian\Downloads\Dialnet-ElPrestamoLexicoYSuAdaptacion-6467347.pdf
2019-04-12 12:41 - 2019-04-12 12:41 - 000000165 _____ C:\Users\Cristian\Downloads\brillo.pptx
2019-04-12 12:39 - 2019-04-12 12:40 - 000494137 _____ C:\Users\Cristian\Downloads\sociolinguistca.pptx
2019-04-11 09:26 - 2019-04-11 09:26 - 000198512 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-04-11 09:25 - 2019-04-11 09:25 - 000003936 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-04-11 09:25 - 2019-04-11 09:25 - 000002882 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-04-11 09:25 - 2019-04-11 09:25 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-04-11 09:25 - 2019-04-11 09:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-04-11 09:25 - 2019-04-11 09:25 - 000000000 ____D C:\Program Files\CCleaner
2019-04-11 09:21 - 2019-04-12 07:35 - 000000000 ____D C:\AdwCleaner
2019-04-11 09:21 - 2019-04-11 09:21 - 000000000 ____D C:\Users\Cristian\AppData\Local\mbam
2019-04-11 09:20 - 2019-04-11 09:26 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-04-11 09:20 - 2019-04-11 09:20 - 000001920 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-04-11 09:20 - 2019-04-11 09:20 - 000000000 ____D C:\Users\Cristian\AppData\Local\mbamtray
2019-04-11 09:20 - 2019-04-11 09:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-04-11 09:20 - 2019-04-11 09:20 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-04-11 09:20 - 2019-04-11 09:20 - 000000000 ____D C:\Program Files\Malwarebytes
2019-04-11 09:20 - 2019-02-01 11:20 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2019-04-11 08:41 - 2019-04-11 08:41 - 019025408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 006071296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 005436904 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 003551112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 000340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 000263600 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-04-11 08:40 - 2019-04-11 08:41 - 020815360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 026810368 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 023440896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 012843520 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 012139008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 009682744 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-04-11 08:40 - 2019-04-11 08:40 - 007877120 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 007645608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 006544824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 004660224 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 004588536 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2019-04-11 08:40 - 2019-04-11 08:40 - 003904512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 003657728 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 003384832 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 002925880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 002720256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 002469376 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 002438368 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 002189312 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 002022304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001886208 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001830200 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001701888 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001672704 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001671352 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001605120 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001590064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001496576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001478968 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001467344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001387520 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001309696 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001256448 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001253688 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-04-11 08:40 - 2019-04-11 08:40 - 001221944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001072640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001054200 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-04-11 08:40 - 2019-04-11 08:40 - 001044280 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-04-11 08:40 - 2019-04-11 08:40 - 001019392 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000912384 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000865784 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000793832 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000725928 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000653040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000649064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\SharedRealitySvc.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000604008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000543744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 000532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000531968 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000474928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-04-11 08:40 - 2019-04-11 08:40 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000346624 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000301568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 000273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000183296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000143872 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 000133120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000095544 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000090424 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2019-04-11 08:28 - 2019-04-11 08:27 - 000835480 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-04-11 08:28 - 2019-04-11 08:27 - 000179608 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-04-11 06:17 - 2019-04-11 06:17 - 001101272 _____ C:\Users\Cristian\Desktop\La praxis.pptx
2019-04-11 04:09 - 2019-04-11 04:09 - 000759485 _____ C:\Users\Cristian\Downloads\La praxis.pptx
2019-04-10 14:26 - 2019-04-11 08:50 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-04-10 12:20 - 2019-04-10 12:21 - 000938977 _____ C:\Users\Cristian\Downloads\DISORTOGRAFÍA.pptx
2019-04-10 12:20 - 2019-04-10 12:20 - 003086273 _____ C:\Users\Cristian\Downloads\Presentación1.pptx
2019-04-09 23:19 - 2019-04-09 23:19 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-04-09 09:24 - 2019-04-09 09:24 - 000000000 ____D C:\Program Files\EnigmaSoft
2019-04-08 15:49 - 2019-04-11 08:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-04-08 13:53 - 2019-04-08 13:53 - 007919104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 003421696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2019-04-08 13:53 - 2019-04-08 13:53 - 001521664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 001459080 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 001297120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 001294520 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 001259320 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2019-04-08 13:53 - 2019-04-08 13:53 - 001072424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000897536 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000815616 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000684032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapi.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000454144 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000370688 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000331776 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapibase.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000309760 _____ (Microsoft Corporation) C:\Windows\system32\fveui.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfts.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 008898048 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 004527624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 003690496 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 003656192 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 002942464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 002275896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 002127360 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 001760768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 001506304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 001370624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 001064448 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 001047552 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 001026792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000964096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000828728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 000793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000772608 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000762880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000731648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000730112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000712192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000701440 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000528384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000460800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000424960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\FSClient.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000176640 _____ (Microsoft Corporation) C:\Windows\system32\spacebridge.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredui.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BitLockerCsp.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000097280 _____ (Microsoft Corporation) C:\Windows\system32\EduPrintProv.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 000096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvsetup.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 000059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\RDSPnf.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntlanman.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\nshhttp.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscapi.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfproc.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshhttp.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dataclen.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcPing.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscdll.dll
2019-04-08 13:51 - 2019-04-08 13:52 - 005205448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 015223296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 006440960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 006309040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 005765120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 003496448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AI.MachineLearning.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 002777224 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 002765312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 002701304 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 002689024 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 002627384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-04-08 13:51 - 2019-04-08 13:51 - 002346496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 002073960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 001994768 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 001860096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 001711104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 001687552 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 001674480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 001615872 ____R (The ICU Project) C:\Windows\SysWOW64\icuin.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 001458056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 001360184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2019-04-08 13:51 - 2019-04-08 13:51 - 001249280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 001155072 ____R (The ICU Project) C:\Windows\SysWOW64\icuuc.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 001001472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000982528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Vpn.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000976896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000948224 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000909840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2019-04-08 13:51 - 2019-04-08 13:51 - 000884224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000882688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2019-04-08 13:51 - 2019-04-08 13:51 - 000845824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000821048 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000769536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-04-08 13:51 - 2019-04-08 13:51 - 000711168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000672256 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000617784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000598544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000551936 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000540448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000414720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2019-04-08 13:51 - 2019-04-08 13:51 - 000408528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000385536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2019-04-08 13:51 - 2019-04-08 13:51 - 000349184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2019-04-08 13:51 - 2019-04-08 13:51 - 000332800 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000324096 _____ (Microsoft Corporation) C:\Windows\system32\sppcommdlg.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000312632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000294912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RADCUI.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerCsp.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000201216 _____ (Microsoft Corporation) C:\Windows\system32\wincredui.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000188416 _____ (Microsoft Corporation) C:\Windows\system32\DMPushRouterCore.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000143880 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000115360 _____ (Microsoft Corporation) C:\Windows\system32\phoneactivate.exe
2019-04-08 13:51 - 2019-04-08 13:51 - 000107832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\perfproc.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmintegrator.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 006925824 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 004704272 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 004304896 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 002871304 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-04-08 13:50 - 2019-04-08 13:50 - 001969464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2019-04-08 13:50 - 2019-04-08 13:50 - 001918464 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 001697752 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-04-08 13:50 - 2019-04-08 13:50 - 001647632 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 001641400 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 001468952 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-04-08 13:50 - 2019-04-08 13:50 - 001395056 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 001342400 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-04-08 13:50 - 2019-04-08 13:50 - 001217024 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 001179680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-04-08 13:50 - 2019-04-08 13:50 - 001145856 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000998712 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2019-04-08 13:50 - 2019-04-08 13:50 - 000981816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys
2019-04-08 13:50 - 2019-04-08 13:50 - 000927232 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000888320 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000865792 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000809784 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000776192 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000737080 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000730936 _____ (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000699392 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Language.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000660480 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000620560 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000609792 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000568632 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000553784 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000506880 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000505344 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000500224 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_PCDisplay.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2019-04-08 13:50 - 2019-04-08 13:50 - 000461112 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000448000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000407552 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000343552 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000322568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000257696 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\SharedPCCSP.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.SharedPC.CredentialProvider.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000177152 _____ (Microsoft Corporation) C:\Windows\system32\LanguageComponentsInstaller.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2019-04-08 13:50 - 2019-04-08 13:50 - 000159272 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2019-04-08 13:50 - 2019-04-08 13:50 - 000147496 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-04-08 13:50 - 2019-04-08 13:50 - 000134456 _____ (Microsoft Corporation) C:\Windows\system32\ImplatSetup.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000071208 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000049664 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2019-04-08 13:50 - 2019-04-08 13:50 - 000039736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WppRecorder.sys
2019-04-08 13:50 - 2019-04-08 13:50 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\RpcPing.exe
2019-04-08 13:50 - 2019-04-08 13:50 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2019-04-08 13:49 - 2019-04-08 13:50 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 017513472 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 007883776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 004866560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AI.MachineLearning.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 003982848 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 003557888 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 003377976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-04-08 13:49 - 2019-04-08 13:49 - 003334144 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 002995712 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 002842624 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 002042368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 001844448 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 001671680 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 001616384 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 001315328 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 001311232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 001259320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2019-04-08 13:49 - 2019-04-08 13:49 - 001213752 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 001058304 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2019-04-08 13:49 - 2019-04-08 13:49 - 001057792 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2019-04-08 13:49 - 2019-04-08 13:49 - 001035776 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 001007616 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000984888 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2019-04-08 13:49 - 2019-04-08 13:49 - 000974352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000926208 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000882176 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2019-04-08 13:49 - 2019-04-08 13:49 - 000877056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.BackgroundMediaPlayback.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000874496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000855040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Playback.MediaPlayer.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000807424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2019-04-08 13:49 - 2019-04-08 13:49 - 000757664 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2019-04-08 13:49 - 2019-04-08 13:49 - 000756736 _____ (Microsoft Corporation) C:\Windows\system32\DolbyHrtfEnc.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000676352 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000651064 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2019-04-08 13:49 - 2019-04-08 13:49 - 000611840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000552448 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000551936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2019-04-08 13:49 - 2019-04-08 13:49 - 000540672 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2019-04-08 13:49 - 2019-04-08 13:49 - 000508208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000485192 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_enclave.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000475648 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000404792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2019-04-08 13:49 - 2019-04-08 13:49 - 000386360 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000343984 _____ (Microsoft Corporation) C:\Windows\system32\AudioSrvPolicyManager.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000283032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtapi.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000263680 _____ (Microsoft Corporation) C:\Windows\system32\WiFiCloudStore.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000255128 _____ (Microsoft Corporation) C:\Windows\system32\SgrmBroker.exe
2019-04-08 13:49 - 2019-04-08 13:49 - 000246784 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000157496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2019-04-08 13:49 - 2019-04-08 13:49 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000121344 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\RjvMDMConfig.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\negoexts.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2019-04-08 13:49 - 2019-04-08 13:49 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\drvsetup.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000097808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2019-04-08 13:49 - 2019-04-08 13:49 - 000079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
2019-04-08 13:49 - 2019-04-08 13:49 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2019-04-08 13:49 - 2019-04-08 13:49 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\cmintegrator.dll
2019-04-08 13:49 - 2019-04-08 13:49 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 007687576 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 004991112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 003334496 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 002592816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 001892864 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 001856000 ____R (The ICU Project) C:\Windows\system32\icuin.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 001567232 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 001191728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 001053192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys
2019-04-08 13:48 - 2019-04-08 13:48 - 001022616 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000982880 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000871792 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000850760 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000822272 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-04-08 13:48 - 2019-04-08 13:48 - 000799568 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000766480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000761280 _____ (Microsoft Corporation) C:\Windows\system32\pkeyhelper.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000675096 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000580024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000522752 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000513040 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000506168 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000469504 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000463672 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000447488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000407504 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000386872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000385024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000384312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000368640 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000349184 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000306488 _____ (Microsoft Corporation) C:\Windows\system32\computestorage.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000300032 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000264704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000169784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2019-04-08 13:48 - 2019-04-08 13:48 - 000165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spacebridge.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000159112 _____ (Microsoft Corporation) C:\Windows\system32\winquic.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000156984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winquic.sys
2019-04-08 13:48 - 2019-04-08 13:48 - 000100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\negoexts.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000098664 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000089336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpr.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\KdsCli.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\wcimage.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000035640 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2019-04-08 13:48 - 2019-04-08 13:48 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-04-08 13:48 - 2019-04-08 13:48 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-04-08 13:46 - 2019-04-08 13:46 - 002017792 _____ C:\Windows\system32\rdpnano.dll
2019-04-08 13:46 - 2019-04-08 13:46 - 000651792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2019-04-08 13:46 - 2019-04-08 13:46 - 000607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2019-04-08 13:46 - 2019-04-08 13:46 - 000556544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2019-04-08 13:46 - 2019-04-08 13:46 - 000421392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2019-04-08 13:46 - 2019-04-08 13:46 - 000300344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2019-04-08 13:46 - 2019-04-08 13:46 - 000234808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netvsc.sys
2019-04-08 13:46 - 2019-04-08 13:46 - 000195896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
2019-04-08 13:46 - 2019-04-08 13:46 - 000131384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2019-04-07 13:29 - 2019-04-15 22:48 - 005107200 _____ C:\Windows\system32\FNTCACHE.DAT
2019-04-06 18:43 - 2019-04-06 18:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-04-04 16:34 - 2015-10-05 09:48 - 009832760 _____ (Malwarebytes) C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mbam.exe
2019-04-03 15:59 - 2019-04-03 15:59 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2019-04-03 15:59 - 2019-04-03 15:59 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2019-04-03 15:59 - 2019-04-03 15:59 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2019-04-03 15:59 - 2019-04-03 15:59 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2019-04-03 09:28 - 2019-04-10 08:26 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-03 09:25 - 2019-04-03 09:25 - 000003416 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-04-03 09:25 - 2019-04-03 09:25 - 000003292 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-04-02 08:14 - 2019-04-02 08:14 - 000000000 ___HD C:\OneDriveTemp
