Problema con conexion a Internet

Hola Frica ha salido bien?

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 28/10/19
Hora del análisis: 15:34
Archivo de registro: fb45ca5c-f98f-11e9-b9a3-9828a6056522.json

-Información del software-
Versión: 3.8.3.2965
Versión de los componentes: 1.0.629
Versión del paquete de actualización: 1.0.13097
Licencia: Prueba

-Información del sistema-
SO: Windows 10 (Build 18362.418)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-1G85JOE\flavi

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 361087
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 1 min, 29 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 0
(No hay elementos maliciosos detectados)

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)
~ ZHPCleaner v2019.10.26.154 by Nicolas Coolman (2019/10/26)
~ Run by flavi (Administrator)  (28/10/2019 16:01:57)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Scanner
~ Report : C:\Users\flavi\Desktop\ZHPCleaner (S).txt
~ Quarantine : C:\Users\flavi\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
~ System Restore Point : 
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit  (Build 18362)


---\\  Alternate Data Stream (ADS). (0)
~ No malintencionados o innecesarios artículos encontrados.


---\\  Servicios (0)
~ No malintencionados o innecesarios artículos encontrados.


---\\  Navegadores de Internet (0)
~ No malintencionados o innecesarios artículos encontrados.


---\\  Hosts carpeta (1)
~ El archivo hosts es legítimo (86)


---\\  Tareas automáticas programadas. (1)
ENCONTRADOS tareas: [AutoKMS] [C:\WINDOWS\Tasks\AutoKMS.job]  =>HackTool.AutoKMS


---\\  Explorador ( Archivos, Carpetas ) (46)
ENCONTRADOS carpeta: C:\Users\flavi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\µTorrent.lnk  [Bad : C:\Users\flavi\AppData\Roaming\uTorrent\uTorrent.exe](.BitTorrent Inc..)  =>BitTorrent (P2P)
ENCONTRADOS archivo: C:\Users\flavi\AppData\Roaming\PDAppFlex  =>Trojan.Elpman
ENCONTRADOS carpeta: C:\Users\flavi\AppData\Roaming\uTorrent\uTorrent.exe [BitTorrent Inc. - µTorrent]  =>BitTorrent (P2P)
ENCONTRADOS carpeta: C:\Users\flavi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\µTorrent.lnk    =>BitTorrent (P2P)
ENCONTRADOS carpeta: C:\Windows\Tasks\AutoKMS.job    =>HackTool.AutoKMS
ENCONTRADOS carpeta: C:\Windows\Prefetch\OFFICE 2010 TOOLKIT.EXE-3EF926D3.pf    =>Hacktool.Office
ENCONTRADOS carpeta: C:\Windows\AutoKMS\AutoKMS.log    =>HackTool.AutoKMS
ENCONTRADOS carpeta: C:\Windows\AutoKMS\AutoKMS.ini    =>HackTool.AutoKMS
ENCONTRADOS carpeta: C:\Windows\AutoKMS\office 2010 toolkit.exe [CODYQX4 & Bosh - Office 2010 Toolkit]  =>HackTool.AutoKMS
ENCONTRADOS carpeta: C:\Windows\AutoKMS\Settings.ini    =>HackTool.AutoKMS
ENCONTRADOS archivo: C:\WINDOWS\AutoKMS  =>HackTool.AutoKMS
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\01 - Let It Rhyme.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\02 - Every Time I See A River.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\03 - Keep Me Singing.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\04 - Out In The Cold Again.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\05 - Memory Lane.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\06 - The Pen Is Mightier Than The Sword.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\07 - Holy Guardian Angel.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\08 - Share Your Love With Me.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\09 - In Tiburon.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\10 - Look Behind The Hill.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\11 - Going Down To Bangor.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\12 - Too Late.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\13 - Caledonia Swing.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\AlbumArtSmall.jpg    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\Folder.jpg    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\front.jpg    =>PUP.Optional.Multiplug
ENCONTRADOS archivo: C:\Users\flavi\Music\Van Morrison - Keep Me Singing (2016) 320  =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\01 - Let It Rhyme.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\02 - Every Time I See A River.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\03 - Keep Me Singing.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\04 - Out In The Cold Again.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\05 - Memory Lane.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\06 - The Pen Is Mightier Than The Sword.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\07 - Holy Guardian Angel.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\08 - Share Your Love With Me.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\09 - In Tiburon.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\10 - Look Behind The Hill.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\11 - Going Down To Bangor.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\12 - Too Late.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\13 - Caledonia Swing.mp3    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\AlbumArtSmall.jpg    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\Folder.jpg    =>PUP.Optional.Multiplug
ENCONTRADOS carpeta: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320\front.jpg    =>PUP.Optional.Multiplug
ENCONTRADOS archivo: C:\Documents and Settings\flavi\Music\Van Morrison - Keep Me Singing (2016) 320  =>PUP.Optional.Multiplug
ENCONTRADOS archivo: C:\Users\flavi\AppData\Local\Google\Update  =>Heuristic.Suspect


---\\  Registro ( Claves, Valores, Datos) (5)
ENCONTRADOS valor: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_0DB860D547A85D489705971F41C7636D ["C:\Program Files (x86)\Google\Chrome\Application\]  =>PUP.Optional.MyBrowser
ENCONTRADOS clave: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent [BitTorrent Inc.]  =>BitTorrent (P2P)
ENCONTRADOS clave: [X64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} [ITool]  =>Toolbar.Ask
ENCONTRADOS clave: [X64] HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} [secman]  =>PUP.Optional.Camec
ENCONTRADOS clave: [X64] HKLM\SOFTWARE\Wow6432Node\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} [secman]  =>PUP.Optional.Camec


---\\  Resumen de elementos en su estación de trabajo (9)
https://nicolascoolman.eu/2017/02/02/hacktool-autokms/  =>HackTool.AutoKMS
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>BitTorrent (P2P)
https://nicolascoolman.eu/2017/09/23/trojan-elpman/  =>Trojan.Elpman
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>Hacktool.Office
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.Multiplug
https://nicolascoolman.eu/wp-content/uploads/2019/01/Informations-Sécurité-Zone-antimalware.jpg  =>Heuristic.Suspect
https://nicolascoolman.eu/2017/11/01/adware-mybrowser/  =>PUP.Optional.MyBrowser
https://nicolascoolman.eu/2017/02/28/toolbar-ask/  =>Toolbar.Ask
https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/  =>PUP.Optional.Camec


---\\ Resultado de la reparación.
~ ninguna reparación hecha
~ Google Chrome OK
~ Internet Explorer OK


---\\ STATISTIQUES
~ Items escaneado : 118868
~ Items encontrado : 81
~ artículos cancelados : 0
~ Items opciones : 6/13
~ Ahorro de espacio (bytes) : 0


~ End of search in 00h22mn26s

---\\  Reporte (0)
ZHPCleaner-[S]-28102019-16_24_23.txt
# -------------------------------
# Malwarebytes AdwCleaner 7.4.2.0
# -------------------------------
# Build:    10-21-2019
# Database: 2019-10-21.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    10-28-2019
# Duration: 00:00:03
# OS:       Windows 10 Home
# Cleaned:  6
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

Deleted       Preinstalled.SamsungSmartSwitch   File   C:\Users\flavi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Smart Switch.lnk
Deleted       Preinstalled.SamsungSmartSwitch   Folder   C:\Program Files (x86)\SAMSUNG\SMART SWITCH PC
Deleted       Preinstalled.SamsungSmartSwitch   Folder   C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAMSUNG\SMART SWITCH PC
Deleted       Preinstalled.SamsungSmartSwitch   Folder   C:\Users\flavi\AppData\Roaming\SAMSUNG\SMART SWITCH PC
Deleted       Preinstalled.SamsungSmartSwitch   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}
Deleted       Preinstalled.SamsungSmartSwitch   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1460 octets] - [28/05/2018 14:27:05]
AdwCleaner[S01].txt - [1460 octets] - [05/06/2018 19:09:19]
AdwCleaner[C01].txt - [1473 octets] - [05/06/2018 19:11:37]
AdwCleaner[S02].txt - [1433 octets] - [25/04/2019 13:28:16]
AdwCleaner_Debug.log - [36550 octets] - [28/10/2019 15:28:15]
AdwCleaner[S03].txt - [2371 octets] - [28/10/2019 15:29:32]
AdwCleaner[S04].txt - [2433 octets] - [28/10/2019 15:41:49]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C04].txt ##########

Bueno creo que ya esta todo. Muchas gracias. Saludos.

¡¡ Ahora si !!! Como ves el aspecto visual de los informes cambia MUUCHO.

Ejecutaste un Analisis de Amenazas en Malewarebyte Antimaleware (te pedí un Análisis Personalizado que analiza muchos más ficheros). Lo dejamos asi.

En el informe de ZHPCleaner se indica que solo fue de escanero. ¿Eliminaste las amenazas detectadas? Si no fue así, vuelve a ejecutarlo otra vez y esta vez elimina las amenazas detectadas.

Posteriormente vamos a usar otra herramienta avanzada:

Realiza lo siguiente:

1.- Desactiva temporalmente tu antivirus y cualquier programa de seguridad.

2.- Descarga Farbar Recovery Scan Tool. en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de su equipo. >> Como saber si mi Windows es de 32 o 64 bits.?

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Guía: Como Ejecutar FRST

3.- En tu próxima respuesta, pega los reportes generados.

Guía : ¿Como Pegar reportes en el Foro?

Esperamos esos reporte.

Hola frica, te pego los archivos que me solicitas, también te comento que al reparar con zph, se ha eliminado el activador de office toolkit, lo copie por si se lo llevaba, espero que funcione cuando lo necesite para mi Office. Otra cosa tengo que pegarte los informes por partes pues no caben. gracias.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-11-2019
Ran by flavi (administrator) on DESKTOP-1G85JOE (Acer Aspire A515-51) (02-11-2019 19:23:54)
Running from C:\Users\flavi\Desktop
Loaded Profiles: flavi (Available Profiles: flavi)
Platform: Windows 10 Home Version 1903 18362.418 (X64) Language: Español (España, internacional)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
() [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
(AVerMedia TECHNOLOGIES, Inc.) [File not signed] C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe
(AVerMedia TECHNOLOGIES, Inc.) [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
(AVerMedia) [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\seccenter.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hauppauge Computer Works) [File not signed] C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
(Hauppauge Computer Works, Inc.) [File not signed] C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ab736fe7f232ee1e\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ab736fe7f232ee1e\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ab736fe7f232ee1e\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ab736fe7f232ee1e\IntelCpHeciSvc.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1908.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Windows Hardware Compatibility Publisher -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(RealNetworks, Inc. -> ) C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
(RealNetworks, Inc. -> ) C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
(RealNetworks, Inc. -> RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(TomTom International BV -> TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6210368 2019-10-30] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601928 2018-12-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3478752 2012-12-18] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3081327831-817405356-3807002396-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [43984 2018-11-12] (Glarysoft LTD -> Glarysoft Ltd)
HKU\S-1-5-21-3081327831-817405356-3807002396-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIKBE.EXE [298560 2013-09-12] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3081327831-817405356-3807002396-1001\...\Run: [Google Update] => C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\GoogleUpdateCore.exe
HKU\S-1-5-21-3081327831-817405356-3807002396-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3081327831-817405356-3807002396-1001\...\Run: [GoogleChromeAutoLaunch_0DB860D547A85D489705971F41C7636D] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1696920 2019-10-31] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.87\Installer\chrmstp.exe [2019-11-02] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVerQuick.lnk [2019-04-23]
ShortcutTarget: AVerQuick.lnk -> C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinTV Recording Status..lnk [2018-07-11]
ShortcutTarget: WinTV Recording Status..lnk -> C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe (Hauppauge Computer Works, Inc.) [File not signed]

