Proceso notepad.exe acumula mucha memoria

Eliminar Malwares
1

Me pasa lo mismo que una persona de aquí,estoy utilizando el farbar y no sé que más hacer.

Gracias por la ayuda!

2

Hola @tonyrm06 y Bienvenido al Foro.!!!

Además de usar FRST has usado alguna otra herramienta previamente…??

Nos comentas.

Saludos.

3

Seguí estos pasos:

4

Bien… entonces nos pones los informes de Malwarebytes y a continuación los dos informes que te habrá generado FRST(Addition.txt y FRST.txt)

Saludos.

5 
C:\WINDOWS\system32\enterprisecsps.dll
2019-11-13 15:26 - 2019-10-02 04:16 - 002379264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-13 15:26 - 2019-10-02 04:16 - 001676800 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-11-13 15:26 - 2019-10-02 04:14 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-11-13 15:26 - 2019-10-02 04:14 - 001222656 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-11-13 15:25 - 2019-11-08 08:01 - 000490136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-11-13 15:25 - 2019-11-08 07:46 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-11-13 15:25 - 2019-11-08 07:45 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2019-11-13 15:25 - 2019-11-08 07:43 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-13 15:25 - 2019-11-08 07:43 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-11-13 15:25 - 2019-11-08 07:42 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-13 15:25 - 2019-11-08 07:41 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-13 15:25 - 2019-11-08 07:40 - 004055552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-11-13 15:25 - 2019-11-08 07:38 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-13 15:25 - 2019-11-08 07:38 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-13 15:25 - 2019-11-08 07:38 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-13 15:25 - 2019-11-08 06:15 - 000322576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2019-11-13 15:25 - 2019-11-08 06:14 - 001628704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-11-13 15:25 - 2019-11-08 06:14 - 000662840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-11-13 15:25 - 2019-11-08 06:03 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2019-11-13 15:25 - 2019-11-08 06:00 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2019-11-13 15:25 - 2019-11-08 05:58 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2019-11-13 15:25 - 2019-11-08 05:57 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-11-13 15:25 - 2019-11-08 05:56 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-11-13 15:25 - 2019-11-08 05:55 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-11-13 15:25 - 2019-11-08 05:02 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-11-13 15:25 - 2019-11-08 02:40 - 000568312 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-11-13 15:25 - 2019-11-08 02:40 - 000135176 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-11-13 15:25 - 2019-11-08 02:40 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-11-13 15:25 - 2019-11-08 02:40 - 000060216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2019-11-13 15:25 - 2019-11-08 02:39 - 000249088 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-11-13 15:25 - 2019-11-08 02:38 - 001459328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-11-13 15:25 - 2019-11-08 02:38 - 001260776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-11-13 15:25 - 2019-11-08 02:38 - 001141712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-11-13 15:25 - 2019-11-08 02:38 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-11-13 15:25 - 2019-11-08 02:38 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-11-13 15:25 - 2019-11-08 02:38 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-11-13 15:25 - 2019-11-08 02:38 - 000605712 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-11-13 15:25 - 2019-11-08 02:38 - 000466744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-11-13 15:25 - 2019-11-08 02:32 - 000435216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-11-13 15:25 - 2019-11-08 02:32 - 000385272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-11-13 15:25 - 2019-11-08 02:32 - 000191800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-11-13 15:25 - 2019-11-08 02:32 - 000146920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-11-13 15:25 - 2019-11-08 02:31 - 001658136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2019-11-13 15:25 - 2019-11-08 02:31 - 000665432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-11-13 15:25 - 2019-11-08 02:31 - 000379432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-11-13 15:25 - 2019-11-08 02:30 - 001130776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-11-13 15:25 - 2019-11-08 02:30 - 000785776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-11-13 15:25 - 2019-11-08 02:30 - 000581256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-11-13 15:25 - 2019-11-08 02:14 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-11-13 15:25 - 2019-11-08 02:13 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-13 15:25 - 2019-11-08 02:13 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-11-13 15:25 - 2019-11-08 02:13 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2019-11-13 15:25 - 2019-11-08 02:13 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-11-13 15:25 - 2019-11-08 02:13 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-13 15:25 - 2019-11-08 02:12 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-11-13 15:25 - 2019-11-08 02:12 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-13 15:25 - 2019-11-08 02:12 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-13 15:25 - 2019-11-08 02:12 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-11-13 15:25 - 2019-11-08 02:12 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2019-11-13 15:25 - 2019-11-08 02:12 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-13 15:25 - 2019-11-08 02:12 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2019-11-13 15:25 - 2019-11-08 02:11 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-11-13 15:25 - 2019-11-08 02:11 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-13 15:25 - 2019-11-08 02:11 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-11-13 15:25 - 2019-11-08 02:10 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-11-13 15:25 - 2019-11-08 02:10 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-11-13 15:25 - 2019-11-08 02:10 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-11-13 15:25 - 2019-11-08 02:10 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2019-11-13 15:25 - 2019-11-08 02:09 - 002179072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-13 15:25 - 2019-11-08 02:09 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-11-13 15:25 - 2019-11-08 02:09 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2019-11-13 15:25 - 2019-11-08 02:08 - 002603008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-11-13 15:25 - 2019-11-08 02:08 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-13 15:25 - 2019-11-08 02:08 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-11-13 15:25 - 2019-11-08 02:08 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-11-13 15:25 - 2019-11-08 02:07 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-11-13 15:25 - 2019-11-08 02:07 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-11-13 15:25 - 2019-11-08 02:07 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-11-13 15:25 - 2019-11-08 02:07 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-13 15:25 - 2019-11-08 02:07 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-11-13 15:25 - 2019-11-08 02:07 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-11-13 15:25 - 2019-11-08 02:07 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-11-13 15:25 - 2019-11-08 00:46 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2019-11-13 15:25 - 2019-11-01 02:10 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-11-13 15:25 - 2019-10-02 10:34 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-11-13 15:25 - 2019-10-02 10:27 - 000117240 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-11-13 15:25 - 2019-10-02 10:09 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-13 15:25 - 2019-10-02 10:09 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-11-13 15:25 - 2019-10-02 10:09 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-11-13 15:25 - 2019-10-02 10:07 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-11-13 15:25 - 2019-10-02 10:06 - 000672768 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-11-13 15:25 - 2019-10-02 10:05 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2019-11-13 15:25 - 2019-10-02 09:23 - 000106560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-11-13 15:25 - 2019-10-02 09:12 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-11-13 15:25 - 2019-10-02 09:11 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2019-11-13 15:25 - 2019-10-02 09:08 - 000472576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2019-11-13 15:25 - 2019-10-02 09:07 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2019-11-13 15:25 - 2019-10-02 09:07 - 000486400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-11-13 15:25 - 2019-10-02 09:06 - 002406912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-11-13 15:25 - 2019-10-02 05:00 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-11-13 15:25 - 2019-10-02 04:58 - 000795360 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-11-13 15:25 - 2019-10-02 04:51 - 000192312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-11-13 15:25 - 2019-10-02 04:50 - 000536832 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-11-13 15:25 - 2019-10-02 04:50 - 000148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-11-13 15:25 - 2019-10-02 04:49 - 000769288 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-11-13 15:25 - 2019-10-02 04:49 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-13 15:25 - 2019-10-02 04:49 - 000088016 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-11-13 15:25 - 2019-10-02 04:35 - 000465832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-11-13 15:25 - 2019-10-02 04:34 - 000526512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2019-11-13 15:25 - 2019-10-02 04:34 - 000129360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-11-13 15:25 - 2019-10-02 04:34 - 000081040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-11-13 15:25 - 2019-10-02 04:33 - 003330880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-13 15:25 - 2019-10-02 04:33 - 001254712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-11-13 15:25 - 2019-10-02 04:32 - 000412696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2019-11-13 15:25 - 2019-10-02 04:21 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-13 15:25 - 2019-10-02 04:19 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-13 15:25 - 2019-10-02 04:19 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-11-13 15:25 - 2019-10-02 04:19 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-11-13 15:25 - 2019-10-02 04:18 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-13 15:25 - 2019-10-02 04:18 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2019-11-13 15:25 - 2019-10-02 04:18 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-13 15:25 - 2019-10-02 04:18 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-13 15:25 - 2019-10-02 04:18 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-13 15:25 - 2019-10-02 04:17 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-13 15:25 - 2019-10-02 04:17 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-11-13 15:25 - 2019-10-02 04:17 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2DP.sys
2019-11-13 15:25 - 2019-10-02 04:16 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-13 15:25 - 2019-10-02 04:16 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-13 15:25 - 2019-10-02 04:16 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-11-13 15:25 - 2019-10-02 04:15 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-11-13 15:25 - 2019-10-02 04:15 - 000517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-13 15:25 - 2019-10-02 04:14 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-11-13 15:25 - 2019-10-02 04:14 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-11-13 15:25 - 2019-10-02 04:14 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-11-13 15:25 - 2019-10-02 04:14 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-11-13 15:25 - 2019-10-02 04:14 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2019-11-13 15:25 - 2019-10-02 04:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-11-13 15:25 - 2019-10-02 04:13 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-11-13 15:25 - 2019-10-02 04:13 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-11-13 15:25 - 2019-10-02 04:11 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-11-13 15:25 - 2019-10-02 04:11 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-11-13 15:25 - 2019-10-02 04:10 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-11-13 15:25 - 2019-10-02 04:09 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-11-13 15:25 - 2019-10-02 04:09 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-11-11 22:34 - 2019-11-24 13:56 - 000000000 ____D C:\Users\tonym\AppData\LocalLow\uTorrent
2019-11-06 21:22 - 2019-12-07 14:28 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2019-11-06 18:31 - 2019-12-05 18:23 - 000000128 _____ C:\Users\tonym\AppData\Local\PUTTY.RND
2019-11-06 12:28 - 2019-12-06 16:42 - 000002866 _____ C:\WINDOWS\system32\Tasks\ASUS Smart Gesture Launcher
2019-10-31 12:05 - 2019-12-04 19:21 - 000000000 ____D C:\Users\tonym\Local Sites
2019-10-31 12:03 - 2019-10-31 12:03 - 000002312 _____ C:\Users\tonym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Local.lnk
2019-10-31 12:02 - 2019-10-31 12:02 - 000000000 ____D C:\Users\tonym\AppData\Local\local-updater
2019-10-30 18:42 - 2019-10-02 05:19 - 000374584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-10-30 18:42 - 2019-10-02 05:00 - 000433168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-10-30 18:42 - 2019-10-02 05:00 - 000039032 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-10-30 18:42 - 2019-09-13 04:48 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-10-30 18:42 - 2019-09-13 04:47 - 000081720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-10-30 18:42 - 2019-09-13 04:47 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-10-30 18:42 - 2019-09-13 04:13 - 001154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-10-30 18:42 - 2019-09-04 05:13 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-10-30 18:42 - 2019-09-04 05:13 - 000129040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-10-30 18:42 - 2019-09-04 04:45 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2019-10-30 18:42 - 2019-09-04 04:43 - 004849664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-10-30 18:42 - 2019-09-04 04:42 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-10-30 18:42 - 2019-08-07 08:07 - 001031696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-10-30 18:42 - 2019-08-07 07:36 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-10-30 18:42 - 2019-07-09 03:29 - 000230200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2019-10-30 18:42 - 2019-07-09 03:19 - 000046608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\werkernel.sys