2019-03-31 23:55 - 2019-03-31 23:55 - 000000000 ____D C:\Users\Cristian\AppData\Local\Cyberlink SoftDMA
2019-03-31 23:53 - 2019-03-31 23:53 - 000000000 ____D C:\Users\Cristian\AppData\Local\MediaServer
2019-03-31 23:52 - 2019-03-31 23:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 13
2019-03-31 23:52 - 2019-03-31 23:52 - 000000000 ____D C:\Users\Cristian\AppData\Local\CyberLink
2019-03-31 23:51 - 2019-03-31 23:51 - 000000000 ____D C:\Program Files (x86)\CyberLink
2019-03-31 23:28 - 2019-03-31 23:26 - 000505128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2019-03-31 23:28 - 2019-03-31 23:26 - 000353576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2019-03-31 23:28 - 2019-03-31 23:26 - 000029480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2019-03-31 23:15 - 2019-03-31 23:55 - 000000000 ____D C:\Users\Cristian\Documents\CyberLink
2019-03-31 23:15 - 2019-03-31 23:52 - 000000000 ____D C:\Users\Public\CyberLink
2019-03-31 23:11 - 2019-03-31 23:51 - 000000000 ____D C:\ProgramData\Temp
2019-03-31 21:46 - 2019-04-01 00:00 - 000000000 ____D C:\Users\Public\Documents\Cyberlink
2019-03-31 21:42 - 2019-03-31 23:55 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\CyberLink
2019-03-31 21:41 - 2019-04-01 00:00 - 000000000 ____D C:\ProgramData\CyberLink
2019-03-31 21:41 - 2019-03-31 21:41 - 000000000 ____D C:\Windows\system32\Drivers\CLFCL5.18
2019-03-31 21:41 - 2019-03-31 21:41 - 000000000 ____D C:\ProgramData\PDVD
2019-03-31 21:40 - 2019-03-31 23:50 - 000000000 ____D C:\ProgramData\install_clap
2019-03-31 21:40 - 2019-03-31 21:40 - 000000000 ____D C:\ProgramData\CLSK
2019-03-31 21:06 - 2019-03-31 21:55 - 000000000 ____D C:\Program Files (x86)\Auto
2019-03-31 21:04 - 2019-03-31 21:31 - 000722944 _____ C:\Users\Cristian\AppData\Local\sha.db
2019-03-31 21:04 - 2019-03-31 21:04 - 000140800 _____ C:\Users\Cristian\AppData\Local\installer.dat
2019-03-31 21:03 - 2019-04-11 21:44 - 000000000 ____D C:\ProgramData\{CC16BE96-A7FC-96C9-84BA-4A1A845D134B}
2019-03-31 21:03 - 2019-04-11 21:44 - 000000000 ____D C:\ProgramData\{34117DF6-649C-6ECE-E479-4DE2E49E14B3}
2019-03-31 21:02 - 2019-03-31 21:02 - 000000000 ____D C:\Users\Cristian\AppData\Local\AdvinstAnalytics
2019-03-30 13:59 - 2019-03-30 13:59 - 000096514 _____ C:\Windows\uninstaller.dat
2019-03-29 08:56 - 2019-04-04 15:41 - 000002376 _____ C:\Users\Cristian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-03-29 08:56 - 2019-03-29 08:56 - 000003374 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3287089801-3443176771-1087233360-1001
2019-03-27 10:02 - 2019-03-27 10:02 - 1813417318 _____ C:\Users\Cristian\Documents\main.10565.com.tencent.ig.obb
2019-03-27 00:26 - 2019-03-28 20:26 - 000000000 ____D C:\Users\Cristian\Documents\My Cmaps
2019-03-27 00:26 - 2019-03-28 20:26 - 000000000 ____D C:\Users\Cristian\CmapToolsLogs
2019-03-27 00:26 - 2019-03-28 20:26 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\CmapTools
2019-03-27 00:25 - 2019-03-27 00:25 - 000000000 ___HD C:\Program Files\Zero G Registry
2019-03-27 00:25 - 2019-03-27 00:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IHMC CmapTools
2019-03-27 00:25 - 2019-03-27 00:25 - 000000000 ____D C:\Program Files\IHMC CmapTools
2019-03-27 00:24 - 2019-03-27 00:24 - 000000000 ____D C:\Users\Cristian\InstallAnywhere
2019-03-27 00:17 - 2019-04-16 21:56 - 000000000 ___RD C:\Users\Cristian\Dropbox
2019-03-27 00:11 - 2019-03-27 00:11 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\Dropbox
2019-03-26 22:59 - 2019-04-06 18:44 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-03-26 22:59 - 2019-03-31 21:53 - 000000974 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2019-03-26 22:59 - 2019-03-31 21:53 - 000000970 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2019-03-26 22:59 - 2019-03-27 11:38 - 000000000 ____D C:\Users\Cristian\AppData\Local\Dropbox
2019-03-26 22:59 - 2019-03-26 22:59 - 000004034 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2019-03-26 22:59 - 2019-03-26 22:59 - 000003802 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2019-03-26 22:59 - 2019-03-26 22:59 - 000000000 ____D C:\ProgramData\Dropbox
2019-03-22 11:37 - 2019-03-22 11:37 - 000000300 _____ C:\Users\Cristian\d4ac4633ebd6440fa397b84f1bc94a3c.7z
2019-03-21 21:15 - 2019-03-21 21:15 - 000007060 _____ C:\Users\Cristian\-1.14-windows.xml
2019-03-21 20:55 - 2019-04-04 15:42 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2019-03-21 20:55 - 2019-04-04 15:42 - 000001768 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk
2019-03-21 20:54 - 2019-03-21 20:54 - 000000000 ____D C:\ProgramData\BlueStacks
2019-03-21 20:54 - 2019-03-21 20:54 - 000000000 ____D C:\Program Files\BlueStacks
2019-03-21 20:53 - 2019-03-21 20:53 - 000000000 ____D C:\Users\Cristian\AppData\Local\Bluestacks
2019-03-18 21:09 - 2019-03-18 21:09 - 004920832 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2019-03-18 21:09 - 2019-03-18 21:09 - 003566080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2019-03-18 21:09 - 2019-03-18 21:09 - 002752360 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2019-03-18 21:09 - 2019-03-18 21:09 - 002469440 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2019-03-18 21:09 - 2019-03-18 21:09 - 002323688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2019-03-18 21:09 - 2019-03-18 21:09 - 002278240 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2019-03-18 21:09 - 2019-03-18 21:09 - 001706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2019-03-18 21:09 - 2019-03-18 21:09 - 001289192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2019-03-18 21:09 - 2019-03-18 21:09 - 001200920 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2019-03-18 21:09 - 2019-03-18 21:09 - 001077912 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2019-03-18 21:09 - 2019-03-18 21:09 - 000866152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DolbyDecMFT.dll
2019-03-18 21:09 - 2019-03-18 21:09 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2019-03-18 21:09 - 2019-03-18 21:09 - 000560128 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2019-03-18 21:09 - 2019-03-18 21:09 - 000421688 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 024616960 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 019284480 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 005588184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 004883968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 003744256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 001782272 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 001332224 _____ (Microsoft Corporation) C:\Windows\system32\lpasvc.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 001307648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 001224704 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 001131520 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000703488 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000626176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000621568 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000599040 _____ (Microsoft Corporation) C:\Windows\system32\facecredentialprovider.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000525312 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2019-03-18 21:08 - 2019-03-18 21:08 - 000495104 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\ResourceMapper.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\DataUsageHandlers.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000359424 _____ (Microsoft Corporation) C:\Windows\system32\dusmsvc.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000340480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2019-03-18 21:08 - 2019-03-18 21:08 - 000330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\MbbCx.sys
2019-03-18 21:08 - 2019-03-18 21:08 - 000180736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srumsvc.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000173568 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000167424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys
2019-03-18 21:08 - 2019-03-18 21:08 - 000145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2019-03-18 21:08 - 2019-03-18 21:08 - 000134144 _____ (Microsoft Corporation) C:\Windows\system32\DataUsageLiveTileTask.exe
2019-03-18 21:08 - 2019-03-18 21:08 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2019-03-18 21:08 - 2019-03-18 21:08 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2019-03-18 21:08 - 2019-03-18 21:08 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2019-03-18 21:08 - 2019-03-18 21:08 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\SecureBioSysprep.dll
2019-03-18 21:07 - 2019-03-18 21:08 - 003108864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 022114960 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 007251456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 005915936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 005566464 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 003761664 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 003729808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2019-03-18 21:07 - 2019-03-18 21:07 - 003652656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 003504128 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 003427840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 002447360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 002001408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapGeocoder.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 001899160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 001572176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 001481488 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 001272552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ttdrecordcpu.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 001267712 _____ (Microsoft Corporation) C:\Windows\system32\APMon.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 001180248 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 001098128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 001056272 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 001001472 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2019-03-18 21:07 - 2019-03-18 21:07 - 000918032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000908800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2019-03-18 21:07 - 2019-03-18 21:07 - 000888120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pidgenx.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000860160 _____ C:\Windows\system32\MBR2GPT.EXE
2019-03-18 21:07 - 2019-03-18 21:07 - 000823296 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000782968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000775168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVolSSO.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000772408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Services.TargetedContent.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000764216 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000723968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingOnlineServices.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000655160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2019-03-18 21:07 - 2019-03-18 21:07 - 000591832 _____ C:\Windows\SysWOW64\InputHost.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000549376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000548864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000519992 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2019-03-18 21:07 - 2019-03-18 21:07 - 000497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsound.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000453944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2019-03-18 21:07 - 2019-03-18 21:07 - 000452096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2019-03-18 21:07 - 2019-03-18 21:07 - 000449024 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000383288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2019-03-18 21:07 - 2019-03-18 21:07 - 000331264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000322048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000293376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-03-18 21:07 - 2019-03-18 21:07 - 000279376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000272648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ttdwriter.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000262456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-03-18 21:07 - 2019-03-18 21:07 - 000177664 _____ (Microsoft Corporation) C:\Windows\system32\ngctasks.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000147968 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SpatialAudioLicenseSrv.exe
2019-03-18 21:07 - 2019-03-18 21:07 - 000132096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2019-03-18 21:07 - 2019-03-18 21:07 - 000044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll
2019-03-18 21:07 - 2019-03-18 21:07 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys
2019-03-18 21:06 - 2019-03-18 21:06 - 009670656 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 007647256 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 007556392 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 005296640 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 004245280 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2019-03-18 21:06 - 2019-03-18 21:06 - 003399168 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 002842112 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 002766648 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 002637312 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2019-03-18 21:06 - 2019-03-18 21:06 - 002630656 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 001931264 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 001742104 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 001715712 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 001656832 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 001563336 _____ (Microsoft Corporation) C:\Windows\system32\ttdrecordcpu.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 001331536 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 001208320 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 001199104 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 001176064 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 001087800 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 001078072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Services.TargetedContent.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 001052160 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000955392 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000902144 _____ (Microsoft Corporation) C:\Windows\system32\BingOnlineServices.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000895048 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000883712 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000836096 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000833064 _____ C:\Windows\system32\InputHost.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000790328 _____ (Microsoft Corporation) C:\Windows\system32\upshared.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000773120 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000745984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000741888 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000714240 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000691712 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000680184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000646656 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000646632 _____ (Microsoft Corporation) C:\Windows\system32\msvcp_win.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000622080 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000604336 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-03-18 21:06 - 2019-03-18 21:06 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\dsound.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000572416 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000566272 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000508216 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2019-03-18 21:06 - 2019-03-18 21:06 - 000479232 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000456704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000449368 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000444728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2019-03-18 21:06 - 2019-03-18 21:06 - 000435712 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000419128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2019-03-18 21:06 - 2019-03-18 21:06 - 000402944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2019-03-18 21:06 - 2019-03-18 21:06 - 000387832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000355360 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000348160 _____ (Microsoft Corporation) C:\Windows\system32\BioCredProv.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000330464 _____ (Microsoft Corporation) C:\Windows\system32\ttdwriter.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BioCredProv.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000248832 _____ (Microsoft Corporation) C:\Windows\system32\w32tm.exe
2019-03-18 21:06 - 2019-03-18 21:06 - 000246584 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000225792 _____ (Microsoft Corporation) C:\Windows\system32\smbwmiv2.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000224256 _____ (Microsoft Corporation) C:\Windows\system32\ptpprov.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000214528 _____ (Microsoft Corporation) C:\Windows\system32\srumsvc.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000202752 _____ (Microsoft Corporation) C:\Windows\system32\SecureTimeAggregator.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000202552 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000196608 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000178688 _____ (Microsoft Corporation) C:\Windows\system32\winbio.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
2019-03-18 21:06 - 2019-03-18 21:06 - 000138960 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\DolbyMATEnc.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000115152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2019-03-18 21:06 - 2019-03-18 21:06 - 000104248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2019-03-18 21:06 - 2019-03-18 21:06 - 000078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-03-18 21:06 - 2019-03-18 21:06 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll
2019-03-18 21:05 - 2019-03-18 21:05 - 001296576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-03-18 21:05 - 2019-03-18 21:05 - 001221120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2019-03-18 21:05 - 2019-03-18 21:05 - 000661816 _____ (Microsoft Corporation) C:\Windows\system32\computecore.dll
2019-03-18 21:05 - 2019-03-18 21:05 - 000605496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2019-03-18 21:05 - 2019-03-18 21:05 - 000211968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe
2019-03-18 21:05 - 2019-03-18 21:05 - 000126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winbio.dll
2019-03-18 21:05 - 2019-03-18 21:05 - 000095544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storqosflt.sys
2019-03-18 21:05 - 2019-03-18 21:05 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2019-03-18 21:05 - 2019-03-18 21:05 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2019-03-17 13:53 - 2019-03-17 13:54 - 000000000 ___HD C:\ProgramData\CanonIJScan
2019-03-17 13:52 - 2019-03-17 13:53 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\Canon
2019-03-17 13:38 - 2019-03-17 13:38 - 000000000 ____D C:\ProgramData\Canon IJ Network Tool
2019-03-17 13:38 - 2014-01-21 13:15 - 000336896 _____ (CANON INC.) C:\Windows\SysWOW64\CNC_CBL.dll
2019-03-17 13:38 - 2013-12-02 09:57 - 000088320 _____ C:\Windows\SysWOW64\CNC1780D.TBL
2019-03-17 13:38 - 2008-08-25 18:02 - 000015872 _____ (CANON INC.) C:\Windows\SysWOW64\CNHMCA.dll
2019-03-17 13:37 - 2019-03-17 13:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2019-03-17 13:37 - 2019-03-17 13:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG2900 series Manual
2019-03-17 13:02 - 2019-03-17 13:02 - 000000000 ____D C:\Windows\system32\STRING
2019-03-17 13:02 - 2014-03-17 19:15 - 000380928 _____ (CANON INC.) C:\Windows\SysWOW64\CNMNPPM.DLL
2019-03-17 13:02 - 2014-03-17 19:15 - 000375296 _____ (CANON INC.) C:\Windows\system32\CNMN6PPM.DLL
2019-03-17 13:02 - 2014-03-17 19:15 - 000039424 _____ (CANON INC.) C:\Windows\system32\CNMN6UI.DLL
2019-03-17 12:59 - 2019-03-17 12:59 - 000004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-16 22:02 - 2018-09-15 02:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-16 21:53 - 2018-08-26 18:57 - 000000000 ____D C:\Users\Cristian\IntelGraphicsProfiles
2019-04-16 20:24 - 2018-10-04 07:54 - 000000000 ____D C:\Users\Cristian\AppData\LocalLow\Mozilla
2019-04-16 20:23 - 2018-12-25 01:49 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-04-16 18:34 - 2018-12-25 02:18 - 000004214 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{9538A893-5F29-47AC-8E8E-84B014346D1A}
2019-04-16 18:29 - 2018-09-08 21:53 - 000000513 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2019-04-16 14:36 - 2018-12-25 02:11 - 001761804 _____ C:\Windows\system32\PerfStringBackup.INI
2019-04-16 14:36 - 2018-09-15 11:38 - 000771674 _____ C:\Windows\system32\perfh00A.dat
2019-04-16 14:36 - 2018-09-15 11:38 - 000149062 _____ C:\Windows\system32\perfc00A.dat
2019-04-16 14:36 - 2018-09-15 02:31 - 000000000 ____D C:\Windows\INF
2019-04-16 13:28 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\AppReadiness
2019-04-16 13:22 - 2018-09-15 02:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-16 13:20 - 2018-09-06 18:08 - 000000000 ____D C:\ProgramData\PCDr
2019-04-16 12:57 - 2018-09-06 17:55 - 000000000 ____D C:\ProgramData\SupportAssist
2019-04-16 12:13 - 2018-12-25 02:18 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-04-16 12:12 - 2018-09-15 01:09 - 000524288 _____ C:\Windows\system32\config\BBI
2019-04-16 09:26 - 2018-09-30 12:31 - 000000000 ____D C:\Users\Cristian\AppData\Local\Adobe
2019-04-15 22:53 - 2018-09-15 10:22 - 001767242 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2019-04-15 00:06 - 2018-09-25 23:05 - 000000000 ____D C:\Users\Cristian\Documents\Respaldos
2019-04-12 12:41 - 2018-08-26 16:51 - 000000000 ____D C:\Users\Cristian\AppData\Local\Packages
2019-04-11 21:02 - 2018-09-15 02:23 - 000000000 ____D C:\Windows\CbsTemp
2019-04-11 13:59 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\LiveKernelReports
2019-04-11 09:48 - 2018-08-27 09:30 - 000000000 ____D C:\Users\Cristian\AppData\Local\D3DSCache
2019-04-11 09:20 - 2018-09-15 02:33 - 000000000 ___HD C:\Windows\ELAMBKUP
2019-04-11 08:48 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\bcastdvr
2019-04-11 04:10 - 2018-10-04 07:54 - 000001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-04-11 04:01 - 2018-08-27 23:55 - 000015800 _____ (ESET) C:\Windows\system32\Drivers\eelam.sys
2019-04-09 23:25 - 2018-08-26 16:51 - 000000000 ____D C:\Users\Cristian\AppData\Local\ConnectedDevicesPlatform
2019-04-09 23:01 - 2018-11-04 22:38 - 000000000 ____D C:\Windows\pss
2019-04-09 09:45 - 2018-08-28 21:24 - 000007598 _____ C:\Users\Cristian\AppData\Local\resmon.resmoncfg
2019-04-08 14:06 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2019-04-08 14:06 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\SysWOW64\Dism
2019-04-08 14:06 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\system32\oobe
2019-04-08 14:06 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\system32\es-MX
2019-04-08 14:06 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\system32\DiagSvcs
2019-04-08 14:06 - 2018-09-15 01:09 - 000000000 ____D C:\Windows\system32\Dism
2019-04-08 13:11 - 2018-08-26 16:24 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-04-07 12:53 - 2018-09-13 19:22 - 000000592 _____ C:\Windows\SysWOW64\SmartFlow.txt
2019-04-07 12:50 - 2018-09-08 19:28 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\Nitro
2019-04-07 12:06 - 2018-09-06 19:59 - 000000000 ____D C:\ProgramData\RivetNetworks
2019-04-06 19:26 - 2018-12-25 01:57 - 000000000 ____D C:\Users\Cristian
2019-04-06 18:17 - 2018-08-26 19:41 - 000592616 _____ (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2019-04-04 15:42 - 2018-12-25 01:59 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2019-04-04 15:42 - 2018-12-25 01:55 - 000001117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves MaxxAudioPro.lnk
2019-04-04 15:42 - 2018-09-08 19:26 - 000002012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Pro 10.lnk
2019-04-04 15:42 - 2018-09-03 21:04 - 000002729 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2019-04-04 15:42 - 2018-09-03 21:04 - 000002662 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive para la Empresa.lnk
2019-04-04 15:42 - 2018-09-03 21:04 - 000002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2019-04-04 15:42 - 2018-09-03 21:04 - 000002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Empresarial 2016.lnk
2019-04-04 15:42 - 2018-09-03 21:04 - 000002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2019-04-04 15:42 - 2018-09-03 21:04 - 000002648 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-04-04 15:42 - 2018-09-03 21:04 - 000002648 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2019-04-04 15:42 - 2018-09-03 21:04 - 000002642 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2019-04-04 15:42 - 2018-09-03 21:04 - 000002628 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2019-04-04 15:41 - 2018-09-02 11:28 - 000001038 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2019-04-04 15:39 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\PLA
2019-04-04 10:09 - 2018-09-15 01:09 - 000032768 _____ C:\Windows\system32\config\ELAM
2019-04-04 10:01 - 2018-08-26 16:54 - 000000000 ____D C:\Users\Cristian\OneDrive
2019-04-03 09:28 - 2018-08-26 17:09 - 000000000 ____D C:\Users\Cristian\AppData\Local\Google
2019-04-03 09:27 - 2018-08-26 17:09 - 000000000 ____D C:\Program Files (x86)\Google
2019-03-31 23:50 - 2018-11-15 19:32 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-03-31 23:48 - 2018-09-06 19:29 - 000000000 ____D C:\Users\Cristian\Documents\VirtualDJ
2019-03-31 23:31 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\system32\NDF
2019-03-31 23:05 - 2018-04-11 18:38 - 000000000 _____ C:\Windows\system32\Drivers\etc\hosts_bak_235
2019-03-26 22:54 - 2018-08-28 21:54 - 000000000 ____D C:\ProgramData\Packages
2019-03-26 22:54 - 2018-08-26 16:59 - 000000000 ____D C:\Users\Cristian\AppData\Local\PlaceholderTileLogoFolder
2019-03-23 21:47 - 2018-08-26 17:12 - 000000000 ____D C:\Users\Cristian\Documents\UTC Documentos
2019-03-22 11:41 - 2019-01-21 22:28 - 000000000 ____D C:\Program Files (x86)\Nox
2019-03-22 11:33 - 2019-01-21 22:31 - 000000000 ____D C:\Users\Cristian\.android
2019-03-22 11:32 - 2019-01-21 22:29 - 000000000 ____D C:\Users\Cristian\vmlogs
2019-03-21 20:59 - 2018-12-25 02:18 - 000003938 _____ C:\Windows\System32\Tasks\BlueStacksHelper
2019-03-19 09:02 - 2018-08-26 16:52 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-03-19 09:02 - 2018-08-26 16:52 - 000000000 ____D C:\Users\Cristian\3D Objects
2019-03-19 00:19 - 2018-09-15 02:33 - 000000000 ___RD C:\Program Files\Windows Defender
2019-03-19 00:19 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\TextInput
2019-03-19 00:19 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\system32\appraiser
2019-03-19 00:19 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\ShellExperiences
2019-03-18 21:54 - 2018-08-26 20:54 - 000000000 ____D C:\Windows\system32\MRT
2019-03-18 21:51 - 2018-08-26 20:54 - 127411920 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-03-18 21:05 - 2018-12-25 01:54 - 002865152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2019-03-17 15:01 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\system32\FxsTmp
2019-03-17 13:48 - 2019-03-06 11:06 - 000000000 ____D C:\Program Files (x86)\Canon
2019-03-17 13:38 - 2018-09-15 02:33 - 000000000 __RSD C:\Windows\media
2019-03-17 13:37 - 2019-03-06 12:26 - 000000000 ____D C:\Program Files\Canon
2019-03-17 12:59 - 2018-09-30 13:24 - 000000000 ____D C:\Users\Cristian\AppData\LocalLow\Adobe
2019-03-17 12:59 - 2018-08-26 16:51 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\Adobe
2019-03-17 12:57 - 2018-09-30 12:46 - 000000000 ____D C:\Program Files (x86)\Adobe
2019-03-17 12:56 - 2018-09-30 12:32 - 000000000 ____D C:\ProgramData\Adobe