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {169B2359-6F04-4C8B-B279-6106368B0C48} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-12-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {2690C199-CB8E-47E3-8913-835FADFE99C4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-04-30] (Google Inc -> Google Inc.)
Task: {3133B164-2096-4466-A204-AD47A1F2F235} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3081327831-817405356-3807002396-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe [128240 2016-02-03] (RealNetworks, Inc. -> RealNetworks, Inc.)
Task: {40E6D19B-CD8D-4136-9180-5B86D21EDCBB} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-12-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {4728BA3E-3871-4E69-B21B-7367EFDEA0C9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3081327831-817405356-3807002396-1001UA => C:\Users\flavi\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {491F404A-0FF9-42CD-8B1C-A48541C377B1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5084E440-EA11-42BB-AF67-C53A12C526AF} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [488760 2019-07-15] (Bitdefender SRL -> Bitdefender)
Task: {51EA0792-79C9-494A-BA81-A53435EFC18E} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-3081327831-817405356-3807002396-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [343304 2016-02-03] (RealNetworks, Inc. -> RealNetworks, Inc.)
Task: {533ADAA0-E771-4690-920B-02D8894FE17F} - System32\Tasks\RealDownloader Update Check => C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe [714992 2016-07-05] (RealNetworks, Inc. -> )
Task: {5F1F3A99-836B-43CF-9BD0-0858E34C45F5} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3081327831-817405356-3807002396-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe [128240 2016-02-03] (RealNetworks, Inc. -> RealNetworks, Inc.)
Task: {5F5595B7-37C6-49E7-A9FC-65BF4AE8D15F} - System32\Tasks\RtHDVBg_ASC => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506352 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {76816324-29CE-4168-AE29-6B0DECD7689C} - System32\Tasks\GlaryOneClickOptimizer 5 => C:\Program Files (x86)\Glary Utilities 5\OneClickMaintenance.exe [234448 2018-11-12] (Glarysoft LTD -> Glarysoft Ltd)
Task: {77988DE0-8476-4026-98B6-A4E79EBE2C05} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [915920 2018-11-12] (Glarysoft LTD -> Glarysoft Ltd)
Task: {7BB6C4E1-267E-4035-A1BE-86B37C2E3942} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-10] (Adobe Inc. -> Adobe)
Task: {AA248771-FADC-41D1-AB41-A5494F0FCCB5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-04-30] (Google Inc -> Google Inc.)
Task: {B4204F85-3133-4749-9BA2-C76778E87A8F} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [522504 2019-10-17] (Bitdefender SRL -> Bitdefender)
Task: {B66C6041-0695-4500-896B-5C2453C44663} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506352 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {CC86EE55-4268-49FD-921D-90056F8FDC79} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {DE0428B8-7E4A-4019-8A67-91E271C86CDF} - \AutoKMS -> No File <==== ATTENTION
Task: {E9F5CD4F-C3DB-498C-B677-3DD53173E958} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3081327831-817405356-3807002396-1001Core => C:\Users\flavi\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {F890D2C9-D4CA-4AB2-809E-55046C338128} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_270_Plugin.exe [1457720 2019-10-10] (Adobe Inc. -> Adobe)
Task: {FFFDF8E4-310E-473E-80D1-0ADD8A090D3A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 212.166.210.80 212.166.132.104
Tcpip\..\Interfaces\{26f872b4-e696-4d70-87b1-e1102749283e}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{4b5b44c4-fffc-4bbd-89d2-e9631be7dd92}: [DhcpNameServer] 62.81.16.213 62.81.29.254
Tcpip\..\Interfaces\{6bcc23d8-2b5f-4b6c-b32c-48fe5848aa6f}: [DhcpNameServer] 62.81.16.213 62.81.29.254
Tcpip\..\Interfaces\{85880691-848d-49b1-9a53-f364410a4fba}: [DhcpNameServer] 62.81.16.213 62.81.29.254
Tcpip\..\Interfaces\{ac0933a2-3b79-42c9-abc8-8fd7a960ebdf}: [DhcpNameServer] 192.168.44.1
Tcpip\..\Interfaces\{c5f5002e-e6b5-4765-b770-e5d16bd336f8}: [DhcpNameServer] 212.166.210.80 212.166.132.104

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
SearchScopes: HKU\S-1-5-21-3081327831-817405356-3807002396-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
SearchScopes: HKU\S-1-5-21-3081327831-817405356-3807002396-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
BHO: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll [2019-10-12] (Bitdefender SRL -> Bitdefender)
BHO: Bitdefender Wallet  -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-10-12] (Bitdefender SRL -> Bitdefender)
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2016-02-03] (RealNetworks, Inc. -> RealDownloader)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-04-03] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-04-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll [2019-10-12] (Bitdefender SRL -> Bitdefender)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-10-12] (Bitdefender SRL -> Bitdefender)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2016-02-03] (RealNetworks, Inc. -> RealDownloader)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2019-10-12] (Bitdefender SRL -> Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2019-10-12] (Bitdefender SRL -> Bitdefender)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