2019-10-30 18:42 - 2019-07-09 02:46 - 000300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-10-30 18:41 - 2019-10-02 11:10 - 004527072 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-10-30 18:41 - 2019-10-02 10:50 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-10-30 18:41 - 2019-10-02 10:50 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-10-30 18:41 - 2019-10-02 10:46 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-10-30 18:41 - 2019-10-02 08:42 - 003397120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-10-30 18:41 - 2019-10-02 05:20 - 003180080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2019-10-30 18:41 - 2019-10-02 05:04 - 002774120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-30 18:41 - 2019-10-02 05:01 - 002468048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-10-30 18:41 - 2019-10-02 04:26 - 000468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-10-30 18:41 - 2019-10-02 04:25 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2019-10-30 18:41 - 2019-10-02 04:23 - 004938240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-10-30 18:41 - 2019-10-02 04:23 - 004517376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-10-30 18:41 - 2019-09-13 10:57 - 001375456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-10-30 18:41 - 2019-09-13 10:40 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-10-30 18:41 - 2019-09-13 04:58 - 007900880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-10-30 18:41 - 2019-09-13 04:58 - 001613096 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-10-30 18:41 - 2019-09-13 04:48 - 003290584 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-10-30 18:41 - 2019-09-13 04:17 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-10-30 18:41 - 2019-09-13 04:15 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-10-30 18:41 - 2019-09-13 04:14 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-10-30 18:41 - 2019-09-13 04:14 - 001809408 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-30 18:41 - 2019-09-13 04:13 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-10-30 18:41 - 2019-09-10 07:17 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-10-30 18:41 - 2019-09-10 07:16 - 019525632 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-10-30 18:41 - 2019-09-04 05:24 - 000705336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-10-30 18:41 - 2019-09-04 05:14 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-10-30 18:41 - 2019-09-04 05:14 - 000594032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-10-30 18:41 - 2019-09-04 04:42 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2019-10-30 18:41 - 2019-09-04 04:41 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-10-30 18:41 - 2019-09-04 04:40 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2019-10-30 18:41 - 2019-09-04 04:40 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-10-30 18:41 - 2019-09-04 04:38 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-10-30 18:41 - 2019-08-15 22:55 - 000786072 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-10-30 18:41 - 2019-08-13 04:11 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-10-30 18:41 - 2019-08-07 12:52 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-10-30 18:41 - 2019-08-07 08:09 - 001328440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-10-30 18:41 - 2019-08-07 08:08 - 000227744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2019-10-30 18:41 - 2019-08-07 07:36 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-10-30 18:41 - 2019-08-07 07:36 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-10-30 18:41 - 2019-08-07 07:32 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2019-10-30 18:41 - 2019-08-07 07:31 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2019-10-30 18:41 - 2019-07-09 03:23 - 001213264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-10-30 18:41 - 2019-07-09 03:19 - 000767232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-10-30 18:41 - 2019-07-09 02:48 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2019-10-30 18:40 - 2019-10-02 11:08 - 001047568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-10-30 18:40 - 2019-10-02 10:53 - 004852736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-10-30 18:40 - 2019-10-02 10:50 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-10-30 18:40 - 2019-10-02 10:48 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-30 18:40 - 2019-10-02 10:48 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2019-10-30 18:40 - 2019-10-02 10:47 - 000957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-10-30 18:40 - 2019-10-02 10:45 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-10-30 18:40 - 2019-10-02 08:41 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-10-30 18:40 - 2019-10-02 05:02 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-10-30 18:40 - 2019-10-02 05:01 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-10-30 18:40 - 2019-10-02 05:01 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-10-30 18:40 - 2019-10-02 05:00 - 002371504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-10-30 18:40 - 2019-10-02 04:48 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-10-30 18:40 - 2019-10-02 04:48 - 001990056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-10-30 18:40 - 2019-10-02 04:47 - 004789944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-10-30 18:40 - 2019-10-02 04:47 - 002260928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-30 18:40 - 2019-10-02 04:28 - 004771840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-10-30 18:40 - 2019-10-02 04:27 - 002126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2019-10-30 18:40 - 2019-10-02 04:22 - 001418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-10-30 18:40 - 2019-10-02 04:22 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-10-30 18:40 - 2019-09-13 10:56 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-10-30 18:40 - 2019-09-13 10:41 - 001644032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2019-10-30 18:40 - 2019-09-13 04:48 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-10-30 18:40 - 2019-09-13 04:48 - 000710240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-10-30 18:40 - 2019-09-13 04:36 - 002478152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-10-30 18:40 - 2019-09-13 04:17 - 003148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-10-30 18:40 - 2019-09-13 04:17 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-10-30 18:40 - 2019-09-13 04:16 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2019-10-30 18:40 - 2019-09-13 04:15 - 002913792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-30 18:40 - 2019-09-13 04:15 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-10-30 18:40 - 2019-09-13 04:15 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-10-30 18:40 - 2019-09-13 04:13 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-10-30 18:40 - 2019-09-13 04:11 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-10-30 18:40 - 2019-09-04 05:14 - 001934808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-10-30 18:40 - 2019-09-04 04:48 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2019-10-30 18:40 - 2019-09-04 04:46 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-10-30 18:40 - 2019-09-04 04:45 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2019-10-30 18:40 - 2019-09-04 04:44 - 003687424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-10-30 18:40 - 2019-08-13 14:45 - 002969600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-10-30 18:40 - 2019-08-13 09:51 - 000905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2019-10-30 18:40 - 2019-08-13 09:50 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2019-10-30 18:40 - 2019-08-13 04:44 - 001793472 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-10-30 18:40 - 2019-08-13 04:17 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-10-30 18:40 - 2019-08-13 02:51 - 000421376 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\system32\curl.exe
2019-10-30 18:40 - 2019-08-07 08:08 - 001566736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2019-10-30 18:40 - 2019-08-07 07:56 - 000357336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2019-10-30 18:40 - 2019-08-07 07:31 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-10-30 18:40 - 2019-07-09 07:37 - 000517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2019-10-30 18:40 - 2019-07-09 07:37 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-10-30 18:40 - 2019-07-09 03:29 - 000031032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys
2019-10-30 18:40 - 2019-07-09 03:19 - 000799248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-10-30 18:40 - 2019-07-09 03:11 - 000576528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-10-30 18:40 - 2019-07-09 02:50 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2019-10-30 18:40 - 2019-07-09 02:48 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2019-10-30 18:39 - 2019-10-02 11:14 - 000349216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-10-30 18:39 - 2019-10-02 10:52 - 008627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-10-30 18:39 - 2019-10-02 10:47 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-10-30 18:39 - 2019-10-02 10:45 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-10-30 18:39 - 2019-10-02 08:44 - 007991296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-10-30 18:39 - 2019-10-02 05:21 - 002417744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2019-10-30 18:39 - 2019-10-02 05:05 - 000092472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-10-30 18:39 - 2019-10-02 05:02 - 000210448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2019-10-30 18:39 - 2019-10-02 05:02 - 000194352 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-10-30 18:39 - 2019-10-02 04:59 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-10-30 18:39 - 2019-10-02 04:48 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-10-30 18:39 - 2019-10-02 04:47 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-10-30 18:39 - 2019-10-02 04:28 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-10-30 18:39 - 2019-10-02 04:28 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2019-10-30 18:39 - 2019-10-02 04:28 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-10-30 18:39 - 2019-10-02 04:28 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2019-10-30 18:39 - 2019-10-02 04:27 - 003554304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2019-10-30 18:39 - 2019-10-02 04:27 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-30 18:39 - 2019-10-02 04:27 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-30 18:39 - 2019-10-02 04:27 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-30 18:39 - 2019-10-02 04:24 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-10-30 18:39 - 2019-10-02 04:23 - 001724928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-10-30 18:39 - 2019-10-02 04:23 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-10-30 18:39 - 2019-10-02 04:23 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-10-30 18:39 - 2019-10-02 04:22 - 001110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-10-30 18:39 - 2019-09-13 11:03 - 000586680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-10-30 18:39 - 2019-09-13 10:44 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-10-30 18:39 - 2019-09-13 10:41 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-10-30 18:39 - 2019-09-13 10:40 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-10-30 18:39 - 2019-09-13 10:39 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-10-30 18:39 - 2019-09-13 04:56 - 005821448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-10-30 18:39 - 2019-09-13 04:49 - 000274792 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-10-30 18:39 - 2019-09-13 04:47 - 001947168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2019-10-30 18:39 - 2019-09-13 04:47 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-10-30 18:39 - 2019-09-13 04:21 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-10-30 18:39 - 2019-09-13 04:21 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-10-30 18:39 - 2019-09-13 04:20 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-10-30 18:39 - 2019-09-13 04:20 - 000166912 _____ (Microsoft Corporation)
6 
C:\WINDOWS\system32\appinfo.dll
2019-10-30 18:39 - 2019-09-13 04:19 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-10-30 18:39 - 2019-09-13 04:18 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-10-30 18:39 - 2019-09-13 04:16 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-10-30 18:39 - 2019-09-13 04:15 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-10-30 18:39 - 2019-09-13 04:14 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-10-30 18:39 - 2019-09-13 04:13 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2019-10-30 18:39 - 2019-09-13 04:13 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2019-10-30 18:39 - 2019-09-13 04:13 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2019-10-30 18:39 - 2019-09-13 04:12 - 001634304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-30 18:39 - 2019-09-13 04:12 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-10-30 18:39 - 2019-09-13 04:11 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-10-30 18:39 - 2019-09-04 10:06 - 000402016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2019-10-30 18:39 - 2019-09-04 09:44 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-10-30 18:39 - 2019-09-04 09:42 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2019-10-30 18:39 - 2019-09-04 09:39 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-10-30 18:39 - 2019-09-04 05:15 - 000323904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2019-10-30 18:39 - 2019-09-04 05:14 - 000420984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xbgmengine.dll
2019-10-30 18:39 - 2019-09-04 05:14 - 000361752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-10-30 18:39 - 2019-09-04 05:13 - 000735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-10-30 18:39 - 2019-09-04 05:13 - 000692352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-10-30 18:39 - 2019-09-04 05:13 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-10-30 18:39 - 2019-09-04 04:45 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-10-30 18:39 - 2019-09-04 04:43 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-10-30 18:39 - 2019-09-04 04:43 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-10-30 18:39 - 2019-09-04 04:43 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-10-30 18:39 - 2019-09-04 04:43 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-10-30 18:39 - 2019-09-04 04:43 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-10-30 18:39 - 2019-09-04 04:42 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-10-30 18:39 - 2019-09-04 04:41 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2019-10-30 18:39 - 2019-09-04 04:40 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-10-30 18:39 - 2019-09-04 04:39 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2019-10-30 18:39 - 2019-09-04 04:39 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-10-30 18:39 - 2019-09-04 04:39 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2019-10-30 18:39 - 2019-09-04 04:38 - 000884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2019-10-30 18:39 - 2019-08-15 22:55 - 000604000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-10-30 18:39 - 2019-08-13 10:09 - 000771384 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-10-30 18:39 - 2019-08-13 10:09 - 000571688 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2019-10-30 18:39 - 2019-08-13 09:49 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2019-10-30 18:39 - 2019-08-13 09:49 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComputerDefaults.exe
2019-10-30 18:39 - 2019-08-13 04:46 - 000611640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-10-30 18:39 - 2019-08-13 04:44 - 002161288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2019-10-30 18:39 - 2019-08-13 04:16 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-10-30 18:39 - 2019-08-13 04:13 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-10-30 18:39 - 2019-08-13 04:13 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2019-10-30 18:39 - 2019-08-13 04:12 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2019-10-30 18:39 - 2019-08-13 04:12 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2019-10-30 18:39 - 2019-08-13 04:11 - 000737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2019-10-30 18:39 - 2019-08-13 04:08 - 000320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2019-10-30 18:39 - 2019-08-13 02:49 - 000806328 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-10-30 18:39 - 2019-08-13 02:49 - 000806328 _____ C:\WINDOWS\system32\locale.nls