==================== Files in the root of some directories =======

2018-10-10 13:13 - 2018-10-10 13:13 - 000000132 _____ () C:\Users\Cristian\AppData\Roaming\Prefs. de formato GIF de Adobe CS6
2019-03-31 21:04 - 2019-03-31 21:04 - 000140800 _____ () C:\Users\Cristian\AppData\Local\installer.dat
2018-08-28 21:24 - 2019-04-09 09:45 - 000007598 _____ () C:\Users\Cristian\AppData\Local\resmon.resmoncfg
2019-03-31 21:04 - 2019-03-31 21:31 - 000722944 _____ () C:\Users\Cristian\AppData\Local\sha.db
2019-01-21 22:54 - 2019-03-10 13:28 - 000000014 _____ () C:\Users\Cristian\AppData\Local\update_progress.txt

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\SysWOW64\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15.04.2019 01
Ran by Cristian (16-04-2019 22:14:00)
Running from C:\Users\Cristian\Downloads
Windows 10 Home Single Language Version 1809 17763.437 (X64) (2018-12-25 07:21:10)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-3287089801-3443176771-1087233360-500 - Administrator - Disabled)
CDFAccount (S-1-5-21-3287089801-3443176771-1087233360-1003 - Limited - Disabled)
Cristian (S-1-5-21-3287089801-3443176771-1087233360-1001 - Administrator - Enabled) => C:\Users\Cristian
DefaultAccount (S-1-5-21-3287089801-3443176771-1087233360-503 - Limited - Disabled)
Invitado (S-1-5-21-3287089801-3443176771-1087233360-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3287089801-3443176771-1087233360-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: ESET Security (Disabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Disabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.010.20099 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.10.2 - Advanced Micro Devices, Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.60.3.1001 - BlueStack Systems, Inc.)
Branding64 (HKLM\...\{EE2AFCE4-0238-4DE0-A140-1647021627C1}) (Version: 1.00.0001 - Advanced Micro Devices, Inc.) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.2.3 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.5.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.10.15 - Canon Inc.)
Canon MG2900 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2900_series) (Version: 1.01 - Canon Inc.)
Canon MG2900 series On-screen Manual (HKLM-x32\...\Canon MG2900 series On-screen Manual) (Version: 7.7.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
CyberLink PowerDVD 13 (HKLM-x32\...\InstallShield_{3CFDF154-7E60-4E98-A8DF-C693A4F8E6B6}) (Version: 13.0.2720.57 - CyberLink Corp.)
Dell SupportAssist (HKLM\...\{45FD01F4-B11B-4A58-B465-1D600B5CDF64}) (Version: 3.2.0.90 - Dell Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 70.4.93 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.189.1 - Dropbox, Inc.) Hidden
Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
ESET Security (HKLM\...\{30AAEA0C-2993-4ED6-8ABC-48499DA53D87}) (Version: 12.0.27.0 - ESET, spol. s r.o.)
Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Grand Theft Auto V MULTi12 - ElAmigos versión 1.41 build 1180.1 (HKLM-x32\...\{4959470E-EDAC-4710-A636-276D79A81B94}_is1) (Version: 1.41 build 1180.1 - Rockstar Games)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
IHMC CmapTools v6.03.01 (HKLM\...\IHMC CmapTools v6.03.01) (Version: 6.0.3.1 - Institute for Human & Machine Cognition)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Intel(R) Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10207.5567 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1054 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4836 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1725.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{246c6cc0-9810-4728-9a29-28474de2eec5}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Java SE Development Kit 8 Update 181 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180181}) (Version: 8.0.1810.13 - Oracle Corporation)
Malwarebytes versión 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.7.9434.5 - Waves Audio Ltd.) Hidden
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\...\OneDriveSetup.exe) (Version: 19.033.0218.0011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Mozilla Firefox 66.0.3 (x64 es-ES) (HKLM\...\Mozilla Firefox 66.0.3 (x64 es-ES)) (Version: 66.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.2 - Mozilla)
Nitro Pro 10 (HKLM\...\{7242D889-1E07-40C9-8FC6-670707B34EE1}) (Version: 10.5.9.9 - Nitro)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8555 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Revo Uninstaller Pro 3.1.4 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.4 - VS Revo Group, Ltd.)
Samsung SideSync (HKLM-x32\...\Samsung SideSync) (Version: 4.7.5.244 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
Software Intel® PROSet/Wireless (HKLM-x32\...\{8431b7d7-59d1-4f45-8212-a2eac049528f}) (Version: 19.60.0 - Intel Corporation)
Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 4.4.7 - Tweaking.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
VirtualDJ 2018 (HKLM-x32\...\{2336DCE6-27C3-4C33-BBF0-D2BCF7917222}) (Version: 8.3.4514.0 - Atomix Productions)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - Intel Corporation Inc.)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\...\WhatsApp) (Version: 0.3.557 - WhatsApp)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{a9872fee-5a55-4ecb-9b0f-b06fedcf14d1}\localserver32 -> C:\Program Files\Waves\MaxxAudio\MaxxAudioPro.exe (Waves Inc -> Waves Audio Ltd)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Cristian\Dropbox [2019-03-27 00:17]
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-03-14] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro 10\NPShellExtension.dll [2016-07-22] (Nitro Software, Inc. -> Nitro PDF)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-03-14] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-10-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxDTCM.dll [2018-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-03-14] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2012-12-29] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0174F2A9-E45E-42F1-BA6D-07F9611E94DC} - System32\Tasks\Microsoft\Windows\Secondary Authentication Factor\BackgroundTaskDeployment => C:\Windows\System32\DeviceCredentialDeployment.exe (Microsoft Windows -> Microsoft Corporation)
Task: {09977660-040D-4EEB-8F18-2E02312387E5} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe (Tweaking LLC -> Tweaking.com)
Task: {0997E8FF-85E2-4842-AF6D-1781DD74A83A} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {129EC844-4D90-4605-B450-48B91B75C68D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {241CD02A-548F-4A85-867D-FD03C130A4EB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2719CFAD-1227-4367-84FB-676F26F7E047} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {3D5C1241-28A2-4743-AD4C-42CB3CD20513} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {4EFB9EE6-F804-4F1C-85DE-0C78CBB9CE2B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4FC9C2D7-6EE3-4A2F-9D97-370C18E76A21} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {64335987-A479-4384-B244-DA58B20CD7D7} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {6AFC9DFC-F902-4E55-98E0-3E7C930AF67C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {73C57087-A9DA-4F08-B5BB-16D37EB8AEEA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google LLC)
Task: {8B5CAB56-F381-4425-BFCD-A8C0E7EFA5CD} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9871FAA5-66B2-4D6F-8CCB-53BEAB307B83} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe (Dell Inc. -> Dell Inc.)
Task: {A43CB6FF-ED0B-49C6-A3F8-7AC926E239C9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {A6E37FA7-B1B1-4879-BC3E-8D19C6E2F858} - System32\Tasks\[email protected] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {B42BB526-BA57-4402-A655-B5B72FABF74B} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {B888E603-0071-4812-9E9E-FFCE00513BEB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {BCB40581-BF03-4ABD-A676-67216A825F95} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {CBC6F61B-1E51-47E7-8AF4-9ACF516F7972} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.)
Task: {D55179C2-E712-4B1E-A525-92D37593EBBE} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.)
Task: {D64EB29E-4711-48BF-8F93-0E4FD7912F90} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {E5E8F9CF-E31B-47BD-BD4A-53355B41675E} - System32\Tasks\S-1-5-21-3287089801-3443176771-1087233360-1001\DataSenseLiveTileTask => C:\Windows\System32\DataUsageLiveTileTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {F8CD683D-AF71-47E1-82D8-BAB3AC3D976B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2019-03-17 13:02 - 2014-03-17 19:15 - 000375296 _____ (CANON INC.) [File not signed] C:\Windows\System32\CNMN6PPM.DLL
2018-06-27 22:15 - 2018-06-27 22:15 - 000359936 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 003700224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 000461312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 005603840 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 006321152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 003559424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 076160000 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 001077248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 002822144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 000187904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2018-10-19 23:00 - 2018-10-19 23:00 - 005812224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 000323584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 001412608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2018-06-27 22:15 - 2018-06-27 22:15 - 002552832 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000345600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 000330752 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000502272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000328192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000059904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000089088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000053248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-03-31 23:52 - 2013-03-14 13:08 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\MSVCP71.dll
2019-03-31 23:52 - 2013-03-14 13:08 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\MSVCR71.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 001420800 _____ (Pizzolato Davide - www.xdp.it) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\cximageu.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000055808 _____ (Open Source Software community LGPL) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\pthreadVC2.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000464398 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\swscale-3.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 008931854 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\avcodec-56.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000352782 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\avutil-54.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 001817614 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\avformat-56.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000102414 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\swresample-1.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000850446 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\avfilter-5.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000019008 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\BASSCD.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000110207 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\BASS.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 001289216 _____ () [File not signed] C:\Program Files (x86)\Samsung\SideSync4\cairo.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000017472 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\BASSWMA.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000230529 _____ () [File not signed] C:\Program Files (x86)\Samsung\SideSync4\libpng14-14.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000100352 _____ () [File not signed] C:\Program Files (x86)\Samsung\SideSync4\zlib1.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000091136 _____ () [File not signed] C:\Program Files (x86)\Samsung\SideSync4\ThoughtWorks.QRCode.dll
2019-03-17 13:38 - 2014-01-15 15:11 - 000008704 _____ (CANON INC) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_ESP.DLL
2019-03-17 13:38 - 2014-01-15 15:10 - 000307712 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_IMG.dll
2019-03-31 23:51 - 2011-08-24 04:39 - 002113536 _____ (Python Software Foundation) [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Common\koan\python25.dll
2019-03-31 23:51 - 2011-04-12 11:16 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Common\MSVCR71.dll
2019-03-31 23:51 - 2011-08-24 04:39 - 000081920 _____ () [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Common\koan\_ctypes.pyd
2019-03-31 23:51 - 2011-08-24 04:39 - 000053248 _____ () [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Common\Koan\_socket.pyd
2019-03-31 23:51 - 2011-08-24 04:39 - 000655360 _____ () [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Common\Koan\_ssl.pyd
2018-12-25 01:59 - 2018-12-25 01:59 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2018-12-25 01:59 - 2018-12-25 01:59 - 001101824 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL
2019-04-11 09:20 - 2019-04-11 09:26 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Cristian\AppData\Local\JQVR7Mhh5v8:7r2ud9tO6PCvvwHmDhI4yrj [2086]
AlternateDataStreams: C:\Users\Cristian\AppData\Local\sdDoIpdqh:fATUEZKIRfcuc6z2zcckUV [1948]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WmsSelfHealing => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WmsSelfHealing => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-04-15 21:14 - 2019-04-15 21:14 - 000000855 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1       localhost