FireFox:
========
FF ProfilePath: C:\Users\flavi\AppData\Roaming\TomTom\HOME\Profiles\0wph63ld.default [2016-11-20]
FF Extension: (Map status indicator) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\[email protected] [2016-11-20] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2019-09-20]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2019-10-12]
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2019-04-12] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2019-05-25] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_270.dll [2019-10-10] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-04-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-04-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_270.dll [2019-10-10] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-10-20] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=18.1.3.100 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2016-05-03] (RealNetworks, Inc. -> RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=18.1.3.100 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2016-05-03] (RealNetworks, Inc. -> RealPlayer)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2012-12-18] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-10-16] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-3081327831-817405356-3807002396-1001: @tools.google.com/Google Update;version=3 -> C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-3081327831-817405356-3807002396-1001: @tools.google.com/Google Update;version=9 -> C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [No File]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxps://www.google.es/","hxxp://www.google.com/"
CHR Profile: C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default [2019-11-02]
CHR DownloadDir: C:\Users\flavi\Desktop
CHR Extension: (Presentaciones) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Documentos) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-30]
CHR Extension: (MEGA) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2019-10-31]
CHR Extension: (YouTube) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-30]
CHR Extension: (VS Launcher) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmhicdplfejcchpmimlnohfadpimciaa [2016-04-30]
CHR Extension: (Videostream for Google Chromecast™) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnciopoikihiagdjbjpnocolokfelagl [2018-11-19]
CHR Extension: (Spotify - Music for every moment) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh [2017-07-28]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2016-04-30]
CHR Extension: (Java API Search) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dphfngjamcomlehblpblaacingmaojnm [2016-04-30]
CHR Extension: (vGet Cast (DLNA Controller)) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekdjofnchpbfmnfbedalmbdlhbabiapi [2016-04-30]
CHR Extension: (Google Play Música) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2018-11-19]
CHR Extension: (MyJDownloader Browser Extension) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2018-11-19]
CHR Extension: (Hojas de cálculo) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-19]
CHR Extension: (AdBlock) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-10-24]
CHR Extension: (Bitdefender Anti-tracker) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2019-09-28]
CHR Extension: (Buscador Lineas900) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\knfajbbdjpnhdojhhpgohmopdcpjcigp [2016-04-30]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-31]
CHR Profile: C:\Users\flavi\AppData\Local\Google\Chrome\User Data\System Profile [2019-05-19]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2012-09-23]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\WINDOWS\System32\drivers\AdminService.exe [414720 2017-11-29] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R2 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [368640 2013-06-26] (AVerMedia) [File not signed]
R2 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [403456 2011-04-01] () [File not signed]
R2 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2011-10-31] (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [786376 2019-10-12] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [786376 2019-10-12] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-03-22] (Bitdefender SRL -> Bitdefender)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-12-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-12-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-10-30] (Dropbox, Inc -> Dropbox, Inc.)
R2 DevMgmtService; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [125120 2019-09-17] (Bitdefender SRL -> Bitdefender)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 HauppaugeTVServer; C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe [442368 2009-04-01] (Hauppauge Computer Works) [File not signed]
R2 IntelAudioService; C:\WINDOWS\system32\cAVS\Intel(R) Audio Service\IntelAudioService.exe [212928 2018-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Intel)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1291888 2019-07-15] (Bitdefender SRL -> Bitdefender)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [191768 2018-11-07] (Qualcomm Atheros -> Qualcomm Technologies Inc.)
R2 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [32544 2016-02-03] (RealNetworks, Inc. -> )
R2 RealTimes Desktop Service; C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1095440 2016-05-03] (RealNetworks, Inc. -> RealNetworks, Inc.)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [146472 2019-10-12] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [786376 2019-10-12] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\NisSrv.exe [3851264 2019-04-25] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MsMpEng.exe [118144 2019-04-25] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [29912 2019-05-03] (Acer Incorporated -> Acer Incorporated)
R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1586784 2019-09-20] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA)
S3 AVerPola; C:\WINDOWS\system32\DRIVERS\AVerPola.sys [855424 2013-11-05] (Microsoft Windows Hardware Compatibility Publisher -> AVerMedia TECHNOLOGIES, Inc.)
S3 AVPolCIR; C:\WINDOWS\System32\drivers\AVPolCIR.sys [62976 2013-10-30] (Microsoft Windows Hardware Compatibility Publisher -> AVerMedia TECHNOLOGIES, Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [399824 2019-09-20] (Bitdefender SRL -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22960 2019-03-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [46056 2019-09-20] (Bitdefender SRL -> © Bitdefender SRL)
R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [96448 2018-04-27] (Bitdefender SRL -> BitDefender)
R3 BtFilter; C:\WINDOWS\System32\drivers\btfilter.sys [65472 2017-11-29] (WDKTestCert aswbldsv,131431045756648395 -> Qualcomm)
S3 FTDIBUS; C:\WINDOWS\system32\drivers\opcomusb.sys [69192 2009-02-17] (Future Technology Devices International Ltd -> FTDI Ltd.)
R0 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [596632 2019-10-12] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [28936 2018-11-19] (Glarysoft LTD -> Glarysoft Ltd)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [188384 2019-06-03] (Bitdefender SRL -> BitDefender LLC)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [27552 2017-09-20] (Martin Malik - REALiX -> REALiX(tm))
R2 Ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [196392 2019-09-20] (Bitdefender SRL -> Bitdefender)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [199768 2019-11-02] (Malwarebytes Corporation -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-11-02] (Malwarebytes Corporation -> Malwarebytes)
R3 Qcamain10x64; C:\WINDOWS\System32\drivers\Qcamain10x64.sys [2351384 2018-11-07] (Qualcomm Atheros -> Qualcomm Atheros, Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [662528 2019-03-19] (Microsoft Windows -> Realtek )
R3 RTSPER; C:\WINDOWS\System32\drivers\RtsPer.sys [887240 2018-06-03] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 SynRMIHID; C:\WINDOWS\System32\drivers\SynRMIHID.sys [66104 2018-05-10] (Synaptics Incorporated -> Synaptics Incorporated)
R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [610640 2019-01-14] (Bitdefender SRL -> Bitdefender)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2019-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-04-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [344544 2019-04-25] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [60896 2019-04-25] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFWpdComp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [297984 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-02 19:23 - 2019-11-02 19:24 - 000038708 _____ C:\Users\flavi\Desktop\FRST.txt
2019-11-02 19:19 - 2019-11-02 19:24 - 000007681 _____ C:\WINDOWS\SysWOW64\rsslogs.20191102191811
2019-11-02 19:18 - 2019-11-02 19:18 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-11-02 19:15 - 2019-11-02 19:15 - 000004175 _____ C:\Users\flavi\Desktop\ZHPCleaner (R).txt
2019-11-02 19:07 - 2019-11-02 19:07 - 000009251 _____ C:\Users\flavi\Desktop\ZHPCleaner (S).txt
2019-11-02 18:54 - 2019-11-02 18:54 - 012659459 _____ C:\Users\flavi\Desktop\office 2010 toolkit.rar
2019-11-02 18:49 - 2019-11-02 18:49 - 000003531 _____ C:\Users\flavi\Desktop\hosts.txt
2019-11-02 18:42 - 2019-11-02 18:42 - 001619456 _____ (Farbar) C:\Users\flavi\Desktop\FRST64.exe
2019-11-02 18:35 - 2019-11-02 18:35 - 000000875 _____ C:\Users\flavi\Desktop\ZHPCleaner.lnk
2019-11-02 18:29 - 2019-11-02 18:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-11-02 18:28 - 2019-11-02 18:28 - 000062742 _____ C:\WINDOWS\SysWOW64\rsslogs.20191102182750
2019-10-31 13:32 - 2019-11-02 18:27 - 000006403 _____ C:\WINDOWS\SysWOW64\rsslogs.20191031133149
2019-10-31 11:37 - 2019-10-31 11:37 - 000147267 _____ C:\WINDOWS\SysWOW64\rsslogs.20191031113604
2019-10-30 19:45 - 2019-10-30 19:45 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-10-30 19:45 - 2019-10-30 19:45 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-10-30 19:45 - 2019-10-30 19:45 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-10-30 19:45 - 2019-10-30 19:45 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-10-29 22:42 - 2019-10-31 11:36 - 000033306 _____ C:\WINDOWS\SysWOW64\rsslogs.20191029224119
2019-10-28 22:45 - 2019-10-29 22:41 - 000043540 _____ C:\WINDOWS\SysWOW64\rsslogs.20191028224417
2019-10-28 22:43 - 2019-10-28 22:43 - 000000080 ___SH C:\bootTel.dat
2019-10-28 15:56 - 2019-11-02 19:15 - 000000000 ____D C:\Users\flavi\AppData\Roaming\ZHP
2019-10-28 15:56 - 2019-10-28 15:56 - 000000000 ____D C:\Users\flavi\AppData\Local\ZHP
2019-10-28 15:51 - 2019-10-28 15:53 - 000569325 _____ C:\Users\flavi\Desktop\1572274270289.pdf
2019-10-28 15:45 - 2019-10-28 18:23 - 000535214 _____ C:\WINDOWS\SysWOW64\rsslogs.20191028154409
2019-10-28 15:33 - 2019-10-28 15:33 - 000000000 ____D C:\Users\flavi\AppData\Local\mbam
2019-10-28 15:31 - 2019-11-02 19:20 - 000000000 ____D C:\Users\flavi\Desktop\REPARACION FORO WIFI
2019-10-28 15:31 - 2019-11-02 18:44 - 000199768 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2019-10-28 15:31 - 2019-10-28 15:31 - 000000000 ____D C:\Users\flavi\AppData\Local\mbamtray
2019-10-28 15:31 - 2019-10-28 15:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-10-28 15:31 - 2019-09-30 06:25 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2º Parte
2019-10-28 15:31 - 2019-06-26 13:00 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-10-28 15:30 - 2019-10-28 15:30 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-10-28 13:52 - 2019-10-28 15:43 - 000143401 _____ C:\WINDOWS\SysWOW64\rsslogs.20191028135103
2019-10-28 13:28 - 2019-10-28 13:28 - 000029444 _____ C:\WINDOWS\SysWOW64\rsslogs.20191028132721
2019-10-28 10:38 - 2019-10-28 10:39 - 000000000 ____D C:\Users\flavi\Desktop\federacion
2019-10-28 10:10 - 2019-10-28 10:10 - 000065343 _____ C:\WINDOWS\SysWOW64\rsslogs.20191028100943
2019-10-26 17:45 - 2019-10-28 10:09 - 000017942 _____ C:\WINDOWS\SysWOW64\rsslogs.20191026184434
2019-10-25 19:00 - 2019-10-26 17:44 - 000026924 _____ C:\WINDOWS\SysWOW64\rsslogs.20191025195905
2019-10-24 13:29 - 2019-10-24 13:29 - 000116667 _____ C:\Users\flavi\Desktop\trans Arys federacion.pdf
2019-10-24 10:31 - 2019-10-24 10:31 - 000000000 ____D C:\Users\flavi\Desktop\DEMANDA DE EMPLEO
2019-10-24 10:01 - 2019-10-25 18:59 - 000260128 _____ C:\WINDOWS\SysWOW64\rsslogs.20191024110139
2019-10-24 09:57 - 2019-10-24 09:57 - 000072481 _____ C:\ProgramData\dm.update.1571907380.bdinstall.bin
2019-10-24 09:56 - 2019-10-24 10:00 - 000006405 _____ C:\WINDOWS\SysWOW64\rsslogs.20191024105543
2019-10-24 09:56 - 2019-10-24 09:56 - 000034302 _____ C:\ProgramData\dm.uninstall.1571907397.bdinstall.bin
2019-10-22 10:02 - 2019-10-24 09:55 - 000037148 _____ C:\WINDOWS\SysWOW64\rsslogs.20191022110139
2019-10-22 09:13 - 2019-10-22 10:29 - 000000000 ____D C:\Users\flavi\Desktop\PEDIDO LANDER 15-10-19
2019-10-21 10:45 - 2019-10-22 10:01 - 000102436 _____ C:\WINDOWS\SysWOW64\rsslogs.20191021114426
2019-10-17 10:02 - 2019-10-21 10:44 - 000510873 _____ C:\WINDOWS\SysWOW64\rsslogs.20191017110146
2019-10-17 07:45 - 2019-10-17 10:01 - 000151087 _____ C:\WINDOWS\SysWOW64\rsslogs.20191017084425
2019-10-15 12:15 - 2019-10-17 07:44 - 000015368 _____ C:\WINDOWS\SysWOW64\rsslogs.20191015131400
2019-10-14 12:12 - 2019-10-21 10:55 - 000000000 ____D C:\Users\flavi\Documents\APARCAMIENTO SER PAGO 2019-20
2019-10-14 11:46 - 2019-10-15 12:14 - 000062747 _____ C:\WINDOWS\SysWOW64\rsslogs.20191014124512
2019-10-13 11:02 - 2019-10-14 11:45 - 000003847 _____ C:\WINDOWS\SysWOW64\rsslogs.20191013120158
2019-10-13 10:50 - 2019-10-13 10:50 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 025443840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 022628352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 019811840 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 018019840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 017787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 014816256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 009928504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 008010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 007905000 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 007848192 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 007754240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 007600664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 007195648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 007015936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 006517640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 006425600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 006232064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 006164480 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 006084048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 005915648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 005865272 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizimg.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 005764872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 005105152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 005041664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 004562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 004481536 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 004129616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 004046336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 004012544 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 003964056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 003771392 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 003742032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 003701760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 003590968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 003553280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 003525592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 003386880 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 003184128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 003105280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002861568 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002821120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002799616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 002772032 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002762504 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2019-10-13 10:50 - 2019-10-13 10:50 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2019-10-13 10:50 - 2019-10-13 10:50 - 002723328 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 002703360 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002590208 _____ C:\WINDOWS\system32\dwmscene.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002494440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002456064 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002422592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-10-13 10:50 - 2019-10-13 10:50 - 002314648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002284032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002258856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002236144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002160640 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002138472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-10-13 10:50 - 2019-10-13 10:50 - 002132280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002114048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002095104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002081976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002069504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 002000168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001957008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001952360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001940952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001913296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001857024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001847808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001845408 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001788728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-13 10:50 - 2019-10-13 10:50 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001743672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001730560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001692160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001687040 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001664928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001664376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001656392 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001616784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001607680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001562424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001543168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001512320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 001510752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001505320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001482040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 001473488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001439744 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001394488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 001383856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001372160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-10-13 10:50 - 2019-10-13 10:50 - 001334064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdrecordcpu.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001297936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001283072 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001273392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001263616 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001261800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001244944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001217904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 001178816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001154656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001152016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001150240 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 001098712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001084432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 001066496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001054872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001047968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001029432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 001023128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000984376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000944664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000904704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000904208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000890472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000880088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000856576 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-10-13 10:50 - 2019-10-13 10:50 - 000844800 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9on12.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000829536 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000818688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000792296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000784384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000774672 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000772656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000759488 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000758584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mousocoreworker.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000679880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000674072 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000673080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000656960 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11on12.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000639400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.Search.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000612864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000599040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000598024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000598016 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000568336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000541480 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000539648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9on12.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000516408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000515896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000507704 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000501232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-10-13 10:50 - 2019-10-13 10:50 - 000496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000487576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000466416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000463272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000452408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000450360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11on12.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000442704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-10-13 10:50 - 2019-10-13 10:50 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000412152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000404392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000398728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000383984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000380216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000379840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000375720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiag.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000363624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\secproc.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000342896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000334936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiag.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000300184 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000293344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgmgr32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000285256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000283688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdwriter.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000278080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000236520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgmgr32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000235008_____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
3ªParte
2019-10-13 10:50 - 2019-10-13 10:50 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000225080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-10-13 10:50 - 2019-10-13 10:50 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000220472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000202040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-10-13 10:50 - 2019-10-13 10:50 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxlib.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000176152 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000165832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000159112 _____ (Microsoft Corporation) C:\WINDOWS\system32\devobj.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000150328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000143808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000140496 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000139264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000137864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devobj.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ForceSync.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000125232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000119840 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000116904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000110080 _____ C:\WINDOWS\system32\ResBParser.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000105272 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000100664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000092624 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000089544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000084496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvvmtransport.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000073024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000066832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvvmtransport.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\devrtl.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devrtl.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnppolicy.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000053248 _____ C:\WINDOWS\system32\Drivers\UsbPmApi.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000047616 _____ C:\WINDOWS\system32\UsbPmApi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000037176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000033048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2019-10-13 10:50 - 2019-10-13 10:50 - 000024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000021544 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000020944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmsgapi.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000016696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizres.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2019-10-13 10:50 - 2019-10-13 10:50 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2019-10-13 10:50 - 2019-10-13 10:50 - 000011576 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxlibres.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbd106.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2019-10-13 10:50 - 2019-10-13 10:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2019-10-13 10:50 - 2019-10-13 10:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-10-13 10:50 - 2019-10-13 10:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-10-13 10:50 - 2019-10-13 10:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-10-13 10:50 - 2019-10-13 10:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-10-13 10:50 - 2019-10-13 10:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-10-13 10:50 - 2019-10-13 10:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-10-13 10:50 - 2019-10-13 10:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-10-13 10:50 - 2019-10-13 10:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2019-10-13 10:50 - 2019-10-13 10:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2019-10-13 10:50 - 2019-10-13 10:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2019-10-13 10:50 - 2019-10-13 10:50 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-10-13 10:49 - 2019-10-13 10:49 - 006227624 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 004612520 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-13 10:49 - 2019-10-13 10:49 - 002120704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 002120272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 001036800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000833312 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-10-13 10:49 - 2019-10-13 10:49 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000732176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-10-13 10:49 - 2019-10-13 10:49 - 000551952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000449888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000355000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ManageCI.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000223032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000208184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-10-13 10:49 - 2019-10-13 10:49 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000151568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-10-13 10:49 - 2019-10-13 10:49 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000079376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uaspstor.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidspi.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000052752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2019-10-13 10:49 - 2019-10-13 10:49 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2019-10-13 10:49 - 2019-10-13 10:49 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32_DeviceGuard.dll
2019-10-13 10:49 - 2019-10-13 10:49 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2019-10-13 10:43 - 2019-10-13 10:43 - 000024341 _____ C:\WINDOWS\SysWOW64\rsslogs.20191013114211
2019-10-12 17:27 - 2019-10-12 17:27 - 000019083 _____ C:\Users\flavi\Desktop\Hijos de Papa S02E05 SPANiSH HDTV x264-PERCEPTiON.torrent
2019-10-12 17:14 - 2019-10-12 17:14 - 000000000 ____D C:\lvpphiih
2019-10-12 16:44 - 2019-10-13 10:42 - 000116527 _____ C:\WINDOWS\SysWOW64\rsslogs.20191012174346
2019-10-10 19:54 - 2019-10-12 16:43 - 000014088 _____ C:\WINDOWS\SysWOW64\rsslogs.20191010205335
2019-10-10 19:07 - 2019-10-10 19:07 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2019-10-10 19:07 - 2019-10-10 19:07 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2019-10-10 19:03 - 2019-10-10 19:03 - 000065356 _____ C:\WINDOWS\SysWOW64\rsslogs.20191010200211
2019-10-09 13:42 - 2019-10-10 19:02 - 000029481 _____ C:\WINDOWS\SysWOW64\rsslogs.20191009144159
2019-10-08 07:35 - 2019-10-09 13:41 - 000030765 _____ C:\WINDOWS\SysWOW64\rsslogs.20191008083437
2019-10-06 18:38 - 2019-10-06 18:38 - 000158984 _____ C:\Users\flavi\Desktop\-1570383497575.pdf
2019-10-06 17:10 - 2019-10-06 19:22 - 000000000 ____D C:\Users\flavi\Desktop\Nueva carpeta
2019-10-06 12:23 - 2019-10-08 07:34 - 000419028 _____ C:\WINDOWS\SysWOW64\rsslogs.20191006132243
2019-10-05 16:08 - 2019-10-06 12:22 - 000134560 _____ C:\WINDOWS\SysWOW64\rsslogs.20191005170718
2019-10-03 10:15 - 2019-10-05 16:07 - 000007687 _____ C:\WINDOWS\SysWOW64\rsslogs.20191003111418