2019-10-30 18:39 - 2019-08-07 12:54 - 004783104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-10-30 18:39 - 2019-08-07 08:08 - 000494992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2019-10-30 18:39 - 2019-08-07 08:08 - 000130840 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-10-30 18:39 - 2019-08-07 08:07 - 000115728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-10-30 18:39 - 2019-08-07 07:38 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-10-30 18:39 - 2019-08-07 07:37 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-10-30 18:39 - 2019-08-07 07:37 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-10-30 18:39 - 2019-08-07 07:37 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-10-30 18:39 - 2019-08-07 07:36 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-10-30 18:39 - 2019-08-07 07:35 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-10-30 18:39 - 2019-08-07 07:35 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-10-30 18:39 - 2019-08-07 07:33 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2019-10-30 18:39 - 2019-08-07 07:32 - 000318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-10-30 18:39 - 2019-08-07 07:32 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2019-10-30 18:39 - 2019-08-07 07:31 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-10-30 18:39 - 2019-07-09 08:07 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-10-30 18:39 - 2019-07-09 07:44 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2019-10-30 18:39 - 2019-07-09 07:43 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2019-10-30 18:39 - 2019-07-09 07:39 - 001210880 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2019-10-30 18:39 - 2019-07-09 07:39 - 001193472 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2019-10-30 18:39 - 2019-07-09 07:39 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-10-30 18:39 - 2019-07-09 03:21 - 000133136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2019-10-30 18:39 - 2019-07-09 03:19 - 001674216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2019-10-30 18:39 - 2019-07-09 03:19 - 000152104 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2019-10-30 18:39 - 2019-07-09 03:19 - 000142352 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2019-10-30 18:39 - 2019-07-09 03:12 - 000573808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-10-30 18:39 - 2019-07-09 03:12 - 000125504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2019-10-30 18:39 - 2019-07-09 03:11 - 000108560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2019-10-30 18:39 - 2019-07-09 02:55 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll
2019-10-30 18:39 - 2019-07-09 02:52 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2019-10-30 18:39 - 2019-07-09 02:51 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-10-30 18:39 - 2019-07-09 02:51 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DuCsps.dll
2019-10-30 18:39 - 2019-07-09 02:51 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-10-30 18:39 - 2019-07-09 02:50 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-10-30 18:39 - 2019-07-09 02:50 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-10-30 18:39 - 2019-07-09 02:50 - 000141312 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-10-30 18:39 - 2019-07-09 02:50 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdcpw.dll
2019-10-30 18:39 - 2019-07-09 02:49 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetDriverInstall.dll
2019-10-30 18:39 - 2019-07-09 02:48 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-10-30 18:39 - 2019-07-09 02:48 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-10-30 18:39 - 2019-07-09 02:46 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2019-10-30 18:39 - 2019-07-09 02:45 - 001400832 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-10-30 18:39 - 2019-07-09 02:44 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-10-30 18:39 - 2019-07-09 02:44 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-10-30 18:39 - 2019-07-09 02:43 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-10-30 18:39 - 2019-07-09 02:43 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-10-30 18:39 - 2019-06-20 02:21 - 000058882 _____ C:\WINDOWS\system32\srms.dat
2019-10-30 18:38 - 2019-10-02 08:53 - 000917816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-10-30 18:38 - 2019-10-02 08:41 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-10-30 18:38 - 2019-10-02 04:47 - 000829752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-10-30 18:38 - 2019-10-02 04:25 - 001862656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-10-30 18:38 - 2019-10-02 04:25 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-10-30 18:38 - 2019-10-02 04:24 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-10-30 18:38 - 2019-09-13 10:44 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-10-30 18:38 - 2019-09-13 10:40 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-10-30 18:38 - 2019-09-13 10:39 - 002085888 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-10-30 18:38 - 2019-09-13 09:18 - 000470512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-10-30 18:38 - 2019-09-13 09:17 - 001026280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-10-30 18:38 - 2019-09-13 09:01 - 001300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2019-10-30 18:38 - 2019-09-13 09:01 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-10-30 18:38 - 2019-09-13 09:00 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-10-30 18:38 - 2019-09-13 08:59 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-10-30 18:38 - 2019-09-13 04:56 - 001299472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-10-30 18:38 - 2019-09-13 04:21 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2019-10-30 18:38 - 2019-09-13 04:20 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-10-30 18:38 - 2019-09-13 04:18 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-10-30 18:38 - 2019-09-13 04:17 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-10-30 18:38 - 2019-09-13 04:14 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-10-30 18:38 - 2019-09-13 04:14 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2019-10-30 18:38 - 2019-09-13 04:12 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-10-30 18:38 - 2019-09-13 04:11 - 000979456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2019-10-30 18:38 - 2019-09-13 04:11 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2019-10-30 18:38 - 2019-09-10 01:20 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-10-30 18:38 - 2019-09-10 01:20 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-10-30 18:38 - 2019-09-04 08:50 - 000356896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2019-10-30 18:38 - 2019-09-04 05:04 - 000286616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-10-30 18:38 - 2019-09-04 05:03 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-10-30 18:38 - 2019-09-04 05:03 - 000538192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-10-30 18:38 - 2019-09-04 05:02 - 001805872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-10-30 18:38 - 2019-09-04 05:02 - 000560600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-10-30 18:38 - 2019-09-04 04:44 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-10-30 18:38 - 2019-09-04 04:42 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-10-30 18:38 - 2019-09-04 04:41 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-10-30 18:38 - 2019-09-04 04:41 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-10-30 18:38 - 2019-09-04 04:41 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-10-30 18:38 - 2019-09-04 04:40 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2019-10-30 18:38 - 2019-09-04 04:40 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-10-30 18:38 - 2019-09-04 04:39 - 000976896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-10-30 18:38 - 2019-09-04 04:39 - 000961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-10-30 18:38 - 2019-09-04 04:39 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2019-10-30 18:38 - 2019-09-04 04:38 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2019-10-30 18:38 - 2019-08-13 18:21 - 000665400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-10-30 18:38 - 2019-08-13 18:21 - 000221016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2019-10-30 18:38 - 2019-08-13 18:06 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2019-10-30 18:38 - 2019-08-13 18:06 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComputerDefaults.exe
2019-10-30 18:38 - 2019-08-13 15:04 - 001651040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2019-10-30 18:38 - 2019-08-13 15:04 - 001585304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-10-30 18:38 - 2019-08-13 14:44 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2019-10-30 18:38 - 2019-08-13 14:43 - 000624128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2019-10-30 18:38 - 2019-08-13 14:43 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2019-10-30 18:38 - 2019-08-13 14:42 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-10-30 18:38 - 2019-08-13 14:42 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2019-10-30 18:38 - 2019-08-13 14:40 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-10-30 18:38 - 2019-08-13 09:46 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2019-10-30 18:38 - 2019-08-13 04:11 - 000302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-10-30 18:38 - 2019-08-13 01:24 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-10-30 18:38 - 2019-08-13 00:57 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-10-30 18:38 - 2019-08-07 12:58 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-10-30 18:38 - 2019-08-07 12:55 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll
2019-10-30 18:38 - 2019-08-07 12:55 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2019-10-30 18:38 - 2019-08-07 12:53 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2019-10-30 18:38 - 2019-08-07 12:51 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2019-10-30 18:38 - 2019-08-07 12:30 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-10-30 18:38 - 2019-08-07 12:30 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-10-30 18:38 - 2019-08-07 12:25 - 004175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-10-30 18:38 - 2019-08-07 12:24 - 001472000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-10-30 18:38 - 2019-08-07 07:56 - 001427768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2019-10-30 18:38 - 2019-08-07 07:56 - 000192608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll
2019-10-30 18:38 - 2019-08-07 07:56 - 000101400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-10-30 18:38 - 2019-08-07 07:36 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2019-10-30 18:38 - 2019-08-07 07:36 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-10-30 18:38 - 2019-08-07 07:35 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2019-10-30 18:38 - 2019-08-07 07:35 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-10-30 18:38 - 2019-08-07 07:34 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-10-30 18:38 - 2019-08-07 07:33 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-10-30 18:38 - 2019-08-07 07:32 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-10-30 18:38 - 2019-07-11 01:30 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-10-30 18:38 - 2019-07-09 06:38 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-10-30 18:38 - 2019-07-09 06:37 - 000485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2019-10-30 18:38 - 2019-07-09 03:12 - 001286528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2019-10-30 18:38 - 2019-07-09 02:56 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2019-10-30 18:38 - 2019-07-09 02:50 - 001003008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-10-30 18:38 - 2019-07-09 02:50 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-10-30 18:37 - 2019-10-02 11:08 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-10-30 18:37 - 2019-10-02 08:52 - 002206424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-10-30 18:37 - 2019-10-02 05:01 - 001288928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-10-30 18:37 - 2019-10-02 05:01 - 000491208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-10-30 18:37 - 2019-10-02 04:59 - 001784696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-10-30 18:37 - 2019-10-02 04:59 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-10-30 18:37 - 2019-10-02 04:49 - 000550512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-10-30 18:37 - 2019-10-02 04:47 - 001380312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-10-30 18:37 - 2019-10-02 04:47 - 001020280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-10-30 18:37 - 2019-10-02 04:47 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2019-10-30 18:37 - 2019-10-02 04:26 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2019-10-30 18:37 - 2019-10-02 04:24 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2019-10-30 18:37 - 2019-09-13 10:40 - 000806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2019-10-30 18:37 - 2019-09-13 10:40 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-10-30 18:37 - 2019-09-13 10:40 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2019-10-30 18:37 - 2019-09-13 04:35 - 001559272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2019-10-30 18:37 - 2019-09-13 04:21 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-10-30 18:37 - 2019-09-13 04:17 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-10-30 18:37 - 2019-09-13 04:15 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-10-30 18:37 - 2019-09-13 04:12 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-10-30 18:37 - 2019-09-13 04:11 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-10-30 18:37 - 2019-08-07 12:53 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll
2019-10-30 18:37 - 2019-08-07 12:26 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll
2019-10-30 18:37 - 2019-08-07 12:26 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2019-10-30 18:37 - 2019-08-07 12:24 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll
2019-10-30 18:37 - 2019-08-07 08:08 - 000091568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2019-10-30 18:37 - 2019-08-07 07:35 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-10-30 18:37 - 2019-08-07 07:35 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2019-10-30 18:37 - 2019-08-07 07:34 - 000521216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2019-10-28 19:40 - 2019-10-28 20:29 - 000000282 __RSH C:\ProgramData\ntuser.pol
2019-10-16 13:35 - 2019-10-18 09:51 - 000000000 ____D C:\WINDOWS\UpdateAssistant
2019-10-15 21:11 - 2019-10-15 21:11 - 000000000 ____D C:\Program Files (x86)\Cisco
2019-10-15 21:11 - 2014-05-13 19:07 - 000060416 _____ (Atheros) C:\WINDOWS\system32\athihvui.dll
2019-10-15 21:11 - 2014-05-13 19:06 - 000440320 _____ (Atheros) C:\WINDOWS\system32\athihvs.dll
2019-10-15 20:47 - 2018-10-28 16:00 - 000373344 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2019-10-15 20:47 - 2018-10-28 16:00 - 000306784 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2019-10-15 20:46 - 2018-10-28 16:00 - 001004008 _____ C:\WINDOWS\system32\igfxSDK.exe
2019-10-15 20:46 - 2018-10-28 16:00 - 000948200 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe
2019-10-15 20:46 - 2018-10-28 16:00 - 000944616 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe
2019-10-15 20:46 - 2018-10-28 16:00 - 000446952 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2019-10-15 20:46 - 2018-10-28 16:00 - 000429032 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe
2019-10-15 20:46 - 2018-10-28 16:00 - 000376296 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2019-10-15 20:46 - 2018-10-28 16:00 - 000216552 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2019-10-15 20:46 - 2018-10-28 16:00 - 000212456 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2019-10-15 20:46 - 2018-10-28 16:00 - 000211944 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe
2019-10-15 20:46 - 2018-10-28 16:00 - 000155624 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2019-10-15 20:40 - 2019-10-15 20:40 - 000000000 ____D C:\Users\Public\Thunder Network
2019-10-15 20:40 - 2019-10-15 20:40 - 000000000 ____D C:\ProgramData\Thunder Network
2019-10-15 20:38 - 2019-10-15 20:38 - 000000000 ____D C:\ProgramData\PlugCache
2019-10-15 20:38 - 2019-10-15 20:38 - 000000000 ____D C:\OSTotoFolder
2019-10-15 20:37 - 2019-10-15 20:37 - 000000000 ____D C:\Program Files (x86)\OSTotoSoft
2019-10-15 20:26 - 2019-10-16 08:52 - 000000000 ____D C:\Users\tonym\AppData\Local\Opera Software
2019-10-15 20:25 - 2019-10-16 08:52 - 000000000 ____D C:\Users\tonym\AppData\Roaming\Opera Software
2019-10-15 10:51 - 2019-10-09 10:48 - 000355720 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-10-09 10:49 - 2019-11-02 13:45 - 000161544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-10-09 10:49 - 2019-10-09 10:49 - 000236024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-10-03 15:34 - 2019-12-06 16:42 - 000002608 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2019-10-03 11:03 - 2019-10-03 11:03 - 000001367 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2019-09-25 08:56 - 2019-12-06 11:36 - 000000000 ____D C:\WINDOWS\system32\luminati