2018-09-08 21:53 - 2019-04-16 18:29 - 000000513 _____ C:\Windows\system32\drivers\etc\hosts.ics


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Java\jdk1.8.0_181\bin;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Cristian\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9AE0006B-85FD-4C7F-96E6-D1DADC41AE64}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> )
FirewallRules: [UDP Query User{BCE28DDC-DB59-43CD-A7A1-0821E22D92AE}C:\program files (x86)\samsung\sidesync4\sidesync.exe] => (Allow) C:\program files (x86)\samsung\sidesync4\sidesync.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [TCP Query User{0C85FDB5-2150-48FB-9269-30424DB2FFA4}C:\program files (x86)\samsung\sidesync4\sidesync.exe] => (Allow) C:\program files (x86)\samsung\sidesync4\sidesync.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{1C42F842-2179-49A5-8F90-90A771171372}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{49003270-7735-464E-8573-3E9103AD0A26}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{AB1C5FC6-BBE4-43FD-9A46-38CEAD7E20B1}] => (Allow) C:\Games\Grand Theft Auto V\GTA5.exe (Rockstar Games) [File not signed]
FirewallRules: [{7BDF9213-BA61-4AF5-8BCB-CA7F63110E6B}] => (Allow) C:\Games\Grand Theft Auto V\GTA5.exe (Rockstar Games) [File not signed]
FirewallRules: [{0718CF7F-DBFD-4729-B69E-49E7B206ADD4}] => (Allow) C:\Games\Grand Theft Auto V\GTA5.exe (Rockstar Games) [File not signed]
FirewallRules: [{21DA1DAA-B441-44CB-98E9-E5C7CDC99EBE}] => (Allow) C:\Games\Grand Theft Auto V\GTA5.exe (Rockstar Games) [File not signed]
FirewallRules: [{BBC1CE6E-DE1D-4C3F-91BD-5925B6CB9281}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F9F5D0F3-D058-4FFD-BB62-7FCB7ADE8311}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FB91348C-58DB-4BE2-BCEA-5A84A2AF904E}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{72B1698D-76E4-43B0-99BD-3CCCB52CC371}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F758ACBF-CEB8-4638-9835-4416CC641E91}] => (Allow) C:\Program Files (x86)\\Bignox\\BigNoxVM\\RT\NoxVMHandle.exe No File
FirewallRules: [{BC624472-166E-4D24-B5B4-A43FD46AE685}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [TCP Query User{C8D57930-44C9-4309-AB67-A394A8CB61D6}C:\program files\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [UDP Query User{D6561681-B5E7-4AAF-B911-0CBC75626DB6}C:\program files\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [{2A2C4848-500B-44AE-8710-3F9FEFF00838}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{BB29EED4-F885-4FF5-A14E-472E0E255BAE}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMR\PowerDVD13DMREngine.exe No File
FirewallRules: [{9ABA23A6-9695-429A-A899-134A18F056EA}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe (CyberLink Corp. -> CyberLink)
FirewallRules: [{503B5CB7-B1A4-414C-8500-C815EFB72EE3}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{B926D657-9E0B-4DD3-A15D-37114C9760B1}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13ML.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{1B9B3FD3-CCA2-4D83-B004-20808A9DA7AA}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{A636BA01-D508-4FFF-8BF6-6F4951ECC0AE}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD Cinema\PowerDVDCinema13.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{4489E4E1-4FFB-4EEF-9D08-636DC3AD2602}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{F0BE3D99-934C-4148-B2B2-8877174BC40C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0F5FCAE5-EB6A-4623-AF42-07F2D4C55589}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6816A7CD-150B-421E-8FF6-41746CBB905D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{C6639562-99F7-481E-9A59-2C9DE042C54E}] => (Allow) C:\Users\Cristian\AppData\Roaming\Tencent\TxGameAssistant\GameDownload\TenioDL.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{DDC8DFD4-0575-4B36-8815-8303DA4392C8}] => (Allow) C:\Users\Cristian\AppData\Roaming\Tencent\TxGameAssistant\GameDownload\TenioDL.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{1ED81D79-0C9A-457F-8294-0E4B0502C571}] => (Allow) C:\Users\Cristian\AppData\Roaming\Tencent\TxGameAssistant\GameDownload\TenioDL.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{7AA6F337-95D7-4F01-9E70-24D2A9A170BE}] => (Allow) C:\Users\Cristian\AppData\Roaming\Tencent\TxGameAssistant\GameDownload\TenioDL.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [DNS Server Forward Rule - TCP - 9C1B7501-5994-40CF-91D9-23B163C69745 - 0] => (Allow) LPort=53
FirewallRules: [DNS Server Forward Rule - UDP - 9C1B7501-5994-40CF-91D9-23B163C69745 - 0] => (Allow) LPort=53
FirewallRules: [WMS-Dashboard] => (Allow) %ProgramFiles%\Windows MultiPoint Server\WmsDashboard.exe No File
FirewallRules: [WMS-Manager] => (Allow) %ProgramFiles%\Windows MultiPoint Server\WmsManager.exe No File
FirewallRules: [Microsoft-Windows-NFS-ClientCore-NfsClnt-UDP-Out] => (Allow) %systemroot%\system32\nfsclnt.exe No File
FirewallRules: [Microsoft-Windows-NFS-ClientCore-NfsClnt-TCP-Out] => (Allow) %systemroot%\system32\nfsclnt.exe No File
FirewallRules: [VIRT-MIGL-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe No File
FirewallRules: [VIRT-REMOTEDESKTOP-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe No File
FirewallRules: [WMS-Service] => (Allow) %ProgramFiles%\Windows MultiPoint Server\Wmssvc.exe No File
FirewallRules: [DNS Server Forward Rule - TCP - 8BA68CF4-F15A-4DE0-B51D-208B6CD9EFD8 - 0] => (Allow) LPort=53
FirewallRules: [DNS Server Forward Rule - UDP - 8BA68CF4-F15A-4DE0-B51D-208B6CD9EFD8 - 0] => (Allow) LPort=53
FirewallRules: [DNS Server Forward Rule - TCP - 70D433A8-6256-48A0-AFB9-E7DF3B1FA9C9 - 0] => (Allow) LPort=53
FirewallRules: [DNS Server Forward Rule - UDP - 70D433A8-6256-48A0-AFB9-E7DF3B1FA9C9 - 0] => (Allow) LPort=53
FirewallRules: [{E8FC0336-7356-45C3-8F1A-DB8FEFB35C76}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{EB06FB16-31C7-4E6D-A0F2-5971C104F804}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{BECE5F85-375C-426E-8D20-994833B1EEBD}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{DCF68FA6-A3B1-46D1-B954-4021944B0399}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{E526979C-7B49-4D35-AFA7-CC1F98563716}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)

==================== Restore Points =========================

06-04-2019 19:06:03 Instalador de Módulos de Windows
11-04-2019 08:26:57 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/16/2019 09:26:17 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (04/15/2019 10:53:40 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Windows no puede cargar el archivo DLL del contador extensible "C:\Windows\system32\sysmain.dll" (código de error de Win32 126).

Error: (04/15/2019 10:51:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa MicrosoftEdgeCP.exe (versión 11.0.17763.1) dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible sobre el problema, comprueba el historial de problemas en el panel de control de seguridad y mantenimiento.

Id. de proceso: 1778

Hora de Inicio: 01d4f4078635bef6

Hora de finalización: 4294967295

Ruta de la aplicación: C:\Windows\System32\MicrosoftEdgeCP.exe

Id. de informe: e115ae93-e230-4fe2-a024-44ff62afbf16

Nombre completo del paquete con errores: Microsoft.MicrosoftEdge_44.17763.1.0_neutral__8wekyb3d8bbwe

Id. de la aplicación relativa al paquete con errores: MicrosoftEdge

Tipo de bloqueo: Quiesce

Error: (04/15/2019 10:45:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: ZeroConfigService.exe, versión: 19.60.0.0, marca de tiempo: 0x58d16fa6
Nombre del módulo con errores: ZeroConfigService.exe, versión: 19.60.0.0, marca de tiempo: 0x58d16fa6
Código de excepción: 0xc0000409
Desplazamiento de errores: 0x000000000022af80
Identificador del proceso con errores: 0x1010
Hora de inicio de la aplicación con errores: 0x01d4f3a0a4af4976
Ruta de acceso de la aplicación con errores: C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
Ruta de acceso del módulo con errores: C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
Identificador del informe: 22a78f10-86e2-4700-a28d-a0ed3cb10b97
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (04/15/2019 09:30:26 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 512) (User: )
Description: Los Servicios de cifrado no pudieron inicializar el objeto "System Writer" de la copia de seguridad de VSS.

Details:
System Writer object failed to initialize VSS.

System Error:
Función incorrecta.
.

Error: (04/15/2019 09:10:22 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: El proveedor de eventos wsp_sr intentó registrar la consulta "select * from WSP_ReplicationGroupStorageModificationEvent" en la que no existe la clase de destino "WSP_ReplicationGroupStorageModificationEvent" en el espacio de nombres //./root/Microsoft/Windows/Storage/Providers_v2. Se omitirá la consulta.

Error: (04/15/2019 09:10:22 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: El proveedor de eventos wsp_sr intentó registrar la consulta "select * from WSP_ReplicationGroupStorageDepartureEvent" en la que no existe la clase de destino "WSP_ReplicationGroupStorageDepartureEvent" en el espacio de nombres //./root/Microsoft/Windows/Storage/Providers_v2. Se omitirá la consulta.

Error: (04/15/2019 09:10:22 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: El proveedor de eventos wsp_sr intentó registrar la consulta "select * from WSP_ReplicationGroupStorageArrivalEvent" en la que no existe la clase de destino "WSP_ReplicationGroupStorageArrivalEvent" en el espacio de nombres //./root/Microsoft/Windows/Storage/Providers_v2. Se omitirá la consulta.


System errors:
=============
Error: (04/16/2019 10:14:53 PM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {9E175B6D-F52A-11D8-B9A5-505054503030} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/16/2019 10:13:23 PM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {9E175B6D-F52A-11D8-B9A5-505054503030} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/16/2019 10:11:53 PM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {9E175B6D-F52A-11D8-B9A5-505054503030} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/16/2019 10:10:23 PM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {9E175B6D-F52A-11D8-B9A5-505054503030} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/16/2019 10:08:53 PM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {9E175B6D-F52A-11D8-B9A5-505054503030} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/16/2019 10:07:23 PM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {9E175B6D-F52A-11D8-B9A5-505054503030} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/16/2019 10:05:53 PM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {9E175B6D-F52A-11D8-B9A5-505054503030} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/16/2019 10:04:23 PM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {B52D54BB-4818-4EB9-AA80-F9EACD371DF8} no se registró con DCOM dentro del tiempo de espera requerido.


Windows Defender:
===================================
Date: 2019-04-16 11:55:01.011
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {BAB8E8C4-B5AF-4269-998F-9437EE8B8A87}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-16 11:44:24.409
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {7FABEF02-4B13-4845-9E5A-449405024D58}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-16 11:34:13.572
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {B3F3EA78-1513-41D9-9F4A-70FA73E0522A}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-16 11:26:45.350
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {F71F55F8-39D5-4C71-BC88-AD73BAD74A07}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-15 21:01:05.835
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {0EAF1E3E-3809-4A1A-822F-668C84511AC6}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-16 14:27:49.907
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.291.1661.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.15800.1
Código de error: 0x80240438
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulta Ayuda y soporte técnico. 

Date: 2019-04-09 22:56:41.644
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2019-04-09 22:53:53.409
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2019-04-09 22:08:02.415
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.291.1423.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.15800.1
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 

Date: 2019-04-09 21:57:51.263
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

CodeIntegrity:
===================================

Date: 2019-04-14 22:52:12.941
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-14 22:52:12.497
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-14 22:52:11.375
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-14 22:52:10.264
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-14 22:51:59.289
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-14 22:51:59.284
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-14 22:51:59.275
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-14 22:51:59.256
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-7500U CPU @ 2.70GHz
Percentage of memory in use: 26%
Total physical RAM: 16282.63 MB
Available physical RAM: 11977.5 MB
Total Virtual: 18714.63 MB
Available Virtual: 14015.62 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.13 GB) (Free:546.05 GB) NTFS

\\?\Volume{0c19fad2-55c0-479a-adcf-566988b5864e}\ () (Fixed) (Total:0.83 GB) (Free:0.34 GB) NTFS
\\?\Volume{7f0549cc-33f3-4edf-9934-a0d9b93512e3}\ (Windows RE tools) (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS
\\?\Volume{e035cff9-715e-4fb1-841b-1ffc591024d4}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: D2B6A39A)

Partition: GPT.

==================== End of Addition.txt ============================

Hola @Cristian_Alejandro

Sigue estos pasos:

Corta el ejecutable de FRST, que lo tienes en:

C:\Users\Cristian\Downloads

Y pegarlo en tu escritorio.


Luego:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga DelFix en el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

2.- Desactiva Temporalmente tu antivirus.