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-02 19:24 - 2019-05-16 10:37 - 000000000 ____D C:\FRST
2019-11-02 19:18 - 2019-05-23 10:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-11-02 19:18 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-11-02 19:18 - 2018-11-19 20:21 - 000000000 __SHD C:\Users\flavi\IntelGraphicsProfiles
2019-11-02 19:17 - 2019-03-19 05:37 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2019-11-02 19:15 - 2016-04-30 11:37 - 000000000 ____D C:\Users\flavi\AppData\Local\Google
2019-11-02 19:03 - 2019-05-23 10:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-11-02 18:32 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2019-11-02 18:32 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-11-02 18:32 - 2018-07-10 21:40 - 000000000 ____D C:\ProgramData\Packages
2019-11-02 18:29 - 2016-12-11 10:36 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-11-02 18:28 - 2019-05-23 10:46 - 001773362 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-02 18:28 - 2019-03-19 12:59 - 000789634 _____ C:\WINDOWS\system32\perfh00A.dat
2019-11-02 18:28 - 2019-03-19 12:59 - 000155888 _____ C:\WINDOWS\system32\perfc00A.dat
2019-11-02 18:28 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2019-11-02 18:28 - 2016-04-30 11:38 - 000002299 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-31 13:31 - 2019-05-13 19:19 - 000000000 ____D C:\Users\flavi\Desktop\problemas conexion 2.4
2019-10-29 19:21 - 2016-04-30 18:32 - 000000000 ___RD C:\Users\flavi\Desktop\ACCESOS
2019-10-28 19:51 - 2016-07-19 20:36 - 000000000 ____D C:\Users\flavi\AppData\Local\CrashDumps
2019-10-28 16:11 - 2019-02-12 11:17 - 000000000 ___RD C:\Users\flavi\Desktop\ESCRITORIO ACTUAL
2019-10-28 15:43 - 2019-05-23 10:24 - 000000000 ____D C:\Users\flavi
2019-10-28 15:43 - 2016-06-01 16:33 - 000000000 ____D C:\Users\flavi\AppData\Roaming\Samsung
2019-10-28 15:43 - 2016-06-01 16:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2019-10-28 15:43 - 2016-06-01 16:31 - 000000000 ____D C:\Program Files (x86)\Samsung
2019-10-28 15:31 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-10-28 15:30 - 2017-03-24 19:33 - 000000000 ____D C:\Program Files\Malwarebytes
2019-10-28 15:25 - 2019-08-08 15:22 - 000000000 ____D C:\WINDOWS\Minidump
2019-10-28 15:25 - 2019-05-23 10:06 - 000000000 ___DC C:\WINDOWS\Panther
2019-10-28 15:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-10-28 15:25 - 2016-05-08 19:58 - 000000000 ____D C:\Users\flavi\AppData\Roaming\uTorrent
2019-10-28 15:24 - 2019-05-23 10:46 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-10-28 15:24 - 2019-05-23 10:24 - 000000000 ____D C:\Users\defaultuser1
2019-10-28 13:45 - 2019-05-06 13:40 - 000000000 ____D C:\Users\flavi\Desktop\GABRIELA
2019-10-28 13:30 - 2019-07-11 10:24 - 000000000 ____D C:\Users\flavi\Desktop\SECURITAS
2019-10-28 13:27 - 2019-04-26 10:04 - 000000000 ____D C:\Program Files\CCleaner
2019-10-28 13:27 - 2019-03-19 05:37 - 000065536 _____ C:\WINDOWS\system32\config\ELAM
2019-10-28 13:20 - 2019-05-23 10:46 - 000004218 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{07950A20-119F-4E47-A336-B31871C81E74}
2019-10-28 10:13 - 2016-12-12 19:45 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-10-24 09:56 - 2019-05-13 12:25 - 000000000 ____D C:\Program Files\Bitdefender
2019-10-21 13:13 - 2019-04-03 21:14 - 000000000 ____D C:\Users\flavi\AppData\Local\JDownloader 2.0
2019-10-21 13:09 - 2016-07-23 12:09 - 000000000 ____D C:\Users\flavi\Downloads\DESCARGA ACTUAL
2019-10-21 10:47 - 2019-05-23 10:46 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2019-10-14 11:57 - 2016-04-30 18:11 - 000000000 ____D C:\Users\flavi\AppData\Local\Adobe
2019-10-13 11:01 - 2019-05-23 10:38 - 000452616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-10-13 11:01 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-10-13 11:01 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-10-13 11:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-10-13 11:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-10-13 11:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2019-10-13 11:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2019-10-13 11:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-10-13 11:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-10-13 11:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-10-13 11:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-10-13 11:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-10-13 11:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-10-13 10:57 - 2016-05-01 12:51 - 000000000 ___RD C:\Users\flavi\Documents\HACIENDA AUTONOMOS DECLARACIONES
2019-10-13 10:52 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-12 18:03 - 2016-05-08 20:08 - 000000000 ____D C:\Users\flavi\Downloads\UTORRENT
2019-10-12 16:49 - 2019-05-13 12:25 - 000596632 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\gemma.sys
2019-10-10 20:03 - 2019-05-23 10:46 - 000004618 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2019-10-10 20:03 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-10-10 20:03 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-10-10 19:53 - 2016-05-01 09:19 - 000213848 _____ C:\bdlog.txt
2019-10-10 19:53 - 2016-05-01 08:59 - 000000000 ____D C:\ProgramData\BDLogging
2019-10-10 19:34 - 2018-11-21 13:20 - 000000000 ___RD C:\Users\flavi\Desktop\PEDIDOS
2019-10-10 19:09 - 2016-04-30 11:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-10-10 19:07 - 2016-04-30 11:47 - 127230528 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-10-08 07:35 - 2019-05-23 10:46 - 000003622 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-08 07:35 - 2019-05-23 10:46 - 000003498 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-08 07:35 - 2016-04-30 11:37 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-05 16:15 - 2019-03-24 16:42 - 000000000 ____D C:\Users\flavi\AppData\Local\BitTorrentHelper
2019-10-03 10:14 - 2019-10-02 09:50 - 000794546 _____ C:\WINDOWS\SysWOW64\rsslogs.20191002104954

==================== Files in the root of some directories ========

2019-04-19 13:42 - 2013-12-18 19:03 - 003082176 _____ (AVerMedia TECHNOLOGIES, Inc.) C:\Users\flavi\InstalDrv_H830_V10.2.64.100_Win8_x64_131202.exe
2016-10-12 14:33 - 2016-10-12 14:33 - 000003584 _____ () C:\Users\flavi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-11-2019
Ran by flavi (02-11-2019 19:24:41)
Running from C:\Users\flavi\Desktop
Windows 10 Home Version 1903 18362.418 (X64) (2019-05-23 09:46:46)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-3081327831-817405356-3807002396-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3081327831-817405356-3807002396-503 - Limited - Disabled)
flavi (S-1-5-21-3081327831-817405356-3807002396-1001 - Administrator - Enabled) => C:\Users\flavi
Invitado (S-1-5-21-3081327831-817405356-3807002396-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3081327831-817405356-3807002396-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: Bitdefender Antivirus (Disabled - Up to date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Enabled - Up to date) {B5763A99-8435-6D40-83EB-2CA97758A9A5}
FW: Bitdefender Firewall (Disabled) {362C5A58-E860-6396-9204-BEEEF20CA463}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.021.20049 - Adobe Systems Incorporated)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.01 - Adobe Systems)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.270 - Adobe)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Argente - Registry Cleaner 3.1.2.0 (HKLM\...\Argente - Registry Cleaner_is1) (Version: 3.1.2.0 - Raúl Argente)
Asistente para actualización a Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22749 - Microsoft Corporation)
AVerMedia H830 USB Hybrid DVB-T 10.2.64.100 (HKLM-x32\...\AVerMedia H830 USB Hybrid DVB-T) (Version: 10.2.64.100 - AVerMedia TECHNOLOGIES, Inc.)
AVerTV 3D (HKLM-x32\...\{5016185F-05AF-455F-AA70-6B6E5D6D4E70}) (Version: 6.5.2.26 - AVerMedia Technologies, Inc.) Hidden
AVerTV 3D (HKLM-x32\...\InstallShield_{5016185F-05AF-455F-AA70-6B6E5D6D4E70}) (Version: 6.5.2.26 - AVerMedia Technologies, Inc.)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.19.1099 - Bitdefender)
Bitdefender Device Management (HKLM\...\Bitdefender Device Management) (Version: 24.0.9.47 - Bitdefender)
Bitdefender Total Security (HKLM\...\Bitdefender) (Version: 23.0.22.97 - Bitdefender)
calibre 64bit (HKLM\...\{987DD73B-F97A-4D00-9522-35FC3B9FDB74}) (Version: 3.18.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
ChromecastApp (HKU\S-1-5-21-3081327831-817405356-3807002396-1001\...\{079ede36-133d-44b0-8053-c7c1fa8d2e0d}_is1) (Version: 1.5.1693.0 - Google Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 84.4.170 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.62.00 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 2.00.0000 - SEIKO EPSON Corp.)
EPSON Scan PDF Extensions (HKLM-x32\...\{F9956472-6E16-4F83-BF9A-F887EF4A45B7}) (Version: 1.03.0001 - SEIKO EPSON Corp.)
EPSON WF-7610 Series Printer Uninstall (HKLM\...\EPSON WF-7610 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Folderico 4.0 RC12 (HKLM-x32\...\Folderico) (Version: 4.0 RC12 - Shedko ( www.softq.org ))
Fotosizer 1.36 (HKLM-x32\...\Fotosizer) (Version: 1.36 - Fotosizer.com)
Foxit PhantomPDF Business (HKLM-x32\...\{F54D6DB2-CEE3-4089-BE83-09F4DD180B4E}) (Version: 7.0.8.1216 - Foxit Software Inc.)
Free Window Registry Repair (HKLM-x32\...\Free Window Registry Repair) (Version:  - )
Glary Utilities PRO 5.109 (HKLM-x32\...\Glary Utilities 5) (Version: 5.109.0.134 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.87 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
Hauppauge Signal Monitor Utility (HKLM-x32\...\Hauppauge Signal Monitor Utility) (Version:  - )
Hauppauge Software MPEG-2 Decoder Installer (HKLM-x32\...\Hauppauge Software MPEG-2 Decoder Installer) (Version:  - )
Hauppauge WinTV 7 (HKLM-x32\...\Hauppauge WinTV 7) (Version:  - )
HWiNFO64 Version 5.82 (HKLM\...\HWiNFO64_is1) (Version: 5.82 - Martin Malík - REALiX)
IcoFX 1.6.4 (HKLM-x32\...\IcoFX_is1) (Version:  - )
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4815 - Intel Corporation)
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
K-Lite Codec Pack 12.2.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.2.5 - KLCP)
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Manuales de EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.50.0.0 - SEIKO EPSON CORPORATION)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Outlook Hotmail Connector de 64 bits (HKLM\...\{95140000-0081-0C0A-1000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MyEpson Portal (HKLM-x32\...\{3361D415-BA35-4143-B301-661991BA6219}) (Version: 1.1.2.2 - SEIKO EPSON CORPORATION) Hidden
MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version:  - SEIKO EPSON Corporation)
Nero 8.3.2.1 (HKLM-x32\...\Nero8WinuE_is1) (Version: 8.3.2.1 - Bj @ WinuE)
NirSoft ShellExView (HKLM-x32\...\NirSoft ShellExView) (Version:  - )
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
Pixillion, convertidor de archivos de imagen (HKLM-x32\...\Pixillion) (Version: 2.91 - NCH Software)
RealDownloader (HKLM-x32\...\{13743594-F75E-491E-9EFF-203C8F8DF705}) (Version: 18.1.4.144 - RealNetworks) Hidden
RealDownloader (HKLM-x32\...\{48D18738-099C-4FAA-AFD9-80B592A25478}) (Version: 18.1.3.103 - RealNetworks, Inc.) Hidden
RealDownloader (HKLM-x32\...\{f05bfa4b-0c78-4a3e-aa74-8c220b4a7782}) (Version: 18.1.4.144 - RealNetworks) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (HKLM-x32\...\{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}) (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (HKLM\...\{21E47F47-C9A7-4454-BA48-388327B0EA00}) (Version: 10.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (HKLM-x32\...\{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}) (Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (RealTimes) (HKLM-x32\...\RealPlayer 18.1) (Version: 18.1.3 - RealNetworks)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8555 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (HKLM-x32\...\{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}) (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Registry Repair 5.0.1.102 (HKLM-x32\...\Registry Repair) (Version: 5.0.1.102 - Glarysoft Ltd)
Revo Uninstaller Pro 3.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.5 - VS Revo Group, Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Switch Sound File Converter (HKLM-x32\...\Switch) (Version: 5.11 - NCH Software)
TomTom HOME (HKLM-x32\...\{F76EFA2A-BF0B-47BC-9AD5-857FFBD3CC79}) (Version: 2.9.93 - Nombre de su organización)
Total Video Converter 3.71 100812 (HKLM-x32\...\Total Video Converter 3.71_is1) (Version:  - EffectMatrix Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation)
UpdateService (HKLM-x32\...\{E3AE96D6-E196-45B4-AF62-2B41998B9E37}) (Version: 1.0.0 - RealNetworks, Inc.) Hidden
Video Downloader (HKLM-x32\...\{8B6202FD-3790-4DD4-B343-51736F7FF4E5}) (Version: 1.2.0 - RealNetworks) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.3 - VideoLAN)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-3) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
WavePad, editor de audio (HKLM-x32\...\WavePad) (Version: 6.54 - NCH Software)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)

Packages:
=========
Abridor gratuito [Gratis] -> C:\Program Files\WindowsApps\SolvusoftCorporation.32792D4052C2D_1.1.2.0_x86__8gdaqrm1kfbzy [2019-04-24] (Solvusoft Corporation)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.150.300.0_x86__kgqvnymyfvs32 [2019-10-21] (king.com)
Complemento de Fotos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-04-24] (Microsoft Corporation)
Correo y Calendario -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-10-01] (Microsoft Corporation) [MS Ad]
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_105.1.618.0_x64__v10z8vjag6ke6 [2019-10-21] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2019-05-23] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-04-24] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-04-24] (Microsoft Corporation) [MS Ad]
Microsoft News: Noticias destacadas en español -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-15] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-05] (Microsoft Studios) [MS Ad]
MSN Deportes -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
MSN Dinero -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-29] (Microsoft Corporation) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-15] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2019-04-24] (Twitter Inc.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3081327831-817405356-3807002396-1001_Classes\CLSID\{86508D42-E5D7-4D10-9C6F-D427AEEB85B5}\InprocServer32 -> C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3081327831-817405356-3807002396-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\flavi\Dropbox [2016-12-11 10:56]
CustomCLSID: HKU\S-1-5-21-3081327831-817405356-3807002396-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\psuser_64.dll => No File
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2014-11-17] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [TVCShellExt] -> {4E33A7F5-8083-4C08-9D45-C5CED88F5C04} => C:\Program Files (x86)\Total Video Converter\TVCShellExtx64.dll [2010-07-29] () [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpcontextmenu.dll [2016-05-03] (RealNetworks, Inc. -> RealNetworks, Inc.)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ab736fe7f232ee1e\igfxDTCM.dll [2017-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2012-12-29] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\flavi\Favorites\Sitio para descargas de NCH Software.lnk -> hxxp://www.nch.com.au/es/index.htm
ShortcutWithArgument: C:\Users\flavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Google Play Música.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi
ShortcutWithArgument: C:\Users\flavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\vGet Cast (DLNA Controller).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=ekdjofnchpbfmnfbedalmbdlhbabiapi
ShortcutWithArgument: C:\Users\flavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Videostream for Google Chromecast™.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=cnciopoikihiagdjbjpnocolokfelagl