==================== Three months (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-07 15:30 - 2018-04-11 23:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-12-07 15:23 - 2019-03-30 20:50 - 000000000 ____D C:\Users\tonym\AppData\Roaming\FileZilla
2019-12-07 15:23 - 2016-10-05 15:30 - 000000000 ____D C:\Users\tonym\AppData\Roaming\uTorrent
2019-12-07 15:19 - 2017-12-13 20:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2019-12-07 15:19 - 2017-12-13 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-12-07 15:18 - 2018-04-11 23:36 - 000000000 ____D C:\WINDOWS\INF
2019-12-07 15:18 - 2017-03-22 20:48 - 000000000 ____D C:\Users\tonym\AppData\Local\CrashDumps
2019-12-07 15:03 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-12-07 15:03 - 2017-12-02 11:10 - 000000000 ____D C:\Users\tonym\AppData\Local\Packages
2019-12-07 14:50 - 2018-02-04 20:12 - 000000000 ____D C:\Program Files\CCleaner
2019-12-07 14:44 - 2016-09-24 11:09 - 000000000 ____D C:\Program Files (x86)\Google
2019-12-07 14:33 - 2016-09-24 09:28 - 000000166 _____ C:\Users\tonym\AppData\Roaming\sp_data.sys
2019-12-07 14:27 - 2017-05-27 01:17 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-12-06 19:57 - 2018-06-10 11:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-12-06 16:42 - 2019-08-21 12:02 - 000002586 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2019-12-06 16:42 - 2018-06-10 11:32 - 000003546 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2019-12-06 16:42 - 2018-06-10 11:32 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2019-12-06 16:42 - 2018-06-10 11:32 - 000003220 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2019-12-06 16:42 - 2018-06-10 11:32 - 000002974 _____ C:\WINDOWS\system32\Tasks\Update Checker
2019-12-06 16:42 - 2018-06-10 11:32 - 000002924 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3
2019-12-06 16:42 - 2018-06-10 11:32 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-523154326-416181780-3664323986-1001
2019-12-06 16:42 - 2018-06-10 11:32 - 000002722 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP Deskjet 1050 J410 series
2019-12-06 16:42 - 2018-06-10 11:32 - 000002346 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice
2019-12-06 16:42 - 2018-06-10 11:32 - 000002340 _____ C:\WINDOWS\system32\Tasks\ASUS USB Charger Plus
2019-12-06 16:42 - 2018-06-10 11:32 - 000002280 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2019-12-06 16:42 - 2018-06-10 11:32 - 000002216 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2019-12-06 16:42 - 2018-06-10 11:32 - 000002214 _____ C:\WINDOWS\system32\Tasks\ATK Package A22126881260
2019-12-06 16:42 - 2018-06-10 11:32 - 000002214 _____ C:\WINDOWS\system32\Tasks\ASUS Splendid ACMON
2019-12-06 16:42 - 2018-06-10 11:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2019-12-06 16:42 - 2015-11-27 11:55 - 000001032 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2019-12-06 16:42 - 2015-11-27 11:55 - 000001028 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2019-12-06 15:52 - 2018-01-19 20:06 - 000000000 ___HD C:\DESKTOP-6RP18Q3
2019-12-06 15:16 - 2017-03-14 20:09 - 000748816 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-12-06 15:15 - 2018-04-11 21:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-12-06 15:02 - 2018-06-10 11:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-12-06 15:01 - 2018-04-11 21:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-12-06 14:27 - 2018-04-11 23:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-12-06 14:27 - 2017-11-11 09:22 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-12-06 13:15 - 2019-01-02 01:38 - 000000000 ____D C:\Users\tonym\AppData\Roaming\vlc
2019-12-06 13:02 - 2018-04-11 23:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-12-06 12:59 - 2015-11-27 11:55 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-12-06 11:36 - 2019-03-30 20:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2019-12-06 11:36 - 2019-01-21 11:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
2019-12-06 11:36 - 2019-01-02 01:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-12-06 11:36 - 2018-04-12 16:22 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2019-12-06 11:36 - 2018-04-12 16:18 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2019-12-06 11:36 - 2018-04-12 16:18 - 000000000 ____D C:\WINDOWS\system32\WCN
2019-12-06 11:36 - 2018-04-11 23:38 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2019-12-06 11:36 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2019-12-06 11:36 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-12-06 11:36 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\spool
2019-12-06 11:36 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-12-06 11:36 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2019-12-06 11:36 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\System
2019-12-06 11:36 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\Registration
2019-12-06 11:36 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\IME
2019-12-06 11:36 - 2018-04-11 23:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-12-06 11:36 - 2018-02-04 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-12-06 11:36 - 2018-01-09 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TypingMaster
2019-12-06 11:36 - 2017-12-22 22:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2019-12-06 11:36 - 2017-07-07 01:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Agil READ
2019-12-06 11:36 - 2017-06-08 16:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2019-12-06 11:36 - 2017-06-08 16:52 - 000000000 ____D C:\WINDOWS\SHELLNEW
2019-12-06 11:36 - 2017-05-31 21:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.3
2019-12-06 11:36 - 2017-05-27 01:17 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2019-12-06 11:36 - 2017-05-27 01:17 - 000000000 ____D C:\Program Files\Intel
2019-12-06 11:36 - 2017-05-24 15:39 - 000000000 ____D C:\Program Files\UNP
2019-12-06 11:36 - 2017-03-24 20:29 - 000000000 ____D C:\ProgramData\regid.1995-08.com.techsmith
2019-12-06 11:36 - 2017-03-13 21:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2019-12-06 11:36 - 2016-10-07 08:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2019-12-06 11:36 - 2016-09-26 21:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2019-12-06 11:36 - 2016-09-26 21:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2019-12-06 11:36 - 2016-09-24 11:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-12-06 11:36 - 2016-04-22 08:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2019-12-06 11:36 - 2016-04-22 08:23 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-12-06 11:36 - 2015-11-27 11:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2019-12-06 11:36 - 2015-11-27 11:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2019-12-06 11:36 - 2015-11-27 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2019-12-06 11:36 - 2015-10-30 07:24 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2019-12-05 18:26 - 2018-06-10 11:31 - 000042294 _____ C:\WINDOWS\diagwrn.xml
2019-12-05 18:26 - 2018-06-10 11:31 - 000041913 _____ C:\WINDOWS\diagerr.xml
2019-12-03 21:33 - 2019-03-30 20:50 - 000000000 ____D C:\Users\tonym\AppData\Local\FileZilla
2019-12-02 10:37 - 2019-08-04 14:03 - 000000000 ____D C:\Users\tonym\AppData\Local\JDownloader 2.0
2019-12-01 19:48 - 2018-06-10 11:08 - 000000000 ____D C:\Users\tonym
2019-12-01 19:31 - 2019-01-21 10:09 - 000000000 ___RD C:\Descargas
2019-12-01 14:49 - 2018-06-10 11:08 - 000002400 _____ C:\Users\tonym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-12-01 14:49 - 2016-09-24 09:31 - 000000000 ___RD C:\Users\tonym\OneDrive
2019-11-30 22:01 - 2018-04-11 23:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-11-30 19:27 - 2017-09-24 01:16 - 000007602 _____ C:\Users\tonym\AppData\Local\resmon.resmoncfg
2019-11-30 19:14 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-11-30 11:24 - 2019-07-17 19:16 - 000000000 ___RD C:\Users\tonym\Creative Cloud Files
2019-11-30 11:24 - 2016-09-26 22:20 - 000000000 ____D C:\Users\tonym\AppData\Local\Adobe
2019-11-29 20:36 - 2018-06-10 11:32 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2019-11-25 12:25 - 2018-01-19 20:07 - 000000000 ____D C:\Users\tonym\AppData\Roaming\3cd65431c05d5aeb86b56f203b01e92c
2019-11-24 13:25 - 2019-05-31 16:34 - 000000000 ____D C:\Users\tonym\AppData\Local\BitTorrentHelper
2019-11-24 13:19 - 2016-04-22 08:28 - 000000000 ____D C:\ProgramData\Intel
2019-11-22 11:28 - 2018-06-10 11:22 - 001768612 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-22 11:28 - 2018-04-12 16:18 - 000789396 _____ C:\WINDOWS\system32\perfh00A.dat
2019-11-22 11:28 - 2018-04-12 16:18 - 000155976 _____ C:\WINDOWS\system32\perfc00A.dat
2019-11-18 21:28 - 2017-05-09 15:19 - 000000000 ____D C:\Users\tonym\AppData\Roaming\discord
2019-11-18 21:17 - 2019-01-01 18:31 - 000000000 ___HD C:\adobeTemp
2019-11-15 10:23 - 2016-10-04 21:53 - 000000000 ___RD C:\Users\tonym\3D Objects
2019-11-15 10:19 - 2018-06-10 11:02 - 000526712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-11-14 17:49 - 2018-04-11 21:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-11-13 15:25 - 2016-09-24 13:20 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-11-13 15:18 - 2016-09-24 13:19 - 128443096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-11-07 14:25 - 2019-03-30 20:49 - 000000000 ____D C:\Program Files\FileZilla FTP Client