3.- Abre un nuevo archivo Notepad y copia y pega este contenido:


Start
CloseProcesses:
CreateRestorePoint:
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\...\MountPoints2: {35d3d4ce-42d4-11e9-b151-18dbf221996b} - "E:\HiSuiteDownLoader.exe" 
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
S3 Browser; %SystemRoot%\System32\browser.dll [X]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
AlternateDataStreams: C:\Users\Cristian\AppData\Local\JQVR7Mhh5v8:7r2ud9tO6PCvvwHmDhI4yrj [2086]
AlternateDataStreams: C:\Users\Cristian\AppData\Local\sdDoIpdqh:fATUEZKIRfcuc6z2zcckUV [1948]
FirewallRules: [{BB29EED4-F885-4FF5-A14E-472E0E255BAE}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMR\PowerDVD13DMREngine.exe No File
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.

Nos comentas .

Salu2.

Fix result of Farbar Recovery Scan Tool (x64) Version: 17.04.2019
Ran by Cristian (18-04-2019 09:57:58) Run:1
Running from C:\Users\Cristian\Desktop
Loaded Profiles: Cristian (Available Profiles: Cristian)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\...\MountPoints2: {35d3d4ce-42d4-11e9-b151-18dbf221996b} - "E:\HiSuiteDownLoader.exe" 
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
S3 Browser; %SystemRoot%\System32\browser.dll [X]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
AlternateDataStreams: C:\Users\Cristian\AppData\Local\JQVR7Mhh5v8:7r2ud9tO6PCvvwHmDhI4yrj [2086]
AlternateDataStreams: C:\Users\Cristian\AppData\Local\sdDoIpdqh:fATUEZKIRfcuc6z2zcckUV [1948]
FirewallRules: [{BB29EED4-F885-4FF5-A14E-472E0E255BAE}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMR\PowerDVD13DMREngine.exe No File
CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
*****************

Processes closed successfully.
Restore point was successfully created.
"HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Smart Cleaning" => removed successfully
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{35d3d4ce-42d4-11e9-b151-18dbf221996b} => removed successfully
HKLM\Software\Classes\CLSID\{35d3d4ce-42d4-11e9-b151-18dbf221996b} => not found
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => removed successfully
HKLM\System\CurrentControlSet\Services\Browser => removed successfully
Browser => service removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\CLSID\{B298D29A-A6ED-11DE-BA8C-A68E55D89593} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\CLSID\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
C:\Users\Cristian\AppData\Local\JQVR7Mhh5v8 => ":7r2ud9tO6PCvvwHmDhI4yrj" ADS removed successfully
C:\Users\Cristian\AppData\Local\sdDoIpdqh => ":fATUEZKIRfcuc6z2zcckUV" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BB29EED4-F885-4FF5-A14E-472E0E255BAE}" => removed successfully

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 1 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de  rea local* 2 mientras los medios
est‚n desconectados.

Adaptador de Ethernet Ethernet:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 1:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Conexi¢n de  rea local* 2:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Wi-Fi:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::854f:84ef:25d:fe42%17
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.116
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.0.1

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

0 out of 0 jobs canceled.

========= End of CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= RemoveProxy: =========

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => removed successfully
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer => removed successfully
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\SOFTWARE\Policies\Microsoft\Internet Explorer => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 16946383 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 149600646 B
Edge => 539415 B
Chrome => 423709891 B
Firefox => 1094419135 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 8591340 B
systemprofile32 => 0 B
LocalService => 12798 B
LocalService => 0 B
NetworkService => 47568 B
NetworkService => 0 B
Cristian => 155543416 B

RecycleBin => 1367115 B
EmptyTemp: => 1.7 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 10:00:03 ====

Hola @Cristian_Alejandro

1.- Desinstala con Revo Uninstaller en su Modo Avanzado:

  • Ccleaner

Manual de Revo Uninstaller.

Reinicias el equipo.

Y lo vuelves a instalar:

Nos comentas.

Salu2

Ahora el explorador de archivos y el panel de control funcionan normalmente, pero aún tarda en apagarse y CcCleaner sigue sin poder borrar el historial de internet explorer aveces no avanza del 14% y otras veces no avanza del 18%

Hola @Cristian_Alejandro

Realizas lo siguiente:

1.- Desinstala nuevamente con Revo Unistaller, en su Modo Avanzado >>> Ccleaner, no lo instalaras aun.

2.- Vas a Inicio >>> ejecutar >>> escribes %temp% >>> enter.

  • Eliminas todo el contenido de la carpeta %temp%

3.- Ejecutas nuevamente FRST como lo hiciste la primera vez y nos pegas sus nuevos reportes.