==================== Loaded Modules (Whitelisted) =============

2012-12-18 20:09 - 2012-12-18 20:09 - 001436672 _____ () [File not signed] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Locale\es_ES\PDFMaker\AdobePDFMakerX.ESP
2012-12-18 20:09 - 2012-12-18 20:09 - 000130560 _____ () [File not signed] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Locale\es_es\PDFMaker\PDFMOutlookAddin.ESP
2016-12-30 21:25 - 2010-07-29 18:19 - 000293888 _____ () [File not signed] C:\Program Files (x86)\Total Video Converter\TVCShellExtx64.dll
2018-07-11 13:40 - 2009-04-01 16:55 - 000024064 _____ () [File not signed] C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServerps.dll
2012-09-23 19:44 - 2012-09-23 19:44 - 000010240 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\es_es\Acrobat Elements\ContextMenuShim64.esp
2016-07-09 15:20 - 2013-09-24 13:45 - 000204800 _____ (AVerMedia Technologies, Inc.) [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\dll\CardID.dll
2016-07-09 15:20 - 2013-09-16 15:55 - 000651264 _____ (AVerMedia Technologies, Inc.) [File not signed] C:\Program Files (x86)\Common Files\AVerMedia\dll\GraphMaster.dll
2018-07-11 13:40 - 2009-04-01 16:55 - 001130496 _____ (Hauppauge Computer Works) [File not signed] C:\Program Files (x86)\WinTV\WinTV7\NativeMMS.dll
2018-07-11 13:40 - 2009-04-01 16:55 - 000049152 _____ (Hauppauge Computer Works, Inc.) [File not signed] C:\Program Files (x86)\WinTV\WinTV7\DataModel.dll
2018-07-11 13:40 - 2009-04-01 17:40 - 000667648 _____ (Hauppauge Computer Works, Inc.) [File not signed] C:\Program Files (x86)\WinTV\WinTV7\MultiMediaServices.dll
2019-05-23 10:28 - 2019-05-23 10:28 - 001101824 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL
2015-12-17 10:11 - 2015-12-17 10:11 - 000132096 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\epnsm.dll
2009-10-21 16:39 - 2009-10-21 16:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll
2019-02-22 17:01 - 2019-02-22 17:01 - 000704512 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files (x86)\EPSON\MyEpson Portal\Configration_00000171\MepCfg.dll
2019-02-22 15:09 - 2019-02-22 15:09 - 000475136 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files (x86)\EPSON\MyEpson Portal\Online Manual_00000013\MepFAQ.dll
2016-04-30 21:25 - 2012-11-12 14:15 - 000558592 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enppmon.dll
2016-04-30 21:25 - 2012-10-22 16:19 - 000219648 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enpres.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-05-25 10:04 - 2019-11-02 19:18 - 000003531 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 hl2rcv.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na2m-pr.licenses.adobe.com
127.0.0.1 na4r.services.adobe.com
127.0.0.1 ims-na1-prprod.adobelogin.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1   192.150.14.69
127.0.0.1   192.150.18.101
127.0.0.1   192.150.18.108
127.0.0.1   192.150.22.40
127.0.0.1   192.150.8.100

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Calibre2\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3081327831-817405356-3807002396-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\flavi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img2.jpg
DNS Servers: 212.166.210.80 - 212.166.132.104
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "RealTimes.lnk"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "EEventManager"
HKLM\...\StartupApproved\Run32: => "FUFAXRCV"
HKLM\...\StartupApproved\Run32: => "FUFAXSTM"
HKLM\...\StartupApproved\Run32: => "TkBellExe"
HKLM\...\StartupApproved\Run32: => "KiesTrayAgent"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-3081327831-817405356-3807002396-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000001"
HKU\S-1-5-21-3081327831-817405356-3807002396-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-3081327831-817405356-3807002396-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-3081327831-817405356-3807002396-1001\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{31787192-71FC-4EEA-AD64-C06D0B79FB47}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [TCP Query User{2ABCAFA0-FF60-467D-84DF-D820CB8F81B9}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{2E070C28-1F32-47E8-A4E8-8AA47EF5A8C9}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{24B2BFA5-7E6C-4E0C-A0EE-C6CA590F98FE}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{8F94A8A1-42A6-4ACF-ACF0-B9C5039AD7C0}] => (Allow) C:\Users\flavi\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{FAA0F189-014E-4001-8CE5-236C5B91943A}] => (Allow) C:\Users\flavi\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{CB3E14CE-29E2-40FC-A91B-16A1C7C9FB89}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{42F53A08-92C4-4005-B962-1B6960B1A3CE}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{55352FA2-422A-4DE5-B1F4-8FC44E2E141F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B6C39BB6-5E0F-4EA0-AA2D-10A053280FBA}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Restore Points =========================

22-10-2019 09:47:01 Punto de control programado
28-10-2019 15:18:48 Revo Uninstaller Pro's restore point - Malwarebytes Anti-Malware versión 2.2.1.1043
31-10-2019 13:25:56 31-10-19 resetear adaptador de Red
02-11-2019 19:14:29 ZHPcleaner

==================== Faulty Device Manager Devices ============

Name: Detection Verification
Description: Detection Verification
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (11/02/2019 07:12:04 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7740,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (11/02/2019 06:53:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: RealPlayerUpdateSvc.exe, versión: 0.0.0.0, marca de tiempo: 0x56b2bc35
Nombre del módulo con errores: ntdll.dll, versión: 10.0.18362.387, marca de tiempo: 0xa4208572
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0009c147
Identificador del proceso con errores: 0x1498
Hora de inicio de la aplicación con errores: 0x01d58fe727f25868
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
Ruta de acceso del módulo con errores: C:\WINDOWS\SYSTEM32\ntdll.dll
Identificador del informe: 6b896a38-39a2-4802-a105-b2a811de0232
Nombre completo del paquete con errores: 
Identificador de aplicación relativa del paquete con errores:

Error: (11/02/2019 06:43:45 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4688,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (11/02/2019 06:29:24 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (11/02/2019 06:29:24 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) No puede encontrar el objeto o propiedad

Error: (10/31/2019 01:31:23 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.

Error: (10/31/2019 01:31:23 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]

Error: (10/31/2019 01:27:25 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4468,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


System errors:
=============
Error: (11/02/2019 07:18:00 PM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: El controlador de dispositivo para el Módulo de plataforma segura (TPM) encontró en el hardware de TPM un error irrecuperable que impide que se usen los servicios de TPM (como el cifrado de datos). Para obtener más ayuda, póngase en contacto con el fabricante del equipo.

Error: (11/02/2019 06:53:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio RealPlayer Update Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (11/02/2019 06:31:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Error de instalación: error de Windows al instalar la siguiente actualización, error 0x80073d02: 9NZKPSTSNW4P-Microsoft.XboxGamingOverlay.

Error: (11/02/2019 06:27:50 PM) (Source: TPM) (EventID: 15) (User: )
Description: El controlador de dispositivo para el Módulo de plataforma segura (TPM) encontró en el hardware de TPM un error irrecuperable que impide que se usen los servicios de TPM (como el cifrado de datos). Para obtener más ayuda, póngase en contacto con el fabricante del equipo.

Error: (10/31/2019 01:31:39 PM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: El controlador de dispositivo para el Módulo de plataforma segura (TPM) encontró en el hardware de TPM un error irrecuperable que impide que se usen los servicios de TPM (como el cifrado de datos). Para obtener más ayuda, póngase en contacto con el fabricante del equipo.

Error: (10/31/2019 11:36:03 AM) (Source: TPM) (EventID: 15) (User: )
Description: El controlador de dispositivo para el Módulo de plataforma segura (TPM) encontró en el hardware de TPM un error irrecuperable que impide que se usen los servicios de TPM (como el cifrado de datos). Para obtener más ayuda, póngase en contacto con el fabricante del equipo.

Error: (10/29/2019 10:41:19 PM) (Source: TPM) (EventID: 15) (User: )
Description: El controlador de dispositivo para el Módulo de plataforma segura (TPM) encontró en el hardware de TPM un error irrecuperable que impide que se usen los servicios de TPM (como el cifrado de datos). Para obtener más ayuda, póngase en contacto con el fabricante del equipo.

Error: (10/29/2019 07:19:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio RealPlayer Update Service se terminó de manera inesperada. Esto ha sucedido 1 veces.


CodeIntegrity:
===================================

Date: 2019-11-02 19:18:33.234
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-11-02 19:18:33.214
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-10-31 13:32:18.567
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-10-31 13:32:18.547
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-10-28 15:31:18.740
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

==================== Memory info =========================== 

BIOS: Insyde Corp. V1.21 08/08/2018
Motherboard: KBL Charmander_KL
Processor: Intel(R) Core(TM) i7-8550U CPU @ 1.80GHz
Percentage of memory in use: 37%
Total physical RAM: 12163.6 MB
Available physical RAM: 7651.96 MB
Total Virtual: 14019.6 MB
Available Virtual: 9346.09 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:892.78 GB) (Free:227.09 GB) NTFS

\\?\Volume{28e31cc0-0000-0000-007e-000000000000}\ (Reservado para el sistema) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{28e31cc0-0000-0000-0000-8051df000000}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 894.3 GB) (Disk ID: 28E31CC0)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=892.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=530 MB) - (Type=27)
Partition 4: (Not Active) - (Size=468 MB) - (Type=17)

==================== End of Addition.txt =======================

@alejandro8008 informe recibidos correctamente. Dame un par de dias para que nos analice y te envíe un script para corregir los problemas que yo detecte.

Estupendo frica, muchas gracias.

Buenos días @alejandro8008.

Ya tengo el script preparado para poder enviartelo, pero antes tengo una pregunta. ¿reconoces la carpeta C:\lvpphiih? Fue creada el 12 de Octubre. ¿La creaste tú?

Hola frica,

Esa carpeta no me suena de nada, no la he creado yo, tiene un ejecutable (helidlpv.exe un archivo BIN y un archivo AU3) que no se lo que es.

También quería comentarte que haciendo pruebas he conectado 2 antenas WIFI de TP-LINK, que tengo por casa (instalado lo drivers) y que estas si me mantienen la conexión, de 2.4, por si acaso te sirve de algo el dato.

Muchas gracias. Saludos.

Ya tengo el fixlist preparado. Su información sobre el contenido de esta carpeta ha sido importante. Esa carpeta contenía parte de un maleware que se pasó inadvertido por las otras herramientas antimalewares.

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga y ejecuta DelFix en el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

2.- Desactiva Temporalmente tu antivirus.

3.- Abre un nuevo archivo Notepad/Bloc de Notas y copia y pega este contenido:


Start
CloseProcesses:
CreateRestorePoint:
HKLM-x32\...\Run: [] => [X]
Task: {DE0428B8-7E4A-4019-8A67-91E271C86CDF} - \AutoKMS -> No File <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
SearchScopes: HKU\S-1-5-21-3081327831-817405356-3807002396-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
SearchScopes: HKU\S-1-5-21-3081327831-817405356-3807002396-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-04-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-04-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-3081327831-817405356-3807002396-1001: @tools.google.com/Google Update;version=3 -> C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-3081327831-817405356-3807002396-1001: @tools.google.com/Google Update;version=9 -> C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [No File]
CHR Extension: (Chrome Media Router) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-31]
CustomCLSID: HKU\S-1-5-21-3081327831-817405356-3807002396-1001_Classes\CLSID\{86508D42-E5D7-4D10-9C6F-D427AEEB85B5}\InprocServer32 -> C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3081327831-817405356-3807002396-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\psuser_64.dll => No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ShortcutWithArgument: C:\Users\flavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Google Play Música.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi
ShortcutWithArgument: C:\Users\flavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\vGet Cast (DLNA Controller).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=ekdjofnchpbfmnfbedalmbdlhbabiapi
ShortcutWithArgument: C:\Users\flavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Videostream for Google Chromecast™.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=cnciopoikihiagdjbjpnocolokfelagl
2019-10-12 17:14 - 2019-10-12 17:14 - 000000000 ____D C:\lvpphiih

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.
1 me gusta

Hola frica

te adjunto lo que me has solicitado.

Gracias

Saludos.

https://www.virustotal.com/gui/file/1da298cab4d537b0b7b5dabf09bff6a212b9e45731e0cc772f99026005fb9e48/detection


https://www.virustotal.com/gui/file/3434f2580cdc70ca2a68d74677428fcf5c70efff02e4900cdd284e2ca7bf9f01/detection


https://www.virustotal.com/gui/file/04d51a2567f3ebc2fc7639410830fdb696003c6452285b808f60645c341faf6d/detection

Gracias por los enlaces. Por cierto no es necesario que todas sus respuestas vengan dentro de texto formateados. Esto es correcto sólo para cuando usted tenga que pegar los informes de las herramientas que usted use.

Bien, pues lee mi anterior mensaje (el cual fue cambiado) y sigue las instrucciones .

Hola frica, el informe solicitado. muchas gracias. saludos.