==================== Files in the root of some directories ========

2016-09-24 09:28 - 2019-12-07 14:33 - 000000166 _____ () C:\Users\tonym\AppData\Roaming\sp_data.sys
2017-03-25 21:31 - 2018-02-12 16:47 - 000006144 _____ () C:\Users\tonym\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-11-12 12:02 - 2018-11-12 12:02 - 000000410 _____ () C:\Users\tonym\AppData\Local\oobelibMkey.log
2019-11-06 18:31 - 2019-12-05 18:23 - 000000128 _____ () C:\Users\tonym\AppData\Local\PUTTY.RND
2018-02-22 21:52 - 2018-02-22 21:52 - 000003731 _____ () C:\Users\tonym\AppData\Local\recently-used.xbel
2017-09-24 01:16 - 2019-11-30 19:27 - 000007602 _____ () C:\Users\tonym\AppData\Local\resmon.resmoncfg

==================== SigCheckExt =========================

2016-07-16 11:42 - 2016-07-16 11:42 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AllJoynDiscoveryPlugin.dll
2019-10-15 21:11 - 2014-05-13 19:06 - 000440320 _____ (Atheros) C:\WINDOWS\system32\athihvs.dll
2019-10-15 21:11 - 2014-05-13 19:07 - 000060416 _____ (Atheros) C:\WINDOWS\system32\athihvui.dll
2017-04-14 11:12 - 2017-03-28 05:37 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll
2016-01-20 11:18 - 2015-09-08 09:24 - 000206848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4281.dll
2017-05-10 15:20 - 2017-03-04 06:26 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-07-16 11:43 - 2016-07-16 22:44 - 003584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkAnalysisLegacyCom.dll
2016-07-16 11:42 - 2016-07-16 11:42 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDiscoveryPlugin.dll
2016-07-16 11:42 - 2016-07-16 11:42 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiOnboardingPlugin.dll
2019-06-29 00:42 - 2006-08-25 19:17 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl70.dll
2019-06-29 00:42 - 2011-01-12 18:53 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll
2016-07-16 11:43 - 2016-07-16 11:43 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\configmanager2.dll
2016-07-16 11:43 - 2016-07-16 11:43 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coredpus.dll
2017-03-16 15:02 - 2017-03-04 06:18 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-07-16 11:44 - 2016-07-16 22:45 - 002549760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkAnalysisLegacyCom.dll
2015-05-22 00:00 - 2015-05-22 00:00 - 000002560 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\IusEventLog.dll
2019-06-29 00:42 - 2006-08-25 20:07 - 001024000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll
2019-06-29 00:42 - 2006-08-25 20:15 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70chs.dll
2019-06-29 00:42 - 2006-08-25 20:15 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70cht.dll
2019-06-29 00:42 - 2006-08-25 20:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70deu.dll
2019-06-29 00:42 - 2006-08-25 20:15 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70enu.dll
2019-06-29 00:42 - 2006-08-25 20:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70esp.dll
2019-06-29 00:42 - 2006-08-25 20:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70fra.dll
2019-06-29 00:42 - 2006-08-25 20:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70ita.dll
2019-06-29 00:42 - 2006-08-25 20:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70jpn.dll
2019-06-29 00:42 - 2006-08-25 20:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70kor.dll
2019-06-29 00:42 - 2006-08-25 20:28 - 001017344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70u.dll
2019-06-29 00:42 - 2011-01-12 19:19 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71.dll
2019-06-29 00:42 - 2011-01-12 19:25 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL
2019-06-29 00:42 - 2011-01-12 19:25 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL
2019-06-29 00:42 - 2011-01-12 19:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL
2019-06-29 00:42 - 2011-01-12 19:25 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL
2019-06-29 00:42 - 2011-01-12 19:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL
2019-06-29 00:42 - 2011-01-12 19:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL
2019-06-29 00:42 - 2011-01-12 19:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL
2019-06-29 00:42 - 2011-01-12 19:25 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL
2019-06-29 00:42 - 2011-01-12 19:25 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL
2019-06-29 00:42 - 2011-01-12 19:36 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71u.dll
2019-06-29 00:43 - 2008-04-15 12:00 - 001355776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvbvm50.dll
2019-06-29 00:42 - 2005-01-20 15:25 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvci70.dll
2019-06-29 00:42 - 2002-01-05 01:40 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVCP70.DLL
2019-06-29 00:42 - 2007-02-01 16:13 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2019-06-29 00:42 - 2007-01-30 16:04 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2019-06-29 00:42 - 2007-02-01 13:11 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2019-06-29 00:42 - 1994-11-17 21:00 - 000210944 _____ C:\WINDOWS\SysWOW64\msvcrt10.dll
2017-03-13 21:46 - 2016-10-17 15:03 - 000250880 _____ (TechSmith Corporation) C:\WINDOWS\SysWOW64\tsc2_codec32.dll
2017-03-13 21:46 - 2016-10-17 15:03 - 000305152 _____ (TechSmith Corporation) C:\WINDOWS\SysWOW64\tsc2_codec64.dll
2016-08-30 14:33 - 2016-08-30 14:33 - 000854016 _____ (TechSmith Corporation) C:\WINDOWS\SysWOW64\tsccvid.dll
2016-08-30 14:33 - 2016-08-30 14:33 - 000964608 _____ (TechSmith Corporation) C:\WINDOWS\SysWOW64\tsccvid64.dll
2019-06-29 00:42 - 1996-01-12 00:00 - 000722192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb40032.dll

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
7 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-12-2019
Ran by Aula214 (07-12-2019 15:45:05)
Running from D:\Downloads
Windows 10 Home Version 1803 17134.1130 (X64) (2018-06-10 11:34:28)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-523154326-416181780-3664323986-500 - Administrator - Disabled)
Aula214 (S-1-5-21-523154326-416181780-3664323986-1001 - Administrator - Enabled) => C:\Users\tonym
DefaultAccount (S-1-5-21-523154326-416181780-3664323986-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-523154326-416181780-3664323986-1000 - Limited - Disabled) => C:\Users\defaultuser0
Invitado (S-1-5-21-523154326-416181780-3664323986-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-523154326-416181780-3664323986-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\uTorrent) (Version: 3.5.5.45395 - BitTorrent Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.0.0.354 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_1) (Version: 20.0.1 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.23)  MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Agil READ 5.1 (HKLM\...\{AF7A9734-0919-4C77-BB2A-E4DFC82FAF5B}) (Version: 5.1 - Agil MENTE Software)
Apple Application Support (32 bits) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Asistente para actualización a Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22899 - Microsoft Corporation)
ASUS Device Activation (HKLM-x32\...\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}) (Version: 1.0.4.0 - ASUSTeK COMPUTER INC.)
ASUS GIFTBOX (HKLM-x32\...\ASUS GIFTBOX) (Version: 7.4.223 - ASUSTek Computer Inc)
ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.6 - ASUSTeK COMPUTER INC.)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.24 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.14.0006 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0042 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.101 - ICEpower a/s)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Avast SecureLine for Asustek (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.239.3 - AVAST Software)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 78.1.0.1 - Brave Software Inc)
calibre 64bit (HKLM\...\{00A87BBC-1F88-4E30-B61F-C56933578808}) (Version: 3.14.0 - Kovid Goyal)
Camtasia Studio 8 (HKLM-x32\...\{BFA04EE0-8240-4667-8D53-45496A901C33}) (Version: 8.1.2.1327 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
CrystalDiskInfo 8.3.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.3.2 - Crystal Dew World)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
Discord (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 86.4.146 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.189.1 - Dropbox, Inc.) Hidden
Duolingo (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Duolingo) (Version:  - Duolingo)
Eines de correcció del Microsoft Office 2013: català (HKLM-x32\...\{90150000-001F-0403-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
f.lux (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Flux) (Version:  - f.lux Software LLC)
Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM-x32\...\{90150000-001F-0456-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Figma (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Figma) (Version: 73.7.0 - Figma, Inc.)
Figma Font Helper (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\FigmaHelper) (Version: 21.0 - Figma, Inc.)
FileZilla Client 3.45.1 (HKLM-x32\...\FileZilla Client) (Version: 3.45.1 - Tim Kosse)
Foxit PhantomPDF (HKLM-x32\...\{E40149BB-552F-44C8-A10F-4188ADC5AD70}) (Version: 7.0.510.429 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.108 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
HP Deskjet 1050 J410 series Ayuda (HKLM-x32\...\{5C90D8CF-F12A-41C6-9007-3B651A1F0D78}) (Version: 140.0.66.66 - Hewlett Packard)
HP Deskjet 1050 J410 series Estudio para la mejora del producto (HKLM\...\{857BB9C2-560B-4D85-A586-7CCDF1D4CB15}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Deskjet 1050 J410 series Software básico del dispositivo (HKLM\...\{C585DE2E-0AC0-404C-AC0E-8F5ED300BA93}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.16.112.1 - Intel Security)
Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5063 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 1.1.253.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 5.3.3.2 (HKLM-x32\...\{C7C4A0C6-8483-4065-851D-CBE5DC17D046}) (Version: 5.3.3.2 - The Document Foundation)
Local 5.0.7 (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\{db9b6d64-7ad2-556e-893c-24e21cb471e1}) (Version: 5.0.7 - Flywheel)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.36.1 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.17.1298.831 - Microsoft Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.2 - Qualcomm Atheros)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10130.27054 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.24.1208.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7661 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM-x32\...\{90150000-001F-0416-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
Turbo-Speed Reader 1.0 (HKLM-x32\...\Turbo-Speed Reader 1.0) (Version: 1.0 - Ramón Campayo)
TypingMaster Pro (HKLM-x32\...\{98B6FB8A-8638-4037-AD44-CF7D0EEAB875}_is1) (Version: 7.10 - TypingMaster Inc)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.5 - VideoLAN)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.5.541 - ASUS Cloud Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.1.0 - ASUS)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 7.3.0-0 - Bitnami)
XD.CC.v1.0.12.x64.MULTI (HKLM\...\{204086A4-86F5-4092-BC72-12D2EDDA8BCA}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden

Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc [2019-07-17] (Adobe Systems Incorporated)
Adobe XD -> C:\Program Files\WindowsApps\Adobe.CC.XD_21.0.12.11_x64__adky2gkssdxte [2019-07-17] (Adobe Systems Incorporated)
Correo y Calendario -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x64__8wekyb3d8bbwe [2019-11-26] (Microsoft Corporation) [MS Ad]
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_105.1.623.0_x64__v10z8vjag6ke6 [2019-11-15] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.33.13253.0_x64__8wekyb3d8bbwe [2019-11-24] (Microsoft Corporation) [MS Ad]
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.0.0.0_x64__a2t3txkz9j1jw [2019-07-26] (MAGIX)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-523154326-416181780-3664323986-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-0E356A18F977} -> [Creative Cloud Files] => C:\Users\tonym\Creative Cloud Files [2019-07-17 19:16]
CustomCLSID: HKU\S-1-5-21-523154326-416181780-3664323986-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\tonym\Dropbox [2016-09-24 10:04]
CustomCLSID: HKU\S-1-5-21-523154326-416181780-3664323986-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} =>  -> No File
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} =>  -> No File
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} =>  -> No File
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.5.541\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.5.541\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.5.541\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2015-04-30] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files (x86)\Common Files\AWS\2.2.5.541\ASUSWSContextMenu.dll [2015-10-22] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-06] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-11-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-06] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\tonym\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\e2f3576b7abb043d\Brave.lnk -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) =============