Salu2

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22.04.2019
Ran by Cristian (administrator) on DELL-5567 (Dell Inc. Inspiron 5567) (23-04-2019 07:22:14)
Running from C:\Users\Cristian\Desktop
Loaded Profiles: Cristian &  (Available Profiles: Cristian)
Platform: Windows 10 Home Single Language Version 1809 17763.437 (X64) Language: Español (México)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0335202.inf_amd64_a8ecda95d87b1c73\B334840\atiesrxx.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxCUIService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHDCPSvc.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Nitro Software, Inc. -> Nitro Software, Inc.) C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe
(Nitro Software, Inc. -> ) C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1903.4-0\MsMpEng.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHeciSvc.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe
(PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\pcdrwi.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxEM.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\QtWebEngineProcess.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0335202.inf_amd64_a8ecda95d87b1c73\B334840\atieclxx.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [177928 2019-04-17] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9269088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506144 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [1220416 2018-03-06] (Waves Inc -> Waves Audio Ltd.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [438888 2014-01-15] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [4426560 2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [PowerDVD13Agent] => C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe [513048 2013-03-20] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\...\Run: [SideSync] => C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe [12476064 2019-01-11] (Samsung Electronics CO., LTD. -> )
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04232019070737656\...\Run: [SideSync] => C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe [12476064 2019-01-11] (Samsung Electronics CO., LTD. -> )
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04232019070737656\...\RunOnce: [Application Restart #0] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [12544904 2018-10-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Drivers32: [msacm.l3codecp] => C:\Windows\SysWOW64\l3codecp.acm [189952 2018-09-15] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-10] (Google LLC -> Google Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0174F2A9-E45E-42F1-BA6D-07F9611E94DC} - System32\Tasks\Microsoft\Windows\Secondary Authentication Factor\BackgroundTaskDeployment => C:\Windows\System32\DeviceCredentialDeployment.exe [80896 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
Task: {0997E8FF-85E2-4842-AF6D-1781DD74A83A} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032 2018-10-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {129EC844-4D90-4605-B450-48B91B75C68D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe [471472 2019-04-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {2719CFAD-1227-4367-84FB-676F26F7E047} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe [471472 2019-04-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {3D5C1241-28A2-4743-AD4C-42CB3CD20513} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {4FC9C2D7-6EE3-4A2F-9D97-370C18E76A21} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe [471472 2019-04-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {64335987-A479-4384-B244-DA58B20CD7D7} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {6AFC9DFC-F902-4E55-98E0-3E7C930AF67C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {73C57087-A9DA-4F08-B5BB-16D37EB8AEEA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-03] (Google Inc -> Google LLC)
Task: {8B5CAB56-F381-4425-BFCD-A8C0E7EFA5CD} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [63880 2018-10-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9871FAA5-66B2-4D6F-8CCB-53BEAB307B83} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1512920 2019-03-20] (Dell Inc. -> Dell Inc.)
Task: {A43CB6FF-ED0B-49C6-A3F8-7AC926E239C9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {A6E37FA7-B1B1-4879-BC3E-8D19C6E2F858} - System32\Tasks\[email protected] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {B42BB526-BA57-4402-A655-B5B72FABF74B} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [816960 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {B888E603-0071-4812-9E9E-FFCE00513BEB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe [471472 2019-04-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {BCB40581-BF03-4ABD-A676-67216A825F95} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {CBC6F61B-1E51-47E7-8AF4-9ACF516F7972} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-03-26] (Dropbox, Inc -> Dropbox, Inc.)
Task: {D55179C2-E712-4B1E-A525-92D37593EBBE} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-03-26] (Dropbox, Inc -> Dropbox, Inc.)
Task: {D64EB29E-4711-48BF-8F93-0E4FD7912F90} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [744968 2019-03-01] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {E5E8F9CF-E31B-47BD-BD4A-53355B41675E} - System32\Tasks\S-1-5-21-3287089801-3443176771-1087233360-1001\DataSenseLiveTileTask => C:\Windows\System32\DataUsageLiveTileTask.exe [134144 2019-03-18] (Microsoft Windows -> Microsoft Corporation)
Task: {F8CD683D-AF71-47E1-82D8-BAB3AC3D976B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-03] (Google Inc -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{a9777bd1-e21d-497e-87f9-8dca1477b3ed}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: rqiushf8.default-1554757225691
FF ProfilePath: C:\Users\Cristian\AppData\Roaming\Mozilla\Firefox\Profiles\rqiushf8.default-1554757225691 [2019-04-18]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 10\npnitromozilla.dll [2016-07-22] (Nitro Software, Inc. -> Nitro PDF)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-04-03] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-04-03] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-03-25] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com.ec/
CHR Profile: C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default [2019-04-23]
CHR Extension: (Presentaciones) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-04-03]
CHR Extension: (Documentos) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-04-03]
CHR Extension: (Google Drive) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-04-03]
CHR Extension: (Video Downloader professional) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\bacakpdjpomjaelpkpkabmedhkoongbi [2019-04-04]
CHR Extension: (YouTube) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-04-03]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-04-20]
CHR Extension: (Hojas de cálculo) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-04-03]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-04-03]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-04-03]
CHR Extension: (Gmail) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-03]
CHR Extension: (Chrome Media Router) - C:\Users\Cristian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-03]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\Windows\System32\DriverStore\FileRepository\u0335202.inf_amd64_a8ecda95d87b1c73\B334840\atiesrxx.exe [516016 2018-11-04] (Advanced Micro Devices, Inc. -> AMD)
R2 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2013-03-20] (CyberLink Corp. -> CyberLink)
R2 CyberLink PowerDVD 13 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [323336 2013-03-20] (CyberLink Corp. -> CyberLink)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-03-26] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-03-26] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [209392 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3363824 2019-02-28] (Dell Inc -> Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [218096 2019-02-28] (Dell Inc -> Dell Inc.)
R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1542\DSAPI.exe [1038144 2019-04-16] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2359312 2019-04-17] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2359312 2019-04-17] (ESET, spol. s r.o. -> ESET)
R2 esifsvc; C:\Windows\System32\Intel\DPTF\esif_uf.exe [1705040 2017-11-21] (Intel Corporation -> Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [17976 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\Windows\system32\ibtsiva.exe [190208 2016-11-08] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [742704 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [668472 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [213648 2017-11-09] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2017-03-21] (Intel Corporation-Wireless Connectivity Solutions -> )
R2 NitroDriverReadSpool10; C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe [327320 2016-07-22] (Nitro Software, Inc. -> Nitro Software, Inc.)
R2 NitroUpdateService; C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe [417944 2016-07-22] (Nitro Software, Inc. -> )
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [268128 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39384 2019-03-20] (Dell Inc. -> Dell Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [882496 2018-03-06] (Waves Inc -> Waves Audio Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\NisSrv.exe [3856504 2019-04-08] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MsMpEng.exe [113992 2019-04-08] (Microsoft Corporation -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3750304 2017-03-21] (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\u0335202.inf_amd64_a8ecda95d87b1c73\B334840\atikmdag.sys [47511984 2018-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DriverStore\FileRepository\u0335202.inf_amd64_a8ecda95d87b1c73\B334840\atikmpag.sys [597936 2018-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [313112 2019-03-14] (Bluestack Systems, Inc. -> Bluestack System Inc. )
R3 DDDriver; C:\Windows\System32\drivers\dddriver64Dcsa.sys [40824 2019-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\Windows\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [31560 2016-12-03] (WDKTestCert Andy_Chen6,131219483243550933 -> OSR Open Systems Resources, Inc.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\Windows\System32\drivers\dptf_acpi.sys [74144 2017-11-21] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [69536 2017-11-21] (Intel Corporation -> Intel Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [145600 2019-03-14] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15800 2019-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [188240 2019-03-14] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [110000 2019-03-14] (ESET, spol. s r.o. -> ESET)
R3 esif_lf; C:\Windows\System32\drivers\esif_lf.sys [382880 2017-11-21] (Intel Corporation -> Intel Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-04-11] (Malwarebytes Corporation -> Malwarebytes)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [356608 2016-11-08] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [198512 2019-04-11] (Malwarebytes Corporation -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [127136 2019-04-20] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73912 2019-04-20] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [274416 2019-04-20] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [114040 2019-04-20] (Malwarebytes Corporation -> Malwarebytes)
R3 Netwtw04; C:\Windows\System32\drivers\Netwtw04.sys [7708160 2018-09-15] (Microsoft Windows -> Intel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [955392 2016-12-07] (Realtek Semiconductor Corp. -> Realtek )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [436224 2016-11-12] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver; C:\Windows\System32\Drivers\ss_conn_usb_driver.sys [43648 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-04-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [343520 2019-04-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [68576 2019-04-08] (Microsoft Windows -> Microsoft Corporation)
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [130320 2013-03-19] (CyberLink Corp. -> CyberLink Corp.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-23 07:22 - 2019-04-23 07:23 - 000031771 _____ C:\Users\Cristian\Desktop\FRST.txt
2019-04-23 07:21 - 2019-04-23 07:21 - 002436096 _____ (Farbar) C:\Users\Cristian\Desktop\FRST64.exe
2019-04-23 07:21 - 2019-04-23 07:21 - 000000000 ____D C:\Users\Cristian\Desktop\FRST-OlderVersion
2019-04-22 06:27 - 2019-04-22 06:27 - 000044547 _____ C:\Users\Cristian\Desktop\PROCESOS DE ENSEÑANZA Y APRENDIZAJE DEL INGLÉS DE.pptx
2019-04-20 21:08 - 2019-04-20 21:08 - 000127136 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-04-20 21:08 - 2019-04-20 21:08 - 000114040 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-04-20 21:08 - 2019-04-20 21:08 - 000073912 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-04-20 21:07 - 2019-04-20 21:07 - 000274416 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-04-18 09:52 - 2019-04-18 09:52 - 000000244 _____ C:\DelFix.txt
2019-04-18 09:52 - 2019-04-18 09:52 - 000000000 ____D C:\Windows\ERUNT
2019-04-18 09:46 - 2019-04-18 09:46 - 000797760 _____ C:\Users\Cristian\Downloads\delfix.exe
2019-04-17 10:39 - 2019-04-17 10:39 - 000003374 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3287089801-3443176771-1087233360-1001
2019-04-17 10:39 - 2019-04-17 10:39 - 000002376 _____ C:\Users\Cristian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-16 22:11 - 2019-04-23 07:22 - 000000000 ____D C:\FRST
2019-04-16 13:20 - 2019-04-16 13:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2019-04-15 21:15 - 2019-04-15 21:15 - 000003650 _____ C:\Windows\System32\Tasks\CreateExplorerShellUnelevatedTask
2019-04-15 20:18 - 2019-04-15 20:18 - 000000207 _____ C:\Windows\tweaking.com-regbackup-DELL-5567-Windows-10-Home-Single-Language-(64-bit).dat
2019-04-15 20:17 - 2019-04-15 20:17 - 000000000 ____D C:\RegBackup
2019-04-15 20:15 - 2019-04-15 20:17 - 000295297 _____ C:\Windows\Tweaking.com - Windows Repair Setup Log.txt
2019-04-14 22:35 - 2019-04-14 22:35 - 000000000 ____D C:\ProgramData\Tencent
2019-04-14 22:02 - 2019-04-15 11:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software
2019-04-14 21:56 - 2019-04-15 11:02 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\Tencent
2019-04-14 21:56 - 2019-04-14 21:56 - 000000000 ____D C:\Temp
2019-04-14 20:25 - 2019-04-14 20:25 - 000187529 _____ C:\Users\Cristian\Downloads\Dialnet-ElPrestamoLexicoYSuAdaptacion-6467347.pdf
2019-04-11 09:26 - 2019-04-11 09:26 - 000198512 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-04-11 09:21 - 2019-04-12 07:35 - 000000000 ____D C:\AdwCleaner
2019-04-11 09:21 - 2019-04-11 09:21 - 000000000 ____D C:\Users\Cristian\AppData\Local\mbam
2019-04-11 09:20 - 2019-04-11 09:26 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-04-11 09:20 - 2019-04-11 09:20 - 000001920 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-04-11 09:20 - 2019-04-11 09:20 - 000000000 ____D C:\Users\Cristian\AppData\Local\mbamtray
2019-04-11 09:20 - 2019-04-11 09:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-04-11 09:20 - 2019-04-11 09:20 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-04-11 09:20 - 2019-04-11 09:20 - 000000000 ____D C:\Program Files\Malwarebytes
2019-04-11 09:20 - 2019-02-01 11:20 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2019-04-11 08:41 - 2019-04-11 08:41 - 019025408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 006071296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 005436904 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 003551112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 000340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-04-11 08:41 - 2019-04-11 08:41 - 000263600 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-04-11 08:40 - 2019-04-11 08:41 - 020815360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 026810368 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 023440896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 012843520 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 012139008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 009682744 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-04-11 08:40 - 2019-04-11 08:40 - 007877120 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 007645608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 006544824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 004660224 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 004588536 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2019-04-11 08:40 - 2019-04-11 08:40 - 003904512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 003657728 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 003384832 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 002925880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 002720256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 002469376 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 002438368 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 002189312 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 002022304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001886208 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001830200 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001701888 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001672704 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001671352 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001605120 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001590064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001496576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001478968 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001467344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001387520 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001309696 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001256448 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001253688 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-04-11 08:40 - 2019-04-11 08:40 - 001221944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001072640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 001054200 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-04-11 08:40 - 2019-04-11 08:40 - 001044280 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-04-11 08:40 - 2019-04-11 08:40 - 001019392 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000912384 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000865784 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000793832 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000725928 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000653040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000649064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000642048 _____ (Microsoft Corporation) C:\Windows\system32\SharedRealitySvc.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000604008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000543744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 000532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000531968 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000474928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-04-11 08:40 - 2019-04-11 08:40 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000346624 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000301568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 000273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000183296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000143872 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2019-04-11 08:40 - 2019-04-11 08:40 - 000133120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000095544 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000090424 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2019-04-11 08:40 - 2019-04-11 08:40 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2019-04-11 08:28 - 2019-04-11 08:27 - 000835480 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-04-11 08:28 - 2019-04-11 08:27 - 000179608 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-04-11 06:17 - 2019-04-11 06:17 - 001101272 _____ C:\Users\Cristian\Desktop\La praxis.pptx
2019-04-11 04:09 - 2019-04-11 04:09 - 000759485 _____ C:\Users\Cristian\Downloads\La praxis.pptx
2019-04-10 14:26 - 2019-04-11 08:50 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-04-10 12:20 - 2019-04-10 12:20 - 003086273 _____ C:\Users\Cristian\Downloads\Presentación1.pptx
2019-04-09 23:19 - 2019-04-09 23:19 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-04-09 09:24 - 2019-04-09 09:24 - 000000000 ____D C:\Program Files\EnigmaSoft
2019-04-08 15:49 - 2019-04-11 08:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-04-08 13:53 - 2019-04-08 13:53 - 007919104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 003421696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2019-04-08 13:53 - 2019-04-08 13:53 - 001521664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 001459080 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 001297120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 001294520 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 001259320 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2019-04-08 13:53 - 2019-04-08 13:53 - 001072424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000897536 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000815616 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000684032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapi.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000454144 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000370688 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000331776 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fveapibase.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000309760 _____ (Microsoft Corporation) C:\Windows\system32\fveui.dll
2019-04-08 13:53 - 2019-04-08 13:53 - 000032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfts.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 008898048 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 004527624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 003690496 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 003656192 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 002942464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 002275896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 002127360 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 001760768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 001506304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 001370624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 001064448 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 001047552 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 001026792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000964096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000828728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 000793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000772608 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000762880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000731648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000730112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000712192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000701440 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000528384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000460800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000424960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\FSClient.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000176640 _____ (Microsoft Corporation) C:\Windows\system32\spacebridge.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredui.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BitLockerCsp.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000097280 _____ (Microsoft Corporation) C:\Windows\system32\EduPrintProv.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 000096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvsetup.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 000059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\RDSPnf.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntlanman.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\nshhttp.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscapi.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\perfts.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfproc.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshhttp.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dataclen.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2019-04-08 13:52 - 2019-04-08 13:52 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcPing.exe
2019-04-08 13:52 - 2019-04-08 13:52 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscdll.dll
2019-04-08 13:51 - 2019-04-08 13:52 - 005205448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 015223296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 006440960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 006309040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 005765120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2019-04-08 13:51 - 2019-04-08 13:51 - 003496448 _____ (Microsoft Corporation)     C:\Windows\SysWOW64\Windows.AI.MachineLearning.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 002777224 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 002765312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 002701304 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 002689024 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 002627384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
    2019-04-08 13:51 - 2019-04-08 13:51 - 002346496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 002073960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 001994768 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 001860096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 001711104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 001687552 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 001674480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 001615872 ____R (The ICU Project) C:\Windows\SysWOW64\icuin.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 001458056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 001360184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
    2019-04-08 13:51 - 2019-04-08 13:51 - 001249280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallService.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 001155072 ____R (The ICU Project) C:\Windows\SysWOW64\icuuc.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 001001472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000982528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Vpn.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000976896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000948224 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000909840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
    2019-04-08 13:51 - 2019-04-08 13:51 - 000884224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000882688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
    2019-04-08 13:51 - 2019-04-08 13:51 - 000845824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000821048 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000769536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
    2019-04-08 13:51 - 2019-04-08 13:51 - 000711168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000672256 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000617784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000598544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000551936 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000540448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcext.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000414720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
    2019-04-08 13:51 - 2019-04-08 13:51 - 000408528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000385536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
    2019-04-08 13:51 - 2019-04-08 13:51 - 000349184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
    2019-04-08 13:51 - 2019-04-08 13:51 - 000332800 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000324096 _____ (Microsoft Corporation) C:\Windows\system32\sppcommdlg.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000312632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000294912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RADCUI.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerCsp.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000201216 _____ (Microsoft Corporation) C:\Windows\system32\wincredui.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000188416 _____ (Microsoft Corporation) C:\Windows\system32\DMPushRouterCore.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000143880 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000115360 _____ (Microsoft Corporation) C:\Windows\system32\phoneactivate.exe
    2019-04-08 13:51 - 2019-04-08 13:51 - 000107832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\perfproc.dll
    2019-04-08 13:51 - 2019-04-08 13:51 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmintegrator.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 006925824 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 004704272 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 004304896 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 002871304 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
    2019-04-08 13:50 - 2019-04-08 13:50 - 001969464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
    2019-04-08 13:50 - 2019-04-08 13:50 - 001918464 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 001697752 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
    2019-04-08 13:50 - 2019-04-08 13:50 - 001647632 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 001641400 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 001468952 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
    2019-04-08 13:50 - 2019-04-08 13:50 - 001395056 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 001342400 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
    2019-04-08 13:50 - 2019-04-08 13:50 - 001217024 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 001179680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
    2019-04-08 13:50 - 2019-04-08 13:50 - 001145856 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000998712 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
    2019-04-08 13:50 - 2019-04-08 13:50 - 000981816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys
    2019-04-08 13:50 - 2019-04-08 13:50 - 000927232 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000888320 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000865792 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000809784 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000776192 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000737080 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000730936 _____ (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000699392 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Language.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000660480 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000620560 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000609792 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000579072 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000568632 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000553784 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000506880 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAppMgmtSvc.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000505344 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000500224 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_PCDisplay.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
    2019-04-08 13:50 - 2019-04-08 13:50 - 000461112 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000448000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.Workflow.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000407552 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000343552 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000322568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000257696 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\SharedPCCSP.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.SharedPC.CredentialProvider.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000177152 _____ (Microsoft Corporation) C:\Windows\system32\LanguageComponentsInstaller.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
    2019-04-08 13:50 - 2019-04-08 13:50 - 000159272 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
    2019-04-08 13:50 - 2019-04-08 13:50 - 000147496 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
    2019-04-08 13:50 - 2019-04-08 13:50 - 000134456 _____ (Microsoft Corporation) C:\Windows\system32\ImplatSetup.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000071208 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000049664 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
    2019-04-08 13:50 - 2019-04-08 13:50 - 000039736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WppRecorder.sys
    2019-04-08 13:50 - 2019-04-08 13:50 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\RpcPing.exe
    2019-04-08 13:50 - 2019-04-08 13:50 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
    2019-04-08 13:49 - 2019-04-08 13:50 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 017513472 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 007883776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 004866560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AI.MachineLearning.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 003982848 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 003557888 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 003377976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
    2019-04-08 13:49 - 2019-04-08 13:49 - 003334144 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 002995712 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 002842624 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 002042368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 001844448 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 001671680 _____ (Microsoft Corporation) C:\Windows\system32\InstallService.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 001616384 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 001315328 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 001311232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 001259320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
    2019-04-08 13:49 - 2019-04-08 13:49 - 001213752 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 001058304 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
    2019-04-08 13:49 - 2019-04-08 13:49 - 001057792 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
    2019-04-08 13:49 - 2019-04-08 13:49 - 001035776 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 001007616 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000984888 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
    2019-04-08 13:49 - 2019-04-08 13:49 - 000974352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000926208 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000882176 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
    2019-04-08 13:49 - 2019-04-08 13:49 - 000877056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.BackgroundMediaPlayback.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000874496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000855040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Playback.MediaPlayer.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000807424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
    2019-04-08 13:49 - 2019-04-08 13:49 - 000757664 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
    2019-04-08 13:49 - 2019-04-08 13:49 - 000756736 _____ (Microsoft Corporation) C:\Windows\system32\DolbyHrtfEnc.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000676352 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000651064 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
    2019-04-08 13:49 - 2019-04-08 13:49 - 000611840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000552448 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000551936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
    2019-04-08 13:49 - 2019-04-08 13:49 - 000540672 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
    2019-04-08 13:49 - 2019-04-08 13:49 - 000508208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000485192 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_enclave.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000475648 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000404792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
    2019-04-08 13:49 - 2019-04-08 13:49 - 000386360 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000343984 _____ (Microsoft Corporation) C:\Windows\system32\AudioSrvPolicyManager.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000283032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtapi.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000263680 _____ (Microsoft Corporation) C:\Windows\system32\WiFiCloudStore.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000255128 _____ (Microsoft Corporation) C:\Windows\system32\SgrmBroker.exe
    2019-04-08 13:49 - 2019-04-08 13:49 - 000246784 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000157496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
    2019-04-08 13:49 - 2019-04-08 13:49 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000121344 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\RjvMDMConfig.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\negoexts.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000111104 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
    2019-04-08 13:49 - 2019-04-08 13:49 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\drvsetup.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000097808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
    2019-04-08 13:49 - 2019-04-08 13:49 - 000079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
    2019-04-08 13:49 - 2019-04-08 13:49 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
    2019-04-08 13:49 - 2019-04-08 13:49 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\cmintegrator.dll
    2019-04-08 13:49 - 2019-04-08 13:49 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 007687576 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 004991112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 003334496 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 002592816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 001892864 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 001856000 ____R (The ICU Project) C:\Windows\system32\icuin.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 001567232 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 001191728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 001053192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys
    2019-04-08 13:48 - 2019-04-08 13:48 - 001022616 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000982880 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000871792 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000850760 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000822272 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
    2019-04-08 13:48 - 2019-04-08 13:48 - 000799568 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000766480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000761280 _____ (Microsoft Corporation) C:\Windows\system32\pkeyhelper.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000675096 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000580024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000522752 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000513040 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000506168 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000469504 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000463672 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000447488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000407504 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000386872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000385024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000384312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000368640 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000349184 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000306488 _____ (Microsoft Corporation) C:\Windows\system32\computestorage.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000300032 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000264704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000169784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
    2019-04-08 13:48 - 2019-04-08 13:48 - 000165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spacebridge.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000159112 _____ (Microsoft Corporation) C:\Windows\system32\winquic.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000156984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winquic.sys
    2019-04-08 13:48 - 2019-04-08 13:48 - 000100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\negoexts.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000098664 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000089336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpr.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\KdsCli.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\wcimage.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000035640 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
    2019-04-08 13:48 - 2019-04-08 13:48 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
    2019-04-08 13:48 - 2019-04-08 13:48 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
    2019-04-08 13:46 - 2019-04-08 13:46 - 002017792 _____ C:\Windows\system32\rdpnano.dll
    2019-04-08 13:46 - 2019-04-08 13:46 - 000651792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
    2019-04-08 13:46 - 2019-04-08 13:46 - 000607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
    2019-04-08 13:46 - 2019-04-08 13:46 - 000556544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
    2019-04-08 13:46 - 2019-04-08 13:46 - 000421392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
    2019-04-08 13:46 - 2019-04-08 13:46 - 000300344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
    2019-04-08 13:46 - 2019-04-08 13:46 - 000234808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netvsc.sys
    2019-04-08 13:46 - 2019-04-08 13:46 - 000195896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
    2019-04-08 13:46 - 2019-04-08 13:46 - 000131384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
    2019-04-07 13:29 - 2019-04-17 08:26 - 005107504 _____ C:\Windows\system32\FNTCACHE.DAT
    2019-04-06 18:43 - 2019-04-06 18:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
    2019-04-04 16:34 - 2015-10-05 09:48 - 009832760 _____ (Malwarebytes) C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mbam.exe
    2019-04-03 15:59 - 2019-04-03 15:59 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
    2019-04-03 15:59 - 2019-04-03 15:59 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
    2019-04-03 15:59 - 2019-04-03 15:59 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
    2019-04-03 15:59 - 2019-04-03 15:59 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
    2019-04-03 09:28 - 2019-04-10 08:26 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
    2019-04-03 09:25 - 2019-04-03 09:25 - 000003416 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
    2019-04-03 09:25 - 2019-04-03 09:25 - 000003292 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
    2019-04-02 08:14 - 2019-04-02 08:14 - 000000000 ___HD C:\OneDriveTemp
    2019-03-31 23:55 - 2019-03-31 23:55 - 000000000 ____D C:\Users\Cristian\AppData\Local\Cyberlink SoftDMA
    2019-03-31 23:53 - 2019-03-31 23:53 - 000000000 ____D C:\Users\Cristian\AppData\Local\MediaServer
    2019-03-31 23:52 - 2019-03-31 23:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 13
    2019-03-31 23:52 - 2019-03-31 23:52 - 000000000 ____D C:\Users\Cristian\AppData\Local\CyberLink
    2019-03-31 23:51 - 2019-03-31 23:51 - 000000000 ____D C:\Program Files (x86)\CyberLink
    2019-03-31 23:28 - 2019-03-31 23:26 - 000505128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
    2019-03-31 23:28 - 2019-03-31 23:26 - 000353576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
    2019-03-31 23:28 - 2019-03-31 23:26 - 000029480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
    2019-03-31 23:15 - 2019-03-31 23:55 - 000000000 ____D C:\Users\Cristian\Documents\CyberLink
    2019-03-31 23:15 - 2019-03-31 23:52 - 000000000 ____D C:\Users\Public\CyberLink
    2019-03-31 23:11 - 2019-03-31 23:51 - 000000000 ____D C:\ProgramData\Temp
    2019-03-31 21:46 - 2019-04-01 00:00 - 000000000 ____D C:\Users\Public\Documents\Cyberlink
    2019-03-31 21:42 - 2019-03-31 23:55 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\CyberLink
    2019-03-31 21:41 - 2019-04-01 00:00 - 000000000 ____D C:\ProgramData\CyberLink
    2019-03-31 21:41 - 2019-03-31 21:41 - 000000000 ____D C:\Windows\system32\Drivers\CLFCL5.18
    2019-03-31 21:41 - 2019-03-31 21:41 - 000000000 ____D C:\ProgramData\PDVD
    2019-03-31 21:40 - 2019-03-31 23:50 - 000000000 ____D C:\ProgramData\install_clap
    2019-03-31 21:40 - 2019-03-31 21:40 - 000000000 ____D C:\ProgramData\CLSK
    2019-03-31 21:06 - 2019-03-31 21:55 - 000000000 ____D C:\Program Files (x86)\Auto
    2019-03-31 21:04 - 2019-03-31 21:31 - 000722944 _____ C:\Users\Cristian\AppData\Local\sha.db
    2019-03-31 21:04 - 2019-03-31 21:04 - 000140800 _____ C:\Users\Cristian\AppData\Local\installer.dat
    2019-03-31 21:03 - 2019-04-11 21:44 - 000000000 ____D C:\ProgramData\{CC16BE96-A7FC-96C9-84BA-4A1A845D134B}
    2019-03-31 21:03 - 2019-04-11 21:44 - 000000000 ____D C:\ProgramData\{34117DF6-649C-6ECE-E479-4DE2E49E14B3}
    2019-03-31 21:02 - 2019-03-31 21:02 - 000000000 ____D C:\Users\Cristian\AppData\Local\AdvinstAnalytics
    2019-03-30 13:59 - 2019-03-30 13:59 - 000096514 _____ C:\Windows\uninstaller.dat
    2019-03-27 10:02 - 2019-03-27 10:02 - 1813417318 _____ C:\Users\Cristian\Documents\main.10565.com.tencent.ig.obb
    2019-03-27 00:26 - 2019-03-28 20:26 - 000000000 ____D C:\Users\Cristian\Documents\My Cmaps
    2019-03-27 00:26 - 2019-03-28 20:26 - 000000000 ____D C:\Users\Cristian\CmapToolsLogs
    2019-03-27 00:26 - 2019-03-28 20:26 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\CmapTools
    2019-03-27 00:25 - 2019-03-27 00:25 - 000000000 ___HD C:\Program Files\Zero G Registry
    2019-03-27 00:25 - 2019-03-27 00:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IHMC CmapTools
    2019-03-27 00:25 - 2019-03-27 00:25 - 000000000 ____D C:\Program Files\IHMC CmapTools
    2019-03-27 00:24 - 2019-03-27 00:24 - 000000000 ____D C:\Users\Cristian\InstallAnywhere
    2019-03-27 00:17 - 2019-04-23 07:09 - 000000000 ___RD C:\Users\Cristian\Dropbox
    2019-03-27 00:11 - 2019-03-27 00:11 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\Dropbox
    2019-03-26 22:59 - 2019-04-06 18:44 - 000000000 ____D C:\Program Files (x86)\Dropbox
    2019-03-26 22:59 - 2019-03-31 21:53 - 000000974 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
    2019-03-26 22:59 - 2019-03-31 21:53 - 000000970 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
    2019-03-26 22:59 - 2019-03-27 11:38 - 000000000 ____D C:\Users\Cristian\AppData\Local\Dropbox
    2019-03-26 22:59 - 2019-03-26 22:59 - 000004034 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
    2019-03-26 22:59 - 2019-03-26 22:59 - 000003802 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
    2019-03-26 22:59 - 2019-03-26 22:59 - 000000000 ____D C:\ProgramData\Dropbox