Fix result of Farbar Recovery Scan Tool (x64) Version: 06-11-2019
Ran by flavi (06-11-2019 18:55:14) Run:4
Running from C:\Users\flavi\Desktop
Loaded Profiles: flavi (Available Profiles: flavi)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:

CreateRestorePoint:



HKLM-x32\...\Run: [] => [X]

Task: {DE0428B8-7E4A-4019-8A67-91E271C86CDF} - \AutoKMS -> No File <==== ATTENTION

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 

SearchScopes: HKU\S-1-5-21-3081327831-817405356-3807002396-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00

SearchScopes: HKU\S-1-5-21-3081327831-817405356-3807002396-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00

FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-04-03] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-04-03] (Oracle America, Inc. -> Oracle Corporation)

FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)

FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)

FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)

FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)

FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC)

FF Plugin HKU\S-1-5-21-3081327831-817405356-3807002396-1001: @tools.google.com/Google Update;version=3 -> C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [No File]

FF Plugin HKU\S-1-5-21-3081327831-817405356-3807002396-1001: @tools.google.com/Google Update;version=9 -> C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [No File]

CHR Extension: (Chrome Media Router) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-31]

CustomCLSID: HKU\S-1-5-21-3081327831-817405356-3807002396-1001_Classes\CLSID\{86508D42-E5D7-4D10-9C6F-D427AEEB85B5}\InprocServer32 -> C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\psuser_64.dll => No File

CustomCLSID: HKU\S-1-5-21-3081327831-817405356-3807002396-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\psuser_64.dll => No File

ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File

ShortcutWithArgument: C:\Users\flavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Google Play Música.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi

ShortcutWithArgument: C:\Users\flavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\vGet Cast (DLNA Controller).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=ekdjofnchpbfmnfbedalmbdlhbabiapi

ShortcutWithArgument: C:\Users\flavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Videostream for Google Chromecast™.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) ->  --profile-directory=Default --app-id=cnciopoikihiagdjbjpnocolokfelagl

2019-10-12 17:14 - 2019-10-12 17:14 - 000000000 ____D C:\lvpphiih



CMD: ipconfig /flushdns

CMD: ipconfig /renew

CMD: bitsadmin /reset /allusers

CMD: netsh winsock reset

CMD: netsh advfirewall reset

CMD: netsh advfirewall set allprofiles state ON

CMD: netsh int ipv4 reset

CMD: netsh int ipv6 reset

RemoveProxy:

EmptyTemp:

Hosts:

END

*****************

Processes closed successfully.
Restore point was successfully created.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{DE0428B8-7E4A-4019-8A67-91E271C86CDF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DE0428B8-7E4A-4019-8A67-91E271C86CDF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => not found
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
"HKU\S-1-5-21-3081327831-817405356-3807002396-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-3081327831-817405356-3807002396-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
"HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-04-03] (Oracle America, Inc." => not found
C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll => moved successfully
"HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-04-03] (Oracle America, Inc." => not found
C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll => moved successfully
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN" => not found
C:\Program Files\VideoLAN\VLC\npvlc.dll => moved successfully
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN" => not found
"C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN" => not found
"C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN" => not found
"C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN" => not found
"C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc" => not found
"C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll" => not found
HKU\S-1-5-21-3081327831-817405356-3807002396-1001\Software\MozillaPlugins\@tools.google.com/Google Update;version=3 => removed successfully
"C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll" => not found
HKU\S-1-5-21-3081327831-817405356-3807002396-1001\Software\MozillaPlugins\@tools.google.com/Google Update;version=9 => removed successfully
"C:\Users\flavi\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll" => not found
CHR Extension: (Chrome Media Router) - C:\Users\flavi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-31] => Error: No automatic fix found for this entry.
HKU\S-1-5-21-3081327831-817405356-3807002396-1001_Classes\CLSID\{86508D42-E5D7-4D10-9C6F-D427AEEB85B5} => removed successfully
HKU\S-1-5-21-3081327831-817405356-3807002396-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F} => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
C:\Users\flavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Google Play Música.lnk => Shortcut argument removed successfully
C:\Users\flavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\vGet Cast (DLNA Controller).lnk => Shortcut argument removed successfully
C:\Users\flavi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicaciones de Chrome\Videostream for Google Chromecast™.lnk => Shortcut argument removed successfully
C:\lvpphiih => moved successfully

========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Ethernet 2 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de red Bluetooth 3 mientras los medios
est‚n desconectados.

Adaptador de Ethernet Ethernet 2:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Wi-Fi 2:

   Sufijo DNS espec¡fico para la conexi¢n. . : 
   V¡nculo: direcci¢n IPv6 local. . . : fe80::d0df:65ad:f7a1:a596%27
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.170
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.0.1

Adaptador de Ethernet Conexi¢n de red Bluetooth 3:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to cancel {AC19C78C-B96E-43CF-97C4-EDB462CFFC7D}.
Unable to cancel {F0BF60C3-5452-4579-8F6B-B34D5CD607A1}.
Unable to cancel {3C7FAA5D-D1DC-4791-BDF2-FFC789BD504E}.
Unable to cancel {BA799097-6B34-49E2-8E8C-D71B2FE2BAB3}.
Unable to cancel {BD435F4B-5F5C-4426-AE1C-0AB669D2AA49}.
Unable to cancel {DD33CC81-D3A4-42EA-BFAD-B757D01CF9FE}.
Unable to cancel {EC86101D-6250-40F1-A2C3-6BCD5551FF9C}.
Unable to cancel {0BA4DE45-BB22-4167-9B37-ACF4A557A1AF}.
0 out of 8 jobs canceled.

========= End of CMD: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11032019191436050\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11032019191436050\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11032019191438483\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11032019191438483\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-3081327831-817405356-3807002396-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-3081327831-817405356-3807002396-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-3081327831-817405356-3807002396-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11032019191436188\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-3081327831-817405356-3807002396-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11032019191436188\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-3081327831-817405356-3807002396-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11032019191438673\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-3081327831-817405356-3807002396-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11032019191438673\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-3081327831-817405356-3807002396-1007-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11032019191438273\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-3081327831-817405356-3807002396-1007-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11032019191438273\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 11034624 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 114519690 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 21005684 B
Edge => 40461 B
Chrome => 386459739 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 45426 B
NetworkService => 45426 B
flavi => 23475148 B
defaultuser1 => 23475148 B

RecycleBin => 3689414749 B
EmptyTemp: => 4 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:56:07 ====

Pues en este momento podemos decir que su equipo está libre de maleware a día de hoy.

:one: Limpieza de basura

Para limpiar la basura de su equipo, realiza los pasos de este mensaje del foro :

:two: Informe de Aida64

Necesito un informe de Aida64 para ver todas las características de tu equipo. Posteriormente haremos acciones para ver si podemos solucionar su problema de conexión en 2,4 GHz:

Instale el Aida 64 desde https://www.aida64.com/downloads. Desde AIDA64,

  1. clic derecho sobre el ítem Computer (Equipo)

  2. seleccione la opción “Quick Report" (Informe rápido)

  3. Seleccione “Plain Text" (Texto sin formato)

Nos pegas el reporte en su próxima respuesta (OJO, la parte [ Debug - PCI ] del informe no hace falta que la ponga)

--> Como pegar reportes en el foro

Hola frica,
Espero que este bien, descargue el extreme, aunque la pagina avisaba que al ser trial no tendria todas funciones.

--------[ AIDA64 Extreme ]----------------------------------------------------------------------------------------------

    Versión                                           AIDA64 v6.10.5200/es
    Módulo de rendimiento                             4.5.811-x64
    Página principal                                  http://www.aida64.com/
    Tipo de informe                                   Informe rápido [ TRIAL VERSION ]
    Equipo                                            DESKTOP-1G85JOE
    Generador                                         flavi
    Sistema operativo                                 Microsoft Windows 10 Home 10.0.18362.418 (Win10 RS6 [1903] May 2019 Update)
    Fecha                                             2019-11-06
    Hora                                              22:15


--------[ Resumen ]-----------------------------------------------------------------------------------------------------

    Equipo:
      Tipo de equipo                                    Equipo basado en x64 ACPI  (Mobile)
      Sistema operativo                                 Microsoft Windows 10 Home
      Service Pack del SO                               [ TRIAL VERSION ]
      Internet Explorer                                 11.418.18362.0
      Edge                                              44.18362.387.0
      DirectX                                           DirectX 12.0
      Nombre del equipo                                 DESKTOP-1G85JOE
      Nombre de usuario                                 flavi
      Dirección de correo electrónico SMTP              
      Dominio de inicio de sesión                       [ TRIAL VERSION ]
      Fecha / Hora                                      2019-11-06 / 22:15

    Placa base:
      Tipo de CPU                                       QuadCore Intel Core i7-8550U, 1800 MHz (18 x 100)
      Nombre de la placa base                           Acer Aspire A515-51
      Chipset de la placa base                          Intel Sunrise Point-LP, Intel Kaby Lake-R
      Memoria del sistema                               [ TRIAL VERSION ]
      DIMM3: Kingston ACR26D4S9S8MH-8                   [ TRIAL VERSION ]
      Tipo de BIOS                                      Insyde (08/08/2018)

    Pantalla:
      Adaptador de vídeo                                Intel(R) UHD Graphics 620  (1 GB)
      Adaptador de vídeo                                Intel(R) UHD Graphics 620  (1 GB)
      Adaptador de vídeo                                Intel(R) UHD Graphics 620  (1 GB)
      Aceleradora 3D                                    Intel UHD Graphics 620
      Monitor                                           CMN N156BGA-EB2  [15.6" LCD]

    Multimedia:
      Adaptador de audio                                Intel Sunrise Point-LP PCH - High Definition Audio Controller [C1]

    Almacenamiento:
      Controladora IDE                                  Controladora SATA AHCI estándar
      Controladora IDE                                  Realtek PCIE CardReader
      Controladora de almacenamiento                    Controladora de espacios de almacenamiento de Microsoft
      Unidad de disco                                   Intenso SSD SATAIII  (894 GB)
      Estado SMART de los discos duros                  Aceptar

    Particiones:
      C: (NTFS)                                         [ TRIAL VERSION ]
      Tamaño total                                      [ TRIAL VERSION ]

    Entrada:
      Teclado                                           Dispositivo de teclado HID
      Teclado                                           Teclado PS/2 estándar
      Mouse                                             Mouse compatible con HID
      Mouse                                             Mouse compatible con HID

    Red:
      Dirección IP primaria                             [ TRIAL VERSION ]
      Dirección MAC primaria                            F8-D1-11-0C-54-76
      Adaptador de red                                  Bluetooth Device (Personal Area Network) #3
      Adaptador de red                                  Microsoft Wi-Fi Direct Virtual Adapter #4
      Adaptador de red                                  Microsoft Wi-Fi Direct Virtual Adapter
      Adaptador de red                                  Qualcomm Atheros QCA9377 Wireless Network Adapter
      Adaptador de red                                  Realtek PCIe GbE Family Controller
      Adaptador de red                                  TP-LINK Wireless USB Adapter  (192. [ TRIAL VERSION ])

    Periféricos:
      Impresora                                         Adobe PDF
      Impresora                                         Enviar a OneNote 2010
      Impresora                                         EPSON WF-7610 Series (Copiar 1)
      Impresora                                         EPSON WF-7610 Series (FAX)
      Impresora                                         EPSON WF-7610 Series
      Impresora                                         EPSON36D65B (WF-7610 Series)
      Impresora                                         Fax
      Impresora                                         Foxit PhantomPDF Printer
      Impresora                                         HPC52CFA (HP OfficeJet 3830 series)
      Impresora                                         Microsoft Print to PDF
      Impresora                                         Microsoft XPS Document Writer
      Impresora                                         OneNote
      Impresora                                         Print to Evernote
      Controladora USB3                                 Intel Sunrise Point-LP PCH - USB 3.0 xHCI Controller  [C1]
      Dispositivo USB                                   Bluetooth USB Module
      Dispositivo USB                                   Dispositivo compuesto USB
      Dispositivo USB                                   Dispositivo compuesto USB
      Dispositivo USB                                   Dispositivo de entrada USB
      Dispositivo USB                                   Dispositivo de entrada USB
      Dispositivo USB                                   HD WebCam
      Dispositivo USB                                   TP-LINK Wireless USB Adapter
      Batería                                           Adaptador de CA de Microsoft
      Batería                                           Batería con método de control compatible con ACPI de Microsoft

    DMI:
      Vendedor del BIOS DMI                             Insyde Corp.
      Versión del BIOS DMI                              V1.21
      Fabricante del sistema DMI                        Acer
      Producto del sistema DMI                          Aspire A515-51
      Versión del sistema DMI                           V1.21
      Número de serie del sistema DMI                   [ TRIAL VERSION ]
      UUID del sistema DMI                              [ TRIAL VERSION ]
      Fabricante de la placa base DMI                   KBL
      Producto de la placa base DMI                     Charmander_KL
      Versión de la placa base DMI                      V1.21
      Número de serie de la placa base DMI              [ TRIAL VERSION ]
      Fabricante del chasis DMI                         Acer
      Versión del chasis DMI                            V1.21
      Número de serie del chasis DMI                    [ TRIAL VERSION ]
      Identificador del chasis DMI                      [ TRIAL VERSION ]
      Tipo de chasis DMI                                Notebook


--------[ Debug - PCI ]-------------------------------------------------------------------------------------------------