2015-12-02 17:01 - 2015-12-02 17:01 - 000124928 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-12-02 17:01 - 2015-12-02 17:01 - 000027648 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-12-02 17:01 - 2015-12-02 17:01 - 000029184 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\VideoEnhance.dll
2015-04-22 13:59 - 2015-04-22 13:59 - 001489920 _____ (ASUS Cloud Corporation.) [File not signed] C:\Program Files (x86)\Common Files\AWS\2.2.5.541\ASUSWSShellExt64.dll
2015-12-02 17:01 - 2015-12-02 17:01 - 001676288 _____ (ASUS TeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ApplyLUT.dll
2015-12-02 17:01 - 2015-12-02 17:01 - 000178176 _____ (ASUS TeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\GenLUT.dll
2015-12-02 17:01 - 2015-12-02 17:01 - 000164864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ColorU.dll
2019-09-04 14:14 - 2019-09-04 14:07 - 002095104 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\AVAST Software\SecureLine\libcrypto-1_1.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\hola.org -> hxxp://hola.org
IE trusted site: HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 07:24 - 2019-12-04 19:23 - 000008800 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 65.52.240.48
127.0.0.1 69.167.144.18
127.0.0.1 157.56.8.159
127.0.0.1 69.167.144.15
127.0.0.1 updater.techsmith.com
127.0.0.1 camtasiatudi.techsmith.com
127.0.0.1 tsccloud.cloudapp.net
127.0.0.1 assets.cloud.techsmith.com
0.0.0.0 192.150.18.108
0.0.0.0 192.150.22.40
0.0.0.0 192.150.14.69
0.0.0.0 192.150.8.118
0.0.0.0 192.150.8.100
0.0.0.0 192.150.18.101
0.0.0.0 192.168.112.207
0.0.0.0 194.224.66.48
0.0.0.0 199.7.52.190
0.0.0.0 199.7.52.190:80
0.0.0.0 209.34.83.73:43
0.0.0.0 209.34.83.73:443
0.0.0.0 www.adobeereg.com #75.125.24.83
0.0.0.0 adobeereg.com #207.66.2.10
0.0.0.0 activate.adobe.com #192.150.22.40
0.0.0.0 practivate.adobe
0.0.0.0 practivate.adobe.com
0.0.0.0 practivate.adobe.*
0.0.0.0 practivate.adobe.com #192.150.18.54
0.0.0.0 practivate.adobe.newoa

There are 143 more lines.


2017-07-18 00:16 - 2017-11-15 10:50 - 000000446 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Calibre2\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-523154326-416181780-3664323986-1001\Control Panel\Desktop\\Wallpaper -> D:\Pictures\wallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "FAH.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Actualizar notificador.lnk"
HKLM\...\StartupApproved\StartupFolder: => "avast! SecureLine.lnk"
HKLM\...\StartupApproved\StartupFolder: => "WinZip Preloader.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Avast SecureLine VPN.lnk"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\StartupFolder: => "EvernoteClipper.lnk"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\Run: => "SandboxieControl"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\Run: => "Figma Helper"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\Run: => "CCXProcess"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{B12C4FAE-E610-44A4-AFB5-9E35C1973E98}C:\users\tonym\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tonym\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{83831F08-5B0F-46A7-873B-79F861BF9E56}C:\users\tonym\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tonym\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{70631BB1-F1ED-4F30-8F7A-C3FC77B2C06F}] => (Allow) C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\USBSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [TCP Query User{31F84A08-5908-4232-B6AA-86588BDCE2BD}C:\users\tonym\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tonym\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{C215B9DE-ABA4-41D8-AE04-2CD631C30F85}C:\users\tonym\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tonym\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{76F04842-93D2-41FB-88F4-35E50BEBA30E}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC 2019\Photoshop.exe No File
FirewallRules: [{C1B00988-3B4A-44EE-95D2-F4D8FB7FE0E1}] => (Block) C:\Program Files\Adobe\Adobe Photoshop CC 2019 ()
FirewallRules: [TCP Query User{A58D7B68-00AB-4BD6-A35A-109F8FD09959}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{6A3D663A-CA33-4B31-8E64-A6CE015F0F19}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{1D350D29-538F-490F-9D64-4BD90CA1954C}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [UDP Query User{A084E553-E647-48D9-8055-94F6340A0643}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [TCP Query User{38B45DEC-791D-47FF-9101-E4B4ECFB3BB8}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [UDP Query User{27C8D54F-D3CF-4D0E-992B-26CE1B22C467}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [TCP Query User{78C97B56-7726-4A14-B8FF-EF81570895AD}C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{160426D3-1A18-4CAA-9880-BCB3F8263E4F}C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{A1D09CE8-891E-4864-863D-59F16FA80732}C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe] => (Block) C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{686A3005-923A-4C5A-8194-46C7DD496FB6}C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe] => (Block) C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{DB16A1E7-7E7B-4F0C-BFCF-BC6021BC73AA}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{44205170-E2E7-45EB-A7E9-4DA7C635EA6F}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{1F83BC5C-222F-4B1D-881A-228F114704C4}C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\nginx-1.16.0\nginx.exe] => (Allow) C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\nginx-1.16.0\nginx.exe (Flywheel (Fancy Chap, Inc.) -> )
FirewallRules: [UDP Query User{F2FC0C14-A86D-4B5C-9EDD-75652FCB1E73}C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\nginx-1.16.0\nginx.exe] => (Allow) C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\nginx-1.16.0\nginx.exe (Flywheel (Fancy Chap, Inc.) -> )
FirewallRules: [TCP Query User{385203D9-1346-4D95-86A9-6743A47980C3}C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\mailhog\mailhog.exe] => (Allow) C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\mailhog\mailhog.exe (Flywheel (Fancy Chap, Inc.) -> )
FirewallRules: [UDP Query User{49430A3A-7D51-4A13-BEC4-8F6181A3A0D1}C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\mailhog\mailhog.exe] => (Allow) C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\mailhog\mailhog.exe (Flywheel (Fancy Chap, Inc.) -> )
FirewallRules: [{F7FB26A2-4FAF-4859-9FFD-666CE2EFB455}] => (Allow) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{E84C890A-3E5C-4BAB-B437-8312918BFB5D}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{CA80A302-9C7B-4775-BD3C-8AFE6B59E4BB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

06-12-2019 13:36:06 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/07/2019 03:26:22 PM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: ESIF(8.5.10103.7263) TYPE: ERROR MODULE: DPTF TIME 87886692 ms

DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function:  ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:  
DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function:  EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message:  Error returned from ESIF services interface function call
Participant:  TCPU [0]
Domain:  PKG [0]
ESIF Primitive:  SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance:  0
ESIF Return Code:  ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant:  TCPU [0]
Domain:  PKG [0]
Policy:  ConfigTDP Policy [0]

Error: (12/07/2019 03:26:22 PM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: ESIF(8.5.10103.7263) TYPE: ERROR MODULE: DPTF TIME 87886691 ms

DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function:  ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:  
DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function:  EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message:  Error returned from ESIF services interface function call
Participant:  TCPU [0]
Domain:  PKG [0]
ESIF Primitive:  SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance:  0
ESIF Return Code:  ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant:  TCPU [0]
Domain:  PKG [0]
Policy:  ConfigTDP Policy [0]

Error: (12/07/2019 03:26:22 PM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: ESIF(8.5.10103.7263) TYPE: ERROR MODULE: DPTF TIME 87886691 ms

DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function:  ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:  
DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function:  EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message:  Error returned from ESIF services interface function call
Participant:  TCPU [0]
Domain:  PKG [0]
ESIF Primitive:  SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance:  0
ESIF Return Code:  ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant:  TCPU [0]
Domain:  PKG [0]
Policy:  ConfigTDP Policy [0]

Error: (12/07/2019 03:26:13 PM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: ESIF(8.5.10103.7263) TYPE: ERROR MODULE: DPTF TIME 87877696 ms

DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function:  ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:  
DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function:  EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message:  Error returned from ESIF services interface function call
Participant:  TCPU [0]
Domain:  PKG [0]
ESIF Primitive:  SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance:  0
ESIF Return Code:  ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant:  TCPU [0]
Domain:  PKG [0]
Policy:  ConfigTDP Policy [0]

Error: (12/07/2019 03:26:13 PM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: ESIF(8.5.10103.7263) TYPE: ERROR MODULE: DPTF TIME 87877696 ms

DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function:  ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:  
DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function:  EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message:  Error returned from ESIF services interface function call
Participant:  TCPU [0]
Domain:  PKG [0]
ESIF Primitive:  SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance:  0
ESIF Return Code:  ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant:  TCPU [0]
Domain:  PKG [0]
Policy:  ConfigTDP Policy [0]

Error: (12/07/2019 03:26:13 PM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: ESIF(8.5.10103.7263) TYPE: ERROR MODULE: DPTF TIME 87877695 ms

DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function:  ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:  
DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function:  EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message:  Error returned from ESIF services interface function call
Participant:  TCPU [0]
Domain:  PKG [0]
ESIF Primitive:  SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance:  0
ESIF Return Code:  ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant:  TCPU [0]
Domain:  PKG [0]
Policy:  ConfigTDP Policy [0]


System errors:
=============

Windows Defender:
===================================
Date: 2019-10-30 19:30:22.147
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {1396654A-23D1-44B4-8FBF-D525CF1C3A18}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-10-30 18:46:36.822
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {2E9E67F2-B0F6-4CCC-875F-4C0A7713C7FF}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-10-29 16:29:49.256
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:JS/CoinHive.A&threatid=2147729066&enterprise=0
Nombre: Trojan:JS/CoinHive.A
Id.: 2147729066
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: file:_C:\ProgramData\AVAST Software\Avast\report\WebShield.txt
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Sistema
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: Unknown
Versión de firma: AV: 1.305.926.0, AS: 1.305.926.0, NIS: 1.305.926.0
Versión de motor: AM: 1.1.16500.1, NIS: 1.1.16500.1

Date: 2019-10-29 16:29:07.955
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:JS/CoinHive.A&threatid=2147729066&enterprise=0
Nombre: Trojan:JS/CoinHive.A
Id.: 2147729066
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: file:_C:\ProgramData\AVAST Software\Avast\report\WebShield.txt
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Sistema
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: Unknown
Versión de firma: AV: 1.305.906.0, AS: 1.305.906.0, NIS: 1.305.906.0
Versión de motor: AM: 1.1.16500.1, NIS: 1.1.16500.1

Date: 2019-10-29 10:37:33.731
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:JS/CoinHive.A&threatid=2147729066&enterprise=0
Nombre: Trojan:JS/CoinHive.A
Id.: 2147729066
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: file:_C:\ProgramData\AVAST Software\Avast\report\WebShield.txt
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Sistema
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: Unknown
Versión de firma: AV: 1.293.978.0, AS: 1.293.978.0, NIS: 1.293.978.0
Versión de motor: AM: 1.1.15900.4, NIS: 1.1.15900.4

Date: 2019-10-15 20:06:37.111
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.293.978.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.15900.4
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-10-15 20:06:37.111
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.293.978.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.15900.4
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-10-15 20:06:37.110
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.293.978.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.15900.4
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-10-15 20:06:37.099
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.293.978.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.15900.4
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-10-15 20:06:37.099
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.293.978.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.15900.4
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

CodeIntegrity:
===================================

Date: 2019-12-06 15:28:26.634
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\FileZilla FTP Client\fzshellext_64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 15:28:26.630
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\FileZilla FTP Client\fzshellext_64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 15:28:26.538
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 15:28:26.531
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 14:34:44.378
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\FileZilla FTP Client\fzshellext_64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 14:34:44.374
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\FileZilla FTP Client\fzshellext_64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 14:34:44.291
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-06 14:34:44.287
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. X540LA.203 10/13/2015
Motherboard: ASUSTeK COMPUTER INC. X540LA
Processor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Percentage of memory in use: 74%
Total physical RAM: 8090.43 MB
Available physical RAM: 2049.3 MB
Total Virtual: 10317.6 MB
Available Virtual: 2723.82 MB

==================== Drives ================================

Drive c: (vol) (Fixed) (Total:371.76 GB) (Free:172.34 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (DATA) (Fixed) (Total:558.91 GB) (Free:31 GB) NTFS

\\?\Volume{3b071a70-d57f-4c69-b7ae-0e64786dc534}\ () (Fixed) (Total:0.58 GB) (Free:0.56 GB) NTFS
\\?\Volume{d80cb9d2-2a5f-4afb-b0ed-9848ea8d5c8e}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 81958623)

Partition: GPT.