    ==================== One month (modified) ========

    (If an entry is included in the fixlist, the file/folder will be moved.)

    2019-04-23 07:09 - 2018-09-30 12:31 - 000000000 ____D C:\Users\Cristian\AppData\Local\Adobe
    2019-04-23 07:06 - 2018-09-15 02:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
    2019-04-23 07:06 - 2018-08-26 18:57 - 000000000 ____D C:\Users\Cristian\IntelGraphicsProfiles
    2019-04-22 20:50 - 2018-12-25 01:49 - 000000000 ____D C:\Windows\system32\SleepStudy
    2019-04-22 12:45 - 2018-12-25 02:18 - 000004214 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{9538A893-5F29-47AC-8E8E-84B014346D1A}
    2019-04-22 06:00 - 2018-08-26 16:51 - 000000000 ____D C:\Users\Cristian\AppData\Local\Packages
    2019-04-20 21:10 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\AppReadiness
    2019-04-20 21:07 - 2018-12-25 02:18 - 000000006 ____H C:\Windows\Tasks\SA.DAT
    2019-04-20 21:06 - 2018-09-15 01:09 - 000524288 _____ C:\Windows\system32\config\BBI
    2019-04-19 14:49 - 2018-09-15 02:23 - 000000000 ____D C:\Windows\CbsTemp
    2019-04-19 05:10 - 2018-09-13 19:22 - 000000629 _____ C:\Windows\SysWOW64\SmartFlow.txt
    2019-04-19 05:06 - 2018-12-16 23:20 - 000000000 _____ C:\Windows\SysWOW64\SpyWareFolderstoFilter.txt
    2019-04-19 05:04 - 2018-09-08 19:28 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\Nitro
    2019-04-18 22:47 - 2018-09-06 10:58 - 000000000 ____D C:\Users\Cristian\AppData\Local\Sony
    2019-04-18 22:47 - 2018-09-06 10:57 - 000000000 ____D C:\Users\Cristian\AppData\Roaming\Sony
    2019-04-17 10:39 - 2018-08-26 16:54 - 000000000 ___RD C:\Users\Cristian\OneDrive
    2019-04-17 08:30 - 2018-09-06 18:08 - 000000000 ____D C:\ProgramData\PCDr
    2019-04-16 20:24 - 2018-10-04 07:54 - 000000000 ____D C:\Users\Cristian\AppData\LocalLow\Mozilla
    2019-04-16 18:29 - 2018-09-08 21:53 - 000000513 _____ C:\Windows\system32\Drivers\etc\hosts.ics
    2019-04-16 14:36 - 2018-12-25 02:11 - 001761804 _____ C:\Windows\system32\PerfStringBackup.INI
    2019-04-16 14:36 - 2018-09-15 11:38 - 000771674 _____ C:\Windows\system32\perfh00A.dat
    2019-04-16 14:36 - 2018-09-15 11:38 - 000149062 _____ C:\Windows\system32\perfc00A.dat
    2019-04-16 14:36 - 2018-09-15 02:31 - 000000000 ____D C:\Windows\INF
    2019-04-16 13:22 - 2018-09-15 02:33 - 000000000 ___HD C:\Program Files\WindowsApps
    2019-04-16 12:57 - 2018-09-06 17:55 - 000000000 ____D C:\ProgramData\SupportAssist
    2019-04-15 22:53 - 2018-09-15 10:22 - 001767242 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
    2019-04-15 00:06 - 2018-09-25 23:05 - 000000000 ____D C:\Users\Cristian\Documents\Respaldos
    2019-04-11 13:59 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\LiveKernelReports
    2019-04-11 09:48 - 2018-08-27 09:30 - 000000000 ____D C:\Users\Cristian\AppData\Local\D3DSCache
    2019-04-11 09:20 - 2018-09-15 02:33 - 000000000 ___HD C:\Windows\ELAMBKUP
    2019-04-11 08:48 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\bcastdvr
    2019-04-11 04:10 - 2018-10-04 07:54 - 000001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
    2019-04-11 04:01 - 2018-08-27 23:55 - 000015800 _____ (ESET) C:\Windows\system32\Drivers\eelam.sys
    2019-04-09 23:25 - 2018-08-26 16:51 - 000000000 ____D C:\Users\Cristian\AppData\Local\ConnectedDevicesPlatform
    2019-04-09 23:01 - 2018-11-04 22:38 - 000000000 ____D C:\Windows\pss
    2019-04-09 09:45 - 2018-08-28 21:24 - 000007598 _____ C:\Users\Cristian\AppData\Local\resmon.resmoncfg
    2019-04-08 14:06 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\SysWOW64\es-MX
    2019-04-08 14:06 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\SysWOW64\Dism
    2019-04-08 14:06 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\system32\oobe
    2019-04-08 14:06 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\system32\es-MX
    2019-04-08 14:06 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\system32\DiagSvcs
    2019-04-08 14:06 - 2018-09-15 01:09 - 000000000 ____D C:\Windows\system32\Dism
    2019-04-08 13:11 - 2018-08-26 16:24 - 000000000 ____D C:\Windows\system32\Drivers\wd
    2019-04-07 12:06 - 2018-09-06 19:59 - 000000000 ____D C:\ProgramData\RivetNetworks
    2019-04-06 19:26 - 2018-12-25 01:57 - 000000000 ____D C:\Users\Cristian
    2019-04-06 18:17 - 2018-08-26 19:41 - 000592616 _____ (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
    2019-04-04 15:42 - 2019-03-21 20:55 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
    2019-04-04 15:42 - 2019-03-21 20:55 - 000001768 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk
    2019-04-04 15:42 - 2018-12-25 01:59 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
    2019-04-04 15:42 - 2018-12-25 01:55 - 000001117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves MaxxAudioPro.lnk
    2019-04-04 15:42 - 2018-09-08 19:26 - 000002012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Pro 10.lnk
    2019-04-04 15:42 - 2018-09-03 21:04 - 000002729 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
    2019-04-04 15:42 - 2018-09-03 21:04 - 000002662 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive para la Empresa.lnk
    2019-04-04 15:42 - 2018-09-03 21:04 - 000002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
    2019-04-04 15:42 - 2018-09-03 21:04 - 000002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Empresarial 2016.lnk
    2019-04-04 15:42 - 2018-09-03 21:04 - 000002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
    2019-04-04 15:42 - 2018-09-03 21:04 - 000002648 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
    2019-04-04 15:42 - 2018-09-03 21:04 - 000002648 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
    2019-04-04 15:42 - 2018-09-03 21:04 - 000002642 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
    2019-04-04 15:42 - 2018-09-03 21:04 - 000002628 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
    2019-04-04 15:41 - 2018-09-02 11:28 - 000001038 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
    2019-04-04 15:39 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\PLA
    2019-04-04 10:09 - 2018-09-15 01:09 - 000032768 _____ C:\Windows\system32\config\ELAM
    2019-04-03 09:28 - 2018-08-26 17:09 - 000000000 ____D C:\Users\Cristian\AppData\Local\Google
    2019-04-03 09:27 - 2018-08-26 17:09 - 000000000 ____D C:\Program Files (x86)\Google
    2019-03-31 23:50 - 2018-11-15 19:32 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
    2019-03-31 23:48 - 2018-09-06 19:29 - 000000000 ____D C:\Users\Cristian\Documents\VirtualDJ
    2019-03-31 23:31 - 2018-09-15 02:33 - 000000000 ____D C:\Windows\system32\NDF
    2019-03-31 23:05 - 2018-04-11 18:38 - 000000000 _____ C:\Windows\system32\Drivers\etc\hosts_bak_235
    2019-03-26 22:54 - 2018-08-28 21:54 - 000000000 ____D C:\ProgramData\Packages
    2019-03-26 22:54 - 2018-08-26 16:59 - 000000000 ____D C:\Users\Cristian\AppData\Local\PlaceholderTileLogoFolder

    ==================== Files in the root of some directories =======

    2018-10-10 13:13 - 2018-10-10 13:13 - 000000132 _____ () C:\Users\Cristian\AppData\Roaming\Prefs. de formato GIF de Adobe CS6
    2019-03-31 21:04 - 2019-03-31 21:04 - 000140800 _____ () C:\Users\Cristian\AppData\Local\installer.dat
    2018-08-28 21:24 - 2019-04-09 09:45 - 000007598 _____ () C:\Users\Cristian\AppData\Local\resmon.resmoncfg
    2019-03-31 21:04 - 2019-03-31 21:31 - 000722944 _____ () C:\Users\Cristian\AppData\Local\sha.db
    2019-01-21 22:54 - 2019-03-10 13:28 - 000000014 _____ () C:\Users\Cristian\AppData\Local\update_progress.txt

    ==================== Bamital & volsnap ======================

    (There is no automatic fix for files that do not pass verification.)