    B00 D00 F00:  Intel Kaby Lake-R - Host Bridge/DRAM Controller
                  
      Offset 000:  86 80 14 59  06 00 90 20  08 00 00 06  00 00 00 00 
      Offset 010:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 020:  00 00 00 00  00 00 00 00  00 00 00 00  25 10 93 11 
      Offset 030:  00 00 00 00  E0 00 00 00  00 00 00 00  00 00 00 00 
      Offset 040:  01 90 D1 FE  00 00 00 00  01 00 D1 FE  00 00 00 00 
      Offset 050:  C1 02 00 00  31 00 00 00  47 00 F0 8F  01 00 00 8B 
      Offset 060:  01 00 00 E0  00 00 00 00  01 80 D1 FE  00 00 00 00 
      Offset 070:  00 00 00 FF  02 00 00 00  00 0C 00 FF  7F 00 00 00 
      Offset 080:  31 11 11 11  11 33 33 00  1A 00 00 00  00 00 00 00 
      Offset 090:  01 00 00 FF  02 00 00 00  01 00 F0 6E  03 00 00 00 
      Offset 0A0:  01 00 00 00  03 00 00 00  01 00 00 6F  03 00 00 00 
      Offset 0B0:  01 00 00 8C  01 00 80 8B  01 00 00 8B  01 00 00 90 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 FF 
      Offset 0E0:  09 00 10 01  81 60 61 7A  DC 80 15 16  00 C0 04 00 
      Offset 0F0:  00 00 00 00  C8 0F 0A 00  00 00 00 00  00 00 00 00 

    B00 D02 F00:  Intel Kaby Lake-R GT2 - Integrated Graphics Controller
                  
      Offset 000:  86 80 17 59  07 04 10 00  07 00 00 03  10 00 00 00 
      Offset 010:  04 00 00 B0  00 00 00 00  0C 00 00 A0  00 00 00 00 
      Offset 020:  01 40 00 00  00 00 00 00  00 00 00 00  25 10 93 11 
      Offset 030:  00 00 00 00  40 00 00 00  00 00 00 00  00 01 00 00 
      Offset 040:  09 70 0C 01  81 60 61 7A  DC 80 15 16  00 00 00 00 
      Offset 050:  C1 02 00 00  31 00 00 00  00 00 00 00  01 00 00 8C 
      Offset 060:  00 00 01 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 070:  10 AC 92 00  00 80 00 10  00 00 00 00  00 00 00 00 
      Offset 080:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 090:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0A0:  00 00 00 00  00 00 00 00  00 00 00 00  05 D0 01 00 
      Offset 0B0:  D8 02 E0 FE  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  01 00 22 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0E0:  00 00 00 00  00 00 00 00  00 80 00 00  00 00 00 00 
      Offset 0F0:  00 00 00 00  00 00 00 00  00 00 00 00  18 B0 F6 8A 

    B00 D14 F00:  Intel Sunrise Point-LP PCH - USB 3.0 xHCI Controller  [C1]
                  
      Offset 000:  86 80 2F 9D  06 04 90 02  21 30 03 0C  00 00 80 00 
      Offset 010:  04 00 31 B1  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 020:  00 00 00 00  00 00 00 00  00 00 00 00  25 10 93 11 
      Offset 030:  00 00 00 00  70 00 00 00  00 00 00 00  00 01 00 00 
      Offset 040:  FD 01 34 80  88 C6 0F 80  00 00 00 00  00 00 00 00 
      Offset 050:  5B 6E CE 0F  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 060:  30 60 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 070:  01 80 C2 C1  08 00 00 00  00 00 00 00  00 00 00 00 
      Offset 080:  05 00 87 00  F8 02 E0 FE  00 00 00 00  00 00 00 00 
      Offset 090:  09 00 14 F0  10 00 40 01  00 00 00 00  C1 0A 08 00 
      Offset 0A0:  00 08 00 00  00 18 00 00  8F 40 02 00  00 01 04 00 
      Offset 0B0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0E0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0F0:  00 00 00 00  00 00 00 00  B3 0F 41 08  00 00 00 00 

    B00 D15 F00:  Intel Sunrise Point-LP PCH - LPSS: I2C Controller 0 [C1]
                  
      Offset 000:  86 80 60 9D  00 04 10 00  21 00 80 11  10 00 80 00 
      Offset 010:  04 E0 40 FE  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 020:  00 00 00 00  00 00 00 00  00 00 00 00  25 10 93 11 
      Offset 030:  00 00 00 00  80 00 00 00  00 00 00 00  10 01 00 00 
      Offset 040:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 050:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 060:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 070:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 080:  01 90 03 00  0B 00 00 00  00 00 00 00  00 00 00 00 
      Offset 090:  09 00 14 F0  10 00 40 01  01 21 00 00  C1 24 00 00 
      Offset 0A0:  00 08 0F 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0B0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0E0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0F0:  00 00 00 00  00 00 00 00  B3 0F 41 08  00 00 00 00 

    B00 D15 F01:  Intel Sunrise Point-LP PCH - LPSS: I2C Controller 1 [C1]
                  
      Offset 000:  86 80 61 9D  06 00 10 00  21 00 80 11  10 00 80 00 
      Offset 010:  04 D0 40 FE  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 020:  00 00 00 00  00 00 00 00  00 00 00 00  25 10 93 11 
      Offset 030:  00 00 00 00  80 00 00 00  00 00 00 00  11 02 00 00 
      Offset 040:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 050:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 060:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 070:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 080:  01 90 03 00  08 00 00 00  00 00 00 00  00 00 00 00 
      Offset 090:  09 00 14 F0  10 00 40 01  01 21 00 00  C1 24 00 00 
      Offset 0A0:  00 08 0F 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0B0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0E0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0F0:  00 00 00 00  00 00 00 00  B3 0F 41 08  00 00 00 00 

    B00 D16 F00:  Intel Sunrise Point-LP PCH - CSME: Host Embedded Controller Interface 1 (HECI1) [C1]
                  
      Offset 000:  86 80 3A 9D  06 04 10 00  21 00 80 07  00 00 80 00 
      Offset 010:  04 F0 40 FE  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 020:  00 00 00 00  00 00 00 00  00 00 00 00  25 10 93 11 
      Offset 030:  00 00 00 00  50 00 00 00  00 00 00 00  00 01 00 00 
      Offset 040:  45 02 00 A0  10 00 01 80  06 05 F2 00  00 00 00 00 
      Offset 050:  01 8C 03 40  08 00 00 00  00 00 00 00  00 00 00 00 
      Offset 060:  20 00 00 00  00 40 08 00  00 00 00 00  00 00 00 40 
      Offset 070:  00 00 00 00  00 00 00 E0  00 00 00 00  00 00 00 00 
      Offset 080:  00 00 00 00  00 00 00 00  00 00 00 00  05 00 81 00 
      Offset 090:  78 03 E0 FE  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0A0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0B0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 40 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0E0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0F0:  00 00 00 00  00 00 00 00  B3 0F 41 08  00 00 00 00 

    B00 D17 F00:  Intel Sunrise Point-LP PCH - SATA AHCI Controller [C1]
                  
      Offset 000:  86 80 03 9D  07 04 B0 02  21 01 06 01  00 00 00 00 
      Offset 010:  00 80 32 B1  00 F0 32 B1  81 40 00 00  89 40 00 00 
      Offset 020:  61 40 00 00  00 D0 32 B1  00 00 00 00  25 10 93 11 
      Offset 030:  00 00 00 00  80 00 00 00  00 00 00 00  00 01 00 00 
      Offset 040:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 050:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 060:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 070:  01 A8 03 40  08 00 00 00  00 00 00 00  00 00 00 00 
      Offset 080:  05 70 01 00  38 01 E0 FE  00 00 00 00  00 00 00 00 
      Offset 090:  00 06 01 81  83 01 00 00  24 02 DC 20  30 00 00 80 
      Offset 0A0:  A4 00 00 00  00 00 00 00  12 00 10 00  48 00 00 00 
      Offset 0B0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  11 00 00 00  00 00 00 00  01 00 00 00  00 00 00 00 
      Offset 0E0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0F0:  00 00 00 00  00 00 00 00  B3 0F 41 08  00 00 00 00 

    B00 D1C F00:  Intel Sunrise Point-LP PCH - PCI Express Root Port 5 [A1/C1]
                  
      Offset 000:  86 80 14 9D  07 04 10 00  F1 00 04 06  10 00 81 00 
      Offset 010:  00 00 00 00  00 00 00 00  00 01 01 00  30 30 00 20 
      Offset 020:  20 B1 20 B1  F1 FF 01 00  00 00 00 00  00 00 00 00 
      Offset 030:  00 00 00 00  40 00 00 00  00 00 00 00  0B 01 00 00 
      Offset 040:  10 80 42 01  01 80 00 00  00 00 10 00  13 48 72 05 
      Offset 050:  42 00 11 70  00 B2 24 00  00 00 40 01  00 00 00 00 
      Offset 060:  00 00 00 00  37 08 00 00  00 04 00 00  0E 00 00 00 
      Offset 070:  03 00 01 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 080:  05 90 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 090:  0D A0 00 00  25 10 93 11  00 00 00 00  00 00 00 00 
      Offset 0A0:  01 00 03 C8  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0B0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  01 10 00 07  42 18 00 00  08 00 9E 89  00 00 00 00 
      Offset 0E0:  00 B7 F3 00  03 90 00 00  16 80 12 00  00 00 00 00 
      Offset 0F0:  50 01 00 00  00 03 00 40  B3 0F 41 08  04 00 00 01 

    B00 D1C F05:  Intel Sunrise Point-LP PCH - PCI Express Root Port 6 [A1/C1]
                  
      Offset 000:  86 80 15 9D  06 04 10 00  F1 00 04 06  10 00 81 00 
      Offset 010:  00 00 00 00  00 00 00 00  00 02 02 00  F0 00 00 20 
      Offset 020:  00 B1 10 B1  F1 FF 01 00  00 00 00 00  00 00 00 00 
      Offset 030:  00 00 00 00  40 00 00 00  00 00 00 00  0A 02 00 00 
      Offset 040:  10 80 42 01  01 80 00 00  20 00 11 00  13 48 72 06 
      Offset 050:  42 00 11 70  00 B2 2C 00  00 00 40 01  00 00 00 00 
      Offset 060:  00 00 00 00  37 08 00 00  00 04 00 00  0E 00 00 00 
      Offset 070:  03 00 01 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 080:  05 90 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 090:  0D A0 00 00  25 10 93 11  00 00 00 00  00 00 00 00 
      Offset 0A0:  01 00 03 C8  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0B0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  11 10 00 07  42 18 00 00  08 00 9E 89  00 00 00 00 
      Offset 0E0:  00 03 E3 00  60 8C 00 00  16 00 10 00  00 00 00 00 
      Offset 0F0:  50 01 00 00  00 00 00 4C  B3 0F 41 08  04 00 00 02 

    B00 D1F F00:  Intel Sunrise Point-LP PCH - LPC/eSPI Controller [C1]
                  
      Offset 000:  86 80 4E 9D  07 00 00 02  21 00 01 06  00 00 80 00 
      Offset 010:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 020:  00 00 00 00  00 00 00 00  00 00 00 00  25 10 93 11 
      Offset 030:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 040:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 050:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 060:  00 00 00 00  D0 00 00 00  00 00 00 00  00 00 00 00 
      Offset 070:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 080:  10 00 03 3F  41 16 0C 00  61 FD 00 00  69 00 04 00 
      Offset 090:  81 06 0C 00  00 0F 00 00  01 00 00 FF  00 00 00 00 
      Offset 0A0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0B0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  33 22 11 00  67 45 00 00  CE FF 00 00  A2 00 00 00 
      Offset 0E0:  C0 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0F0:  00 00 00 00  00 00 00 00  B3 0F 41 08  00 00 00 00 

    B00 D1F F02:  Intel Sunrise Point-LP PCH - Power Management Controller (PMC) [C1]
                  
      Offset 000:  86 80 21 9D  06 00 00 00  21 00 80 05  00 00 80 00 
      Offset 010:  00 40 32 B1  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 020:  00 00 00 00  00 00 00 00  00 00 00 00  25 10 93 11 
      Offset 030:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 040:  01 18 00 00  80 01 00 00  00 00 00 FE  00 00 00 00 
      Offset 050:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 060:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 070:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 080:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 090:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0A0:  F0 36 80 D8  39 78 07 00  00 46 00 00  00 00 00 81 
      Offset 0B0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0E0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0F0:  00 00 00 00  00 00 00 00  B3 0F 41 08  00 00 00 00 

    B00 D1F F03:  Intel Sunrise Point-LP PCH - High Definition Audio Controller [C1]
                  
      Offset 000:  86 80 71 9D  00 04 10 00  21 80 03 04  10 20 00 00 
      Offset 010:  04 00 32 B1  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 020:  04 00 30 B1  00 00 00 00  00 00 00 00  25 10 93 11 
      Offset 030:  00 00 00 00  50 00 00 00  00 00 00 00  00 01 00 00 
      Offset 040:  00 00 00 00  10 00 00 00  FF 0D 3B 80  00 00 00 00 
      Offset 050:  01 60 43 C0  0B 01 00 00  00 00 00 00  00 00 00 00 
      Offset 060:  05 00 80 00  78 01 E0 FE  00 00 00 00  00 00 00 00 
      Offset 070:  10 00 91 00  00 00 00 10  00 28 10 00  00 00 00 00 
      Offset 080:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 090:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0A0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0B0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0C0:  08 06 02 00  00 70 80 04  00 0C A5 82  10 00 03 00 
      Offset 0D0:  00 0C B5 02  10 00 03 00  00 00 00 00  00 00 00 00 
      Offset 0E0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0F0:  00 00 00 00  00 00 00 00  B3 0F 41 08  00 00 00 00 