==================== End of Addition.txt =======================
8

Ya esta todo perdona por no adjuntarte antes soy nuevo y no entiendo muchas codsas.

Gracias!

9

Hola.

Falta que nos pongas el informe de Malwarebytes. :thinking:

Además revisa las dos partes que has puesto de FRST y compararlos con el informe de FRST.txt que tienes en tu equipo, verás que falta más de la mitad del informe, desde el inicio en adelante. :upside_down_face:

Compruébalo y pon la parte que falta para que pueda analizarlos y darte nuevos pasos.

Saludos.

10 
Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 6/12/19
Hora del análisis: 14:29
Archivo de registro: ddb8b2a6-1834-11ea-aedb-d017c2b6f3af.json

-Información del software-
Versión: 4.0.4.49
Versión de los componentes: 1.0.770
Versión del paquete de actualización: 1.0.15776
Licencia: Gratis

-Información del sistema-
SO: Windows 10 (Build 17134.1130)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-6RP18Q3\Aula214

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 335938
Amenazas detectadas: 339
Amenazas en cuarentena: 335
Tiempo transcurrido: 25 min, 2 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 9
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\DtlPlug.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\LDrvSvc.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\libcurl.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\substat.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\udp.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\PROGRAM FILES (X86)\OSTOTOSOFT\DRIVERTALENT\DTLPLUGS\CLEANUNINSTALL\CLEANUNINSTALL.DLL, En cuarentena, 481, 562561, , , , 
PUP.Optional.DriveTheLife, C:\PROGRAM FILES (X86)\OSTOTOSOFT\DRIVERTALENT\APPUPDATE\CHECKUPDATE.DLL, En cuarentena, 481, 562561, , , , 
PUP.Optional.DriveTheLife, C:\PROGRAM FILES (X86)\OSTOTOSOFT\DRIVERTALENT\DTLPLUGS\DTLPROCRPTV10\DTLPROCRPTV10.DLL, En cuarentena, 481, 562561, , , , 
PUP.Optional.DriveTheLife, C:\PROGRAM FILES (X86)\OSTOTOSOFT\DRIVERTALENT\DTLPLUGS\DTLPROCRPTV10\PROCRPT.DLL, En cuarentena, 481, 562561, , , , 

Clave del registro: 10
PUP.Optional.DriverPack, HKLM\SOFTWARE\WOW6432NODE\DRPSU, En cuarentena, 597, 472300, 1.0.15776, , ame, 
PUP.Optional.DefaultSearch, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\nladljmabboanhihfkjacnnkgjhnokhj, En cuarentena, 316, 550469, 1.0.15776, , ame, 
PUP.Optional.DriverPack, HKU\S-1-5-21-523154326-416181780-3664323986-1001\SOFTWARE\DRPSU, En cuarentena, 597, 472301, 1.0.15776, , ame, 
PUP.Optional.Conduit, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, En cuarentena, 201, 236865, , , , 
PUP.Optional.Conduit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}, En cuarentena, 201, 236865, , , , 
PUP.Optional.Conduit, HKU\S-1-5-21-523154326-416181780-3664323986-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, En cuarentena, 201, 236865, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, HKLM\SOFTWARE\WOW6432NODE\OSTOTOSOFT\DRIVERTALENT, En cuarentena, 481, 475857, 1.0.15776, , ame, 
PUP.Optional.DriverPack, HKU\S-1-5-21-523154326-416181780-3664323986-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS\ZONEMAP\DOMAINS\drp.su, En cuarentena, 597, 472299, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, HKU\S-1-5-21-523154326-416181780-3664323986-1001\SOFTWARE\OSTOTOSOFT\DRIVERTALENT, En cuarentena, 481, 475860, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{29FE44D7-BC89-4188-8B0E-F6BA073C15A5}_is1, En cuarentena, 481, 475790, , , , 

Valor del registro: 11
PUP.Optional.DriverPack, HKLM\SOFTWARE\WOW6432NODE\DRPSU|CLIENTID, En cuarentena, 597, 472300, 1.0.15776, , ame, 
PUP.Optional.DriverPack, HKU\S-1-5-21-523154326-416181780-3664323986-1001\SOFTWARE\DRPSU|CLIENTID, En cuarentena, 597, 472301, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN\FEATURECONTROL\FEATURE_BROWSER_EMULATION|DRIVERTALENT.EXE, En cuarentena, 481, 478671, 1.0.15776, , ame, 
PUP.Optional.Conduit, HKU\S-1-5-21-523154326-416181780-3664323986-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, En cuarentena, 201, 236865, 1.0.15776, , ame, 
PUP.Optional.Conduit, HKU\S-1-5-21-523154326-416181780-3664323986-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TOPRESULTURL, En cuarentena, 201, 236865, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, HKLM\SOFTWARE\WOW6432NODE\OSTOTOSOFT\DRIVERTALENT|APPPATH, En cuarentena, 481, 475857, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{D76CA983-87A0-4727-ADFC-83F8E62BA9C6}, En cuarentena, 481, 613270, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{314B5729-3894-4BD9-A255-7F9C79D2A66C}, En cuarentena, 481, 613270, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{02CFB069-83D9-4582-BB1F-E2CE5C67D3D8}, En cuarentena, 481, 613270, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{EA240569-B82D-463A-B196-D6360EFC6226}, En cuarentena, 481, 613270, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, HKU\S-1-5-21-523154326-416181780-3664323986-1001\SOFTWARE\OSTOTOSOFT\DRIVERTALENT|APPPATH, En cuarentena, 481, 475860, 1.0.15776, , ame, 

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 36
PUP.Optional.DriveTheLife, C:\PROGRAMDATA\DRIVERTALENT, En cuarentena, 481, 475796, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, C:\Users\tonym\AppData\Roaming\DriverTalent\IconDir, En cuarentena, 481, 475805, , , , 
PUP.Optional.DriveTheLife, C:\Users\tonym\AppData\Roaming\DriverTalent\Config, En cuarentena, 481, 475805, , , , 
PUP.Optional.DriveTheLife, C:\USERS\TONYM\APPDATA\ROAMING\DRIVERTALENT, En cuarentena, 481, 475805, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\DRIVER TALENT, En cuarentena, 481, 475797, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\power_service, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\wdmaudio\win8.1_x64, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\wdmaudio\win8.1_x86, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\wdmaudio\win7_x64, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\wdmaudio\win7_x86, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\wdmaudio\win8_x64, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\wdmaudio\win8_x86, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\DTLPlugs\CleanUninstall, Error durante la eliminación, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\DTLPlugs\DTLProcRptV10, Error durante la eliminación, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\lan, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\AppUpdate\dlcache, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\swiftshader, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\wdmaudio, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\HWInfo, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv0, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv1, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv2, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv3, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cache\softico, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\lan, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\AppUpdate, Error durante la eliminación, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\Autosetup, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\Dtlconfig, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\DTLPlugs, Error durante la eliminación, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\config, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cache, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\webad, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan, En cuarentena, 481, 475790, , , , 