    ==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22.04.2019
Ran by Cristian (23-04-2019 07:23:40)
Running from C:\Users\Cristian\Desktop
Windows 10 Home Single Language Version 1809 17763.437 (X64) (2018-12-25 07:21:10)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-3287089801-3443176771-1087233360-500 - Administrator - Disabled)
CDFAccount (S-1-5-21-3287089801-3443176771-1087233360-1003 - Limited - Disabled)
Cristian (S-1-5-21-3287089801-3443176771-1087233360-1001 - Administrator - Enabled) => C:\Users\Cristian
DefaultAccount (S-1-5-21-3287089801-3443176771-1087233360-503 - Limited - Disabled)
Invitado (S-1-5-21-3287089801-3443176771-1087233360-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3287089801-3443176771-1087233360-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 19.010.20099 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.10.2 - Advanced Micro Devices, Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.60.3.1001 - BlueStack Systems, Inc.)
Branding64 (HKLM\...\{EE2AFCE4-0238-4DE0-A140-1647021627C1}) (Version: 1.00.0001 - Advanced Micro Devices, Inc.) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.2.3 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.5.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.10.15 - Canon Inc.)
Canon MG2900 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2900_series) (Version: 1.01 - Canon Inc.)
Canon MG2900 series On-screen Manual (HKLM-x32\...\Canon MG2900 series On-screen Manual) (Version: 7.7.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
CyberLink PowerDVD 13 (HKLM-x32\...\InstallShield_{3CFDF154-7E60-4E98-A8DF-C693A4F8E6B6}) (Version: 13.0.2720.57 - CyberLink Corp.)
Dell SupportAssist (HKLM\...\{45FD01F4-B11B-4A58-B465-1D600B5CDF64}) (Version: 3.2.0.90 - Dell Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 70.4.93 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.189.1 - Dropbox, Inc.) Hidden
Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
ESET Security (HKLM\...\{30AAEA0C-2993-4ED6-8ABC-48499DA53D87}) (Version: 12.1.34.0 - ESET, spol. s r.o.)
Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Grand Theft Auto V MULTi12 - ElAmigos versión 1.41 build 1180.1 (HKLM-x32\...\{4959470E-EDAC-4710-A636-276D79A81B94}_is1) (Version: 1.41 build 1180.1 - Rockstar Games)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
IHMC CmapTools v6.03.01 (HKLM\...\IHMC CmapTools v6.03.01) (Version: 6.0.3.1 - Institute for Human & Machine Cognition)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Intel(R) Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10207.5567 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1054 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4836 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1725.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{246c6cc0-9810-4728-9a29-28474de2eec5}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Java SE Development Kit 8 Update 181 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180181}) (Version: 8.0.1810.13 - Oracle Corporation)
Malwarebytes versión 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.7.9434.5 - Waves Audio Ltd.) Hidden
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\...\OneDriveSetup.exe) (Version: 19.043.0304.0007 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3287089801-3443176771-1087233360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04232019070737656\...\OneDriveSetup.exe) (Version: 19.043.0304.0007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Mozilla Firefox 66.0.3 (x64 es-ES) (HKLM\...\Mozilla Firefox 66.0.3 (x64 es-ES)) (Version: 66.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.2 - Mozilla)
Nitro Pro 10 (HKLM\...\{7242D889-1E07-40C9-8FC6-670707B34EE1}) (Version: 10.5.9.9 - Nitro)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8555 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Revo Uninstaller Pro 3.1.4 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.4 - VS Revo Group, Ltd.)
Samsung SideSync (HKLM-x32\...\Samsung SideSync) (Version: 4.7.5.244 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
Software Intel® PROSet/Wireless (HKLM-x32\...\{8431b7d7-59d1-4f45-8212-a2eac049528f}) (Version: 19.60.0 - Intel Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
VirtualDJ 2018 (HKLM-x32\...\{2336DCE6-27C3-4C33-BBF0-D2BCF7917222}) (Version: 8.3.4514.0 - Atomix Productions)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - Intel Corporation Inc.)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\...\WhatsApp) (Version: 0.3.557 - WhatsApp)
WhatsApp (HKU\S-1-5-21-3287089801-3443176771-1087233360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04232019070737656\...\WhatsApp) (Version: 0.3.557 - WhatsApp)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{a9872fee-5a55-4ecb-9b0f-b06fedcf14d1}\localserver32 -> C:\Program Files\Waves\MaxxAudio\MaxxAudioPro.exe (Waves Inc -> Waves Audio Ltd)
CustomCLSID: HKU\S-1-5-21-3287089801-3443176771-1087233360-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Cristian\Dropbox [2019-03-27 00:17]
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-04-17] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Nitro\Pro 10\NPShellExtension.dll [2016-07-22] (Nitro Software, Inc. -> Nitro PDF)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-04-17] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-10-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-04-03] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxDTCM.dll [2018-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-04-17] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2012-12-29] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2019-03-17 13:02 - 2014-03-17 19:15 - 000375296 _____ (CANON INC.) [File not signed] C:\Windows\System32\CNMN6PPM.DLL
2018-06-27 22:15 - 2018-06-27 22:15 - 000359936 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 076160000 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 003700224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 000461312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 005603840 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 006321152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 003559424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 002822144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 000187904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 001077248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2018-10-19 23:00 - 2018-10-19 23:00 - 005812224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 000323584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 001412608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2018-06-27 22:15 - 2018-06-27 22:15 - 002552832 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000345600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2018-06-27 22:15 - 2018-06-27 22:15 - 000330752 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000502272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000328192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000059904 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000089088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2018-06-27 22:16 - 2018-06-27 22:16 - 000053248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-03-31 23:52 - 2013-03-14 13:08 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\MSVCR71.dll
2019-03-31 23:52 - 2013-03-14 13:08 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\MSVCP71.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000055808 _____ (Open Source Software community LGPL) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\pthreadVC2.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 001420800 _____ (Pizzolato Davide - www.xdp.it) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\cximageu.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000352782 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\avutil-54.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000464398 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\swscale-3.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 008931854 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\avcodec-56.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 001817614 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\avformat-56.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000102414 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\swresample-1.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000850446 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\avfilter-5.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000110207 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\BASS.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000019008 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\BASSCD.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 001289216 _____ () [File not signed] C:\Program Files (x86)\Samsung\SideSync4\cairo.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000017472 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\Samsung\SideSync4\BASSWMA.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000100352 _____ () [File not signed] C:\Program Files (x86)\Samsung\SideSync4\zlib1.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000230529 _____ () [File not signed] C:\Program Files (x86)\Samsung\SideSync4\libpng14-14.dll
2016-05-04 04:15 - 2016-05-04 04:15 - 000091136 _____ () [File not signed] C:\Program Files (x86)\Samsung\SideSync4\ThoughtWorks.QRCode.dll
2019-03-17 13:38 - 2014-01-15 15:11 - 000008704 _____ (CANON INC) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_ESP.DLL
2019-03-17 13:38 - 2014-01-15 15:10 - 000307712 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_IMG.dll
2019-03-31 23:51 - 2011-08-24 04:39 - 002113536 _____ (Python Software Foundation) [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Common\koan\python25.dll
2019-03-31 23:51 - 2011-04-12 11:16 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Common\MSVCR71.dll
2019-03-31 23:51 - 2011-08-24 04:39 - 000081920 _____ () [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Common\koan\_ctypes.pyd
2019-03-31 23:51 - 2011-08-24 04:39 - 000053248 _____ () [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Common\Koan\_socket.pyd
2019-03-31 23:51 - 2011-08-24 04:39 - 000655360 _____ () [File not signed] C:\Program Files (x86)\CyberLink\PowerDVD13\Common\Koan\_ssl.pyd
2018-12-25 01:59 - 2018-12-25 01:59 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2018-12-25 01:59 - 2018-12-25 01:59 - 001101824 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL
2019-04-11 09:20 - 2019-04-11 09:26 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-04-11 09:20 - 2019-04-11 09:26 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-04-11 09:26 - 2019-04-11 09:26 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WmsSelfHealing => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WmsSelfHealing => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-04-18 09:58 - 2019-04-18 09:58 - 000000027 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1       localhost

2018-09-08 21:53 - 2019-04-16 18:29 - 000000513 _____ C:\Windows\system32\drivers\etc\hosts.ics


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Java\jdk1.8.0_181\bin;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04232019070733407\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04232019070735563\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Cristian\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-3287089801-3443176771-1087233360-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-04232019070737656\Control Panel\Desktop\\Wallpaper -> C:\Users\Cristian\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [WMS-Service] => (Allow) %ProgramFiles%\Windows MultiPoint Server\Wmssvc.exe No File
FirewallRules: [VIRT-REMOTEDESKTOP-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe No File
FirewallRules: [VIRT-MIGL-In-TCP-NoScope] => (Allow) %systemroot%\system32\vmms.exe No File
FirewallRules: [Microsoft-Windows-NFS-ClientCore-NfsClnt-TCP-Out] => (Allow) %systemroot%\system32\nfsclnt.exe No File
FirewallRules: [Microsoft-Windows-NFS-ClientCore-NfsClnt-UDP-Out] => (Allow) %systemroot%\system32\nfsclnt.exe No File
FirewallRules: [WMS-Manager] => (Allow) %ProgramFiles%\Windows MultiPoint Server\WmsManager.exe No File
FirewallRules: [WMS-Dashboard] => (Allow) %ProgramFiles%\Windows MultiPoint Server\WmsDashboard.exe No File
FirewallRules: [TCP Query User{469933DE-2021-47B6-B294-43DAF099E7E8}C:\program files (x86)\samsung\sidesync4\sidesync.exe] => (Allow) C:\program files (x86)\samsung\sidesync4\sidesync.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [UDP Query User{F58D0DAD-F00C-4004-8F4F-09EC4A337833}C:\program files (x86)\samsung\sidesync4\sidesync.exe] => (Allow) C:\program files (x86)\samsung\sidesync4\sidesync.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [TCP Query User{6E8026FA-0A70-4D6A-B3EE-6A88D7A04963}C:\program files (x86)\cyberlink\powerdvd13\powerdvd13agent.exe] => (Allow) C:\program files (x86)\cyberlink\powerdvd13\powerdvd13agent.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [UDP Query User{0F320F15-D622-48E5-8C13-45EF67A7DA88}C:\program files (x86)\cyberlink\powerdvd13\powerdvd13agent.exe] => (Allow) C:\program files (x86)\cyberlink\powerdvd13\powerdvd13agent.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [TCP Query User{8AA90898-A490-4677-ACBE-639B5EC8284C}C:\program files (x86)\cyberlink\powerdvd13\powerdvd13agent.exe] => (Block) C:\program files (x86)\cyberlink\powerdvd13\powerdvd13agent.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [UDP Query User{5B80D7CD-F1CF-4F87-9FED-6881690FD0FD}C:\program files (x86)\cyberlink\powerdvd13\powerdvd13agent.exe] => (Block) C:\program files (x86)\cyberlink\powerdvd13\powerdvd13agent.exe (CyberLink Corp. -> CyberLink Corp.)

==================== Restore Points =========================

19-04-2019 14:41:41 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/23/2019 07:14:28 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina QueryFullProcessImageNameW. HR = 0x80070006, Controlador no válido.
.


Operación:
   Ejecutando operación asincrónica

Contexto:
   Estado actual: DoSnapshotSet

Error: (04/23/2019 07:13:36 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al consultar la interfaz IVssWriterCallback. HR = 0x80070005, Acceso denegado.
.
A menudo ocurre por una configuración de seguridad incorrecta en el proceso de escritura o de solicitud.


Operación:
   Recopilando datos del escritor

Contexto:
   Id. de clase del escritor: {e8132975-6f93-4464-a53e-1050253ae220}
   Nombre del escritor: System Writer
   Id. de instancia del escritor: {3d38b587-5ef1-432e-a435-47889ac59327}

Error: (04/23/2019 07:09:27 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (04/22/2019 06:00:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: bad_module_info, versión: 0.0.0.0, marca de tiempo: 0x00000000
Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
Código de excepción: 0x00000000
Desplazamiento de errores: 0x0000000000000000
Identificador del proceso con errores: 0x2fbc
Hora de inicio de la aplicación con errores: 0x01d4f8fa961a3852
Ruta de acceso de la aplicación con errores: bad_module_info
Ruta de acceso del módulo con errores: unknown
Identificador del informe: 5ffe3f3d-b5a5-4d98-940a-f6ba4785e00d
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (04/22/2019 05:55:37 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (04/21/2019 09:00:20 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (04/20/2019 09:06:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: ZeroConfigService.exe, versión: 19.60.0.0, marca de tiempo: 0x58d16fa6
Nombre del módulo con errores: ZeroConfigService.exe, versión: 19.60.0.0, marca de tiempo: 0x58d16fa6
Código de excepción: 0xc0000409
Desplazamiento de errores: 0x000000000022af80
Identificador del proceso con errores: 0xf2c
Hora de inicio de la aplicación con errores: 0x01d4f662f4e746ff
Ruta de acceso de la aplicación con errores: C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
Ruta de acceso del módulo con errores: C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
Identificador del informe: 48a56809-5f56-42ef-a5c4-063b7c4dacbd
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (04/20/2019 01:52:58 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0


System errors:
=============
Error: (04/23/2019 07:24:33 AM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {9E175B6D-F52A-11D8-B9A5-505054503030} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/23/2019 07:22:33 AM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {E48EDA45-43C6-48E0-9323-A7B2067D9CD5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/23/2019 07:19:33 AM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {E48EDA45-43C6-48E0-9323-A7B2067D9CD5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/23/2019 07:16:33 AM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {E48EDA45-43C6-48E0-9323-A7B2067D9CD5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/23/2019 07:13:33 AM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {9E175B6D-F52A-11D8-B9A5-505054503030} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/23/2019 07:11:02 AM) (Source: DCOM) (EventID: 10016) (User: DELL-5567)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
 y APPID 
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
 al usuario DELL-5567\Cristian con SID (S-1-5-21-3287089801-3443176771-1087233360-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (04/23/2019 07:10:33 AM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {E48EDA45-43C6-48E0-9323-A7B2067D9CD5} no se registró con DCOM dentro del tiempo de espera requerido.

Error: (04/23/2019 07:06:33 AM) (Source: DCOM) (EventID: 10010) (User: DELL-5567)
Description: El servidor {E48EDA45-43C6-48E0-9323-A7B2067D9CD5} no se registró con DCOM dentro del tiempo de espera requerido.


Windows Defender:
===================================
Date: 2019-04-20 21:32:46.524
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {ABA1FA9F-3379-48DE-9A5E-A1F7EABD1351}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-19 20:25:25.942
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {9E812C90-4C9C-4A73-AAE5-ABE185306733}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-19 14:56:26.131
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {DBF1D7EA-0BF9-4B59-9390-5D9D5D832E4F}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-18 12:40:02.805
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {FA676584-60F5-45C8-A1EA-2E25C90C3733}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-18 12:28:04.965
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {7D481A43-4C9A-47CA-BA94-C7F13BA6CD86}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-04-16 14:27:49.907
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.291.1661.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.15800.1
Código de error: 0x80240438
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulta Ayuda y soporte técnico. 

Date: 2019-04-09 22:56:41.644
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2019-04-09 22:53:53.409
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

Date: 2019-04-09 22:08:02.415
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.291.1423.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.15800.1
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 

Date: 2019-04-09 21:57:51.263
Description: 
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Durante el acceso
Código de error: 0x8007043c
Descripción del error: El servicio no puede iniciarse en modo a prueba de errores 
Motivo: La protección antimalware dejó de funcionar por motivos desconocidos. En algunos casos, reiniciar el servicio puede que resuelva el problema.

CodeIntegrity:
===================================

Date: 2019-04-18 22:52:11.280
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-18 22:52:11.275
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-18 22:52:11.267
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-18 22:52:11.262
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-18 10:05:33.234
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-18 10:05:33.230
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-18 10:05:33.164
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-18 10:05:33.065
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\ESET\ESET Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info =========================== 

BIOS: Dell Inc. 1.2.6 07/09/2018
Motherboard: Dell Inc. 05VRRG
Processor: Intel(R) Core(TM) i7-7500U CPU @ 2.70GHz
Percentage of memory in use: 27%
Total physical RAM: 16282.63 MB
Available physical RAM: 11788.02 MB
Total Virtual: 18714.63 MB
Available Virtual: 13751.3 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.13 GB) (Free:556.51 GB) NTFS

\\?\Volume{0c19fad2-55c0-479a-adcf-566988b5864e}\ () (Fixed) (Total:0.83 GB) (Free:0.34 GB) NTFS
\\?\Volume{7f0549cc-33f3-4edf-9934-a0d9b93512e3}\ (Windows RE tools) (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS
\\?\Volume{e035cff9-715e-4fb1-841b-1ffc591024d4}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: D2B6A39A)

Partition: GPT.

==================== End of Addition.txt ============================

Hola @Cristian_Alejandro

Ahora prueba instalar Ccleaner desde el siguiente enlace:

https://www.ccleaner.com/es-es/ccleaner/builds

Lo instalas y ejecutas, con todos los programas cerrados prueba solo su opción Limpiador.

Nos comentas si funcionó.

Salu2

Sigue igual, no pasa del 14%

Hola @Cristian_Alejandro

Es muy extraño lo que te sucede con Ccleaner.

Toca desinstalarlo nuevamente con Revo Uninstaller como ya lo has hecho anteriormente.

Reinicia el ordenador.

Ejecuta nuevamente FRST como ya lo has hecho y nos traes los reportes frescos.

Salu2