    B00 D1F F04:  Intel Sunrise Point-LP PCH - SMBus Controller [C1]
                  
      Offset 000:  86 80 23 9D  03 00 80 02  21 00 05 0C  00 00 00 00 
      Offset 010:  04 E0 32 B1  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 020:  41 40 00 00  00 00 00 00  00 00 00 00  25 10 93 11 
      Offset 030:  00 00 00 00  00 00 00 00  00 00 00 00  0B 01 00 00 
      Offset 040:  11 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 050:  01 04 00 00  00 01 00 00  00 00 00 00  00 00 00 00 
      Offset 060:  04 05 05 00  00 00 0A 0A  00 00 00 00  00 00 00 00 
      Offset 070:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 080:  24 00 04 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 090:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0A0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0B0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0E0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0F0:  00 00 00 00  00 00 00 00  B3 0F 41 08  00 00 00 00 

    B01 D00 F00:  Realtek RTS5287 PCI-E Card Reader
                  
      Offset 000:  EC 10 87 52  06 04 10 00  01 00 00 FF  10 00 80 00 
      Offset 010:  00 50 20 B1  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 020:  00 00 00 00  00 00 00 00  00 00 00 00  25 10 93 11 
      Offset 030:  00 00 00 00  40 00 00 00  00 00 00 00  00 02 00 00 
      Offset 040:  01 50 C3 F7  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 050:  05 70 81 00  18 03 E0 FE  00 00 00 00  00 00 00 00 
      Offset 060:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 070:  10 B0 02 00  C0 8C 90 05  10 20 19 00  11 7C 47 00 
      Offset 080:  42 01 11 10  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 090:  00 00 00 00  1F 08 0C 00  00 04 00 00  02 00 00 00 
      Offset 0A0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0B0:  11 D0 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  03 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0E0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0F0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 

    B01 D00 F01:  Realtek RTL8168/8111 PCI-E Gigabit Ethernet Adapter
                  
      Offset 000:  EC 10 68 81  07 04 10 00  12 00 00 02  10 00 80 00 
      Offset 010:  01 30 00 00  00 00 00 00  04 40 20 B1  00 00 00 00 
      Offset 020:  04 00 20 B1  00 00 00 00  00 00 00 00  25 10 93 11 
      Offset 030:  00 00 00 00  40 00 00 00  00 00 00 00  00 01 00 00 
      Offset 040:  01 50 C3 FF  08 00 00 00  00 00 00 00  00 00 00 00 
      Offset 050:  05 70 80 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 060:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 070:  10 B0 02 02  C0 8C 90 05  10 20 19 00  11 7C 47 00 
      Offset 080:  40 00 11 10  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 090:  00 00 00 00  1F 08 0C 00  10 00 00 00  02 00 00 00 
      Offset 0A0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0B0:  11 D0 03 80  04 00 00 00  04 08 00 00  00 00 00 00 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  03 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0E0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0F0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 

    B02 D00 F00:  Qualcomm Atheros QCA9377 802.11ac Wireless Network Adapter
                  
      Offset 000:  8C 16 42 00  46 05 10 00  31 00 80 02  10 00 00 00 
      Offset 010:  04 00 00 B1  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 020:  00 00 00 00  00 00 00 00  00 00 00 00  AD 11 A6 08 
      Offset 030:  00 00 00 00  40 00 00 00  00 00 00 00  00 01 00 00 
      Offset 040:  01 50 C3 C9  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 050:  05 70 37 01  B8 01 E0 FE  00 00 00 00  00 FF FF FF 
      Offset 060:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 070:  10 00 02 00  C1 8D 90 05  30 20 10 00  11 6C 47 00 
      Offset 080:  42 01 11 10  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 090:  00 00 00 00  10 08 04 00  00 04 00 00  02 00 00 00 
      Offset 0A0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0B0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0D0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0E0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 
      Offset 0F0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00 

    PCI-8086-5914:  Intel SNB/IVB/HSW/CRW/BDW/SKL/KBL/CFL/WHL/CNL/CML/ICL/TGL MCHBAR
                  
      Offset 4000:  11 27 09 26  24 78 02 00  86 9D 16 26  06 04 06 07
      Offset 4010:  09 09 0A 0B  1E 18 06 06  06 04 07 07  34 40 00 0C
      Offset 4020:  35 45 45 45  45 44 15 0E  00 00 00 00  04 00 00 00

    PCI-8086-5914:  Intel SNB/IVB/HSW/CRW/BDW/SKL/KBL/CFL/WHL/CNL/CML/ICL/TGL MCHBAR
                  
      Offset 4200:  00 00 3F 00  00 00 00 00  00 00 00 00  00 00 00 00
      Offset 4210:  05 0D 20 01  46 55 F8 17  C3 C3 C3 C3  C3 C3 C3 C3
      Offset 4220:  00 00 00 00  03 03 03 03  00 01 01 01  00 00 00 00
      Offset 4230:  10 02 21 20  10 02 21 64  40 98 00 A2  94 24 A4 01
      Offset 4240:  00 53 00 62  00 40 00 00  80 00 02 00  E8 02 00 00
      Offset 4250:  00 00 00 00  01 00 00 00  00 00 00 00  00 00 00 00
      Offset 4260:  0B 00 00 00  07 00 00 00  8F 00 00 00  C8 00 00 00
      Offset 4270:  96 00 00 00  FF FF FF FF  01 00 00 80  00 00 00 00
      Offset 4280:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00
      Offset 4290:  00 70 00 00  00 00 00 00  00 00 00 00  FF FF FF FF
      Offset 42A0:  FF FF FF FF  00 00 00 00  10 32 54 76  00 00 00 00

    PCI-8086-5914:  Intel SNB/IVB/HSW/CRW/BDW/SKL/KBL/CFL/WHL/CNL/CML/ICL/TGL MCHBAR
                  
      Offset 4400:  11 27 09 26  24 78 02 00  86 9D 16 26  06 04 06 07
      Offset 4410:  09 09 0A 0B  1E 1A 06 06  06 04 07 07  34 44 00 0C
      Offset 4420:  36 45 45 45  46 44 15 0E  00 00 00 00  04 00 00 00

    PCI-8086-5914:  Intel SNB/IVB/HSW/CRW/BDW/SKL/KBL/CFL/WHL/CNL/CML/ICL/TGL MCHBAR
                  
      Offset 4600:  00 00 3F 00  00 00 00 00  00 00 00 00  00 00 00 00
      Offset 4610:  00 0D 20 01  46 50 F8 17  C3 C3 C3 C3  C3 C3 C3 C3
      Offset 4620:  00 00 00 00  03 03 03 03  00 01 01 01  00 00 00 00
      Offset 4630:  10 02 21 20  10 02 21 64  40 98 00 A2  94 24 A4 01
      Offset 4640:  00 53 00 62  00 40 00 00  80 00 02 00  E8 02 00 00
      Offset 4650:  00 00 00 00  01 00 00 00  00 00 00 00  00 00 00 00
      Offset 4660:  0B 00 00 00  07 00 00 00  8F 00 00 00  C8 00 00 00
      Offset 4670:  96 00 00 00  FF FF FF FF  02 00 00 80  00 00 00 00
      Offset 4680:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00
      Offset 4690:  00 70 00 00  00 00 00 00  00 00 00 00  FF FF FF FF
      Offset 46A0:  FF FF FF FF  00 00 00 00  10 32 54 76  00 00 00 00

    PCI-8086-5914:  Intel SNB/IVB/HSW/CRW/BDW/SKL/KBL/CFL/WHL/CNL/CML/ICL/TGL MCHBAR
                  
      Offset 4800:  00 00 00 00  00 00 03 00  00 00 00 08  00 00 00 08
      Offset 4810:  00 00 00 08  00 00 00 08  00 00 00 08  00 00 00 08

    PCI-8086-5914:  Intel SNB/IVB/HSW/CRW/BDW/SKL/KBL/CFL/WHL/CNL/CML/ICL/TGL MCHBAR
                  
      Offset 4A80:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00
      Offset 4A90:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00

    PCI-8086-5914:  Intel SNB/IVB/HSW/CRW/BDW/SKL/KBL/CFL/WHL/CNL/CML/ICL/TGL MCHBAR
                  
      Offset 5000:  10 40 00 00  10 01 00 00  10 01 00 00  04 01 00 00
      Offset 5010:  08 00 00 00  00 00 00 00  13 00 00 00  00 00 00 00

    PCI-8086-5914:  Intel SNB/IVB/HSW/CRW/BDW/SKL/KBL/CFL/WHL/CNL/CML/ICL/TGL MCHBAR
                  
      Offset 5880:  64 01 00 00  05 00 00 00  00 00 00 00  00 00 00 00
      Offset 5890:  FF FF 00 00  FF FF 00 00  FF FF 00 00  FF FF 00 00
      Offset 58A0:  00 00 00 00  07 00 00 00  00 00 00 00  00 00 00 00
      Offset 58B0:  00 00 00 00  00 00 00 00  00 00 00 00  7F 00 00 00
      Offset 58C0:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00
      Offset 58D0:  FF FF 00 00  FF FF 00 00  FF FF 00 00  FF FF 00 00
      Offset 58E0:  00 00 00 00  DE 00 54 00  CF DF 8E 01  00 00 00 00
      Offset 58F0:  00 00 00 00  00 00 00 00  00 80 5B 00  00 00 00 34
      Offset 5900:  00 00 00 00  00 00 00 01  00 00 00 00  02 00 00 00
      Offset 5910:  00 00 00 00  00 00 00 00  12 08 10 07  00 00 00 00
      Offset 5920:  09 00 00 00  0D 00 00 00  14 DF 5C 02  A2 48 0D 00
      Offset 5930:  78 00 00 00  00 00 00 00  03 0E 0A 00  4E A9 E9 06
      Offset 5940:  4B 37 9C 00  40 8D 01 00  00 00 00 00  00 00 00 00
      Offset 5950:  00 00 00 00  00 00 1C 00  00 14 01 F1  3D 04 04 00
      Offset 5960:  A0 90 3C 00  00 00 00 00  54 B9 43 59  10 21 2F 7F
      Offset 5970:  00 00 00 00  14 DD BA ED  2A 00 00 00  2A 00 00 00
      Offset 5980:  2A 00 00 00  08 D4 79 4C  00 00 00 00  00 00 00 00
      Offset 5990:  00 00 00 00  FF 00 00 00  17 06 06 00  00 00 64 02
      Offset 59A0:  78 80 DD 00  60 81 42 00  00 00 00 00  00 00 00 00
      Offset 59B0:  00 00 00 00  00 00 00 00  37 3D 00 37  00 00 00 00
      Offset 59C0:  00 00 3A 88  00 00 00 00  00 00 00 00  00 00 00 00

    PCI-8086-5914:  Intel SNB/IVB/HSW/CRW/BDW/SKL/KBL/CFL/WHL/CNL/CML/ICL/TGL MCHBAR
                  
      Offset 5E00:  09 00 00 00  09 00 00 00  00 00 00 00  00 00 00 00
      Offset 5E10:  00 00 00 00  00 00 00 00  00 00 00 00  00 00 00 00


--------[ Debug - Video BIOS ]------------------------------------------------------------------------------------------

    C000:0000  U.....000000000000./[email protected] VGA Compatible BIOS. .N.^.l...
    C000:0040  PCIR...Y........................2.:.-..Y.Y.Y.Y.>.>......+.;.=..Y
    C000:0080  .Y.Y.Y......&.'.#.!..Y.Y.Y&Y.Y!Y#Y'Y.>[email protected]
    C000:00C0  [email protected]
    C000:0100  V...............................................................
    C000:0140  ............N...............h...................................
    C000:0180  .......................DH.....DH.....DH....0DH.....DI.....DI....
    C000:01C0  .DJ.....DJ....0DJ.....DI....0DI.....DJ.....DK.....DK.....DK....0
    C000:0200  .L......L......L....0.L......M......M.....0.$..2.H..4.l..8....:.
    C000:0240  ...<....A.$..C.H..E.l..I....K....M....P $..R H..T l..X ...Z ...\
    C000:0280   ...`....a....b ...c....d....e ...f....g....h ...i.5..j.5..k 5..
    C000:02C0  l.O..m.O..n O..o.i..p.i..q i..}.l..~.l.. l....... .-..`........
    C000:0300  .... .1..l...........rQ.. n(U...!....... ....`"........... [email protected]
    C000:0340  .......... .1X. (.........V. .1X. [email protected]&0..6.........
    C000:0380  . A. 0.`........0*..Q.*@0p.........4..Q.*@[email protected]@@...
    C000:03C0  ......h[..r.<P....................E.............................


--------[ Debug - Unknown ]---------------------------------------------------------------------------------------------

    SSD             Intenso SSD SATAIII


------------------------------------------------------------------------------------------------------------------------

The names of actual companies and products mentioned herein may be the trademarks of their respective owners.