Archivo: 273
PUP.Optional.DriveTheLife, C:\PROGRAMDATA\DRIVERTALENT\BACKUPLIST.DAT, En cuarentena, 481, 475796, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, C:\ProgramData\DriverTalent\dtldrvcache101040022.db, En cuarentena, 481, 475796, , , , 
PUP.Optional.DriveTheLife, C:\ProgramData\DriverTalent\dtlplugs.ini, En cuarentena, 481, 475796, , , , 
PUP.Optional.DriveTheLife, C:\USERS\TONYM\APPDATA\ROAMING\DRIVERTALENT\CONFIG\USERCONFIG.DAT, En cuarentena, 481, 475805, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, C:\Users\tonym\AppData\Roaming\DriverTalent\IconDir\20191015215627.ico, En cuarentena, 481, 475805, , , , 
PUP.Optional.DriveTheLife, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\DRIVER TALENT\DRIVER TALENT.LNK, En cuarentena, 481, 475797, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Talent\Uninstall Driver Talent.lnk, En cuarentena, 481, 475797, , , , 
PUP.Optional.DriveTheLife, C:\USERS\PUBLIC\DESKTOP\DRIVER TALENT.LNK, En cuarentena, 481, 475806, 1.0.15776, , ame, 
Trojan.Agent.ai, C:\DESKTOP-6RP18Q3\AutoIt3.exe, En cuarentena, 3775, 522365, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, C:\PROGRAM FILES (X86)\OSTOTOSOFT\DRIVERTALENT\LAN\LANGUAGE_USERFEEDBACK.INI, En cuarentena, 481, 475790, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\language_UserFeedBack_arabic.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\arabic.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\armenian.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\bulgarian.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\english.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\french.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\german.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\greek.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\japanese.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\korean.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\language_UserFeedBack_armenian.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\language_UserFeedBack_bulgarian.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\language_UserFeedBack_french.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\language_UserFeedBack_german.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\language_UserFeedBack_greek.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\language_UserFeedBack_japanese.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\language_UserFeedBack_korean.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\language_UserFeedBack_polish.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\language_UserFeedBack_portuguese.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\language_UserFeedBack_russian.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\language_UserFeedBack_spanish.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\language_UserFeedBack_turkish.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\persian.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\polish.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\portuguese.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\readme.txt, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\russian.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\slovenian.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\spanish.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\systemlan.xml, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\turkish.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\lan\UserConfig.dat, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\AppUpdate\dlcache\DriverTalent.exe.7z, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\AppUpdate\dtlupdate.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\AppUpdate\update.cfg.ctmp, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\Autosetup\filter.proc, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cache\softico\125-1.png, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cache\softico\125-10.png, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cache\softico\125-2.png, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cache\softico\125-5.png, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\hi.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\am.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\ar.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\bg.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\bn.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\ca.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\cs.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\da.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\de.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\el.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\en-GB.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\en-US.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\es-419.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\es.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\et.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\fa.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\fi.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\fil.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\fr.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\gu.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\he.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\hr.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\hu.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\id.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\it.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\ja.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\kn.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\ko.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\lt.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\lv.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\ml.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\mr.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\ms.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\nb.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\nl.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\pl.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\pt-BR.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\pt-PT.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\ro.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\ru.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\sk.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\sl.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\sr.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\sv.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\sw.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\ta.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\te.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\th.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\tr.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\uk.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\vi.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\zh-CN.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\locales\zh-TW.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\swiftshader\libEGL.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\swiftshader\libGLESv2.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\cef.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\cef_100_percent.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\cef_200_percent.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\cef_extensions.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\chrome_elf.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\devtools_resources.pak, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\icudtl.dat, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\libcef.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\libEGL.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\libGLESv2.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\natives_blob.bin, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\snapshot_blob.bin, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\v8_context_snapshot.bin, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\cef\wow_helper.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\config\Audio_Repair_1.png, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\config\Audio_Repair_2.png, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\config\externalapp.xml, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\config\externalappTemp.xml, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\config\gamelist.json, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\config\toolbox_png_ConquerorLive_1.png, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\config\toolbox_png_ConquerorLive_2.png, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\config\toolbox_png_HardwareDetection_1.png, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\config\toolbox_png_HardwareDetection_2.png, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\config\WPS1.png, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\config\WPS2.png, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\download\atl71.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\download\dl_peer_id.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\download\download_engine.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\download\id.dat, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\download\MiniThunderPlatform.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\download\minizip.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\download\msvcp71.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\download\XLBugHandler.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\download\XLBugReport.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\download\zlib1.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\drv64\devcon32.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\drv64\devcon64.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\drv64\DIFxAPI.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\drv64\drv32.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\drv64\drv64.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\drv64\DrvSigner.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\drv64\DrvSigner64.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\drv64\SignFile.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\Dtlconfig\DtlSetup.xml, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\Dtlconfig\unsetup.xml, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\Dtlconfig\wndconfigdata.xml, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv0\drv0.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv0\drv1.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv0\drv2.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv0\drv3.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv0\drv4.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv0\drv5.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv0\drv6.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv1\drv0.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv1\drv1.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv1\drv2.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv1\drv3.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv2\drv0.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv2\drv1.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv2\drv2.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv2\drv3.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv3\drv0.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv3\drv1.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv3\drv2.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv3\drv3.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv3\drv4.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv3\drv5.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\dtldrv3\drv6.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\wdmaudio\win7_x64\wdmaudio.inf, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\wdmaudio\win7_x86\wdmaudio.inf, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\wdmaudio\win8.1_x64\wdmaudio.inf, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\wdmaudio\win8.1_x86\wdmaudio.inf, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\wdmaudio\win8_x64\wdmaudio.inf, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtldrv\wdmaudio\win8_x86\wdmaudio.inf, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\DTLPlugs\DTLProcRptV10\pcid.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\HWInfo\cpuidsdk.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\HWInfo\cpuidsdk64.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\HWInfo\DeviceManuf.db3, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\HWInfo\HardwareInfo.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\lan\language_HardWare.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\lan\language_HardWare_arabic.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\lan\language_HardWare_armenian.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\lan\language_HardWare_french.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\lan\language_HardWare_german.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\lan\language_HardWare_japanese.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\lan\language_HardWare_portuguese.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\lan\language_HardWare_russian.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\lan\language_HardWare_spanish.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare\VR_INFO.xml, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\lan\SCP_English.ini, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\power_service\Win10 32 Power.reg, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\power_service\Win10 64 power.reg, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\power_service\Win7 32 Power.reg, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\power_service\Win7 64 Power.reg, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\power_service\Win8.1 32 Power.reg, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\power_service\Win8.1 64 Power.reg, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\7z.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\AndHereWeGo.mp3, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\drvinst32.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\drvinst64.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\DTLUI.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\gzipdll.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\helpcore.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\Helper.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\helper_res.7zz, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\SoundCardRepair\SoundCardRepair.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\webad\DTLUI.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\webad\WebADShowTool.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\webad\wke.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\drvsrc.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\7z.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\AdModule.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\bios.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\detoured.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\DevCfg.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\DriverTalent.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\DrvAllRepair.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\drvbak.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\drvget.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\DTInstUI.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\DTLAutoSetup.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\DTLDrvUninst.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\DtlPlug.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\dtlsdkconfig.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\DTLUI.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\feedback.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\gzipdll.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\HardWare.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\InfDrvSetup.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\key.dat, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\LDrvSvc.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\libcurl.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\MonReboot.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\netprtdrv.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\netprtenum.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\p2spd.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\pcid.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\pcidetect.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\pcidrv.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\pcioffdrv.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\pnpdrv.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\sqlcache.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\sqlite3.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\substat.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\TrayTool.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\udp.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\Uninst.dar0, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\Uninst.dar1, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\uninstall.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\Uninstall.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\usbenum.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\UserFeedback.exe, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\Program Files (x86)\OSTotoSoft\DriverTalent\xldl.dll, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\DOCUMENTS AND SETTINGS\PUBLIC\Desktop\Driver Talent.lnk, En cuarentena, 481, 475790, , , , 
PUP.Optional.DriveTheLife, C:\PROGRAM FILES (X86)\OSTOTOSOFT\DRIVERTALENT\DTLPLUGS\CLEANUNINSTALL\CLEANUNINSTALL.DLL, En cuarentena, 481, 562561, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, C:\PROGRAM FILES (X86)\OSTOTOSOFT\DRIVERTALENT\APPUPDATE\CHECKUPDATE.DLL, En cuarentena, 481, 562561, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, C:\PROGRAM FILES (X86)\OSTOTOSOFT\DRIVERTALENT\DTLPLUGS\DTLPROCRPTV10\DTLPROCRPTV10.DLL, En cuarentena, 481, 562561, 1.0.15776, , ame, 
PUP.Optional.DriveTheLife, C:\PROGRAM FILES (X86)\OSTOTOSOFT\DRIVERTALENT\DTLPLUGS\DTLPROCRPTV10\PROCRPT.DLL, En cuarentena, 481, 562561, 1.0.15776, , ame, 
PUP.Optional.DriverPack, C:\USERS\TONYM\APPDATA\ROAMING\DRPSU\ALICE\FFMPEG.DLL, En cuarentena, 597, 542228, 1.0.15776, , ame, 
PUP.Optional.DriverPack, C:\USERS\TONYM\APPDATA\ROAMING\DRPSU\ALICE\LIBEGL.DLL, En cuarentena, 597, 542228, 1.0.15776, , ame, 
PUP.Optional.DriverPack, C:\USERS\TONYM\APPDATA\ROAMING\DRPSU\ALICE\CLOUD.EXE, En cuarentena, 597, 542228, 1.0.15776, 000000000000000000000001, dds, 00488960
PUP.Optional.DriverPack, C:\USERS\TONYM\APPDATA\ROAMING\DRPSU\ALICE\NODE.DLL, En cuarentena, 597, 542228, 1.0.15776, , ame, 
PUP.Optional.DriverPack, C:\USERS\TONYM\APPDATA\ROAMING\DRPSU\ALICE\LIBGLESV2.DLL, En cuarentena, 597, 542228, 1.0.15776, , ame, 
PUP.Optional.DriverPack, C:\USERS\TONYM\APPDATA\ROAMING\DRPSU\ALICE\NW_ELF.DLL, En cuarentena, 597, 542228, 1.0.15776, , ame, 
PUP.Optional.DriverPack, D:\DOWNLOADS\DRIVERPACK-17-ONLINE_944574790.1571170963.EXE, En cuarentena, 597, 748224, 1.0.15776, , ame, 
PUP.Optional.DriverPack, D:\DOWNLOADS\DRIVERPACK-17-ONLINE_1035712059.1561768021.EXE, En cuarentena, 597, 663640, 1.0.15776, , ame, 
Adware.FusionCore, D:\DOWNLOADS\FILEZILLA_3.45.1_WIN64_SPONSORED-SETUP.EXE, En cuarentena, 7517, 758717, 1.0.15776, , ame, 
RiskWare.Tool.CK, D:\DESTOK\ESCRITORIO\DESCARGAS\DRIVER EASY 2015.RAR, En cuarentena, 7451, 297065, 1.0.15776, EE0077DC3BBC25E44A0CA1BC, dds, 00488960

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end)
11 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07-12-2019
Ran by Aula214 (administrator) on DESKTOP-6RP18Q3 (ASUSTeK COMPUTER INC. X540LA) (09-12-2019 12:40:25)
Running from D:\Downloads
Loaded Profiles: Aula214 (Available Profiles: defaultuser0 & Aula214)
Platform: Windows 10 Home Version 1803 17134.1130 (X64) Language: Español (España, internacional)
Default browser: "C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe" -- "%1"
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUS Cloud Corporation -> ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.5.541\AsusWSPanel.exe
(ASUS Cloud Corporation) [File not signed] C:\Program Files (x86)\ASUS\WebStorage\2.2.5.541\AsusWSWinService.exe
(ASUS) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTek Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTek Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\BraveCrashHandler64.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\WINDOWS\System32\DbxSvc.exe
(ESET, spol. s r.o. -> ESET spol. s r.o.) D:\Downloads\esetonlinescanner_esn.exe
(F.lux Software LLC -> f.lux Software LLC) C:\Users\tonym\AppData\Local\FluxSoftware\Flux\flux.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> ) C:\WINDOWS\System32\igfxTray.exe
(Intel Corporation -> Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\WINDOWS\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\WINDOWS\System32\igfxHK.exe
(Intel Corporation -> Intel Corporation) C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Microsoft Corporation -> © 2015 Microsoft Corporation) C:\Users\tonym\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\WINDOWS\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.5.541\ASUSWSLoader.exe [63272 2015-10-22] (ASUS Cloud Corporation -> )
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6260544 2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2084920 2019-09-27] (Adobe Inc. -> Adobe Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Run: [BingSvc] => C:\Users\tonym\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Run: [Discord] => C:\Users\tonym\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Run: [f.lux] => C:\Users\tonym\AppData\Local\FluxSoftware\Flux\flux.exe [1385480 2019-08-30] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Run: [Figma Helper] => C:\Users\tonym\AppData\Local\Programs\FigmaHelper\figma-helper.exe [17064760 2018-07-25] (Figma, Inc. -> Figma, Inc.)
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Run: [a40779f2] => C:\ProgramData\Intel\Wireless\459be34\akcfdec.exe [943784 2019-12-09] (AutoIt Consulting Ltd -> AutoIt Team)
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe [1988240 2019-11-19] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\Installer\chrmstp.exe [2019-12-07] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\78.1.0.1\Installer\chrmstp.exe [2019-12-02] (Brave Software, Inc.) [File not signed]
HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2017-04-18] (McAfee, Inc. -> McAfee, Inc.)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2019-09-24]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine\Vpn.exe (AVAST Software s.r.o. -> AVAST Software)
Startup: C:\Users\tonym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Supervisar alertas de tinta - HP Deskjet 1050 J410 series.lnk [2018-07-11]
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0021163E-AE7C-46CD-8885-7AD6F2AC1DD9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-12-07] (Piriform Software Ltd -> Piriform Ltd)
Task: {0416E4DD-9E4F-40EF-ACE9-AB6C65EDA4E5} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {104D2968-90CC-4F5B-B9B5-CFA4904A23C2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-12-07] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {123E10C0-F18B-4253-9ABB-AA8ADB611798} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1B5244FA-277F-45C1-AA2F-1465334828E6} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
Task: {2BC6D944-A8C1-47D8-94E1-DB2830F8C003} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2F7B9D88-02B6-4A35-8B99-68149C335667} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-12-07] (Google Inc -> Google Inc.)
Task: {3689890A-607F-40E2-8819-026B00051190} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {3F63A5C0-6859-4536-8CC5-FF7C5107537B} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {43BD04CE-7A48-42A6-A7BD-511CC373141A} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {43F57DD7-0C53-4700-8A07-B2F29F06FC9C} - System32\Tasks\Avast SecureLine VPN Update => c:\program files\avast software\secureline\vpnupdate.exe [1390472 2019-10-24] (AVAST Software s.r.o. -> AVAST Software)
Task: {4527324A-6A29-434B-8A25-C8BABB08AB7C} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-12-02] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {4E1AB3C9-5CCA-4B65-8D4D-F921CBE0BD32} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19782224 2015-05-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {53ED612D-2374-4E33-AABC-D031BFA451CB} - System32\Tasks\ASUS\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe
Task: {636BC105-17C2-4EAF-968A-57EE8972314A} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {69D98174-38C0-4213-9930-331144DC959D} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [54784 2015-12-02] (ASUS) [File not signed]
Task: {7C24302F-855F-43A8-B159-769D0B97F570} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {824AD792-A0AA-4DA7-B49D-A5416C62B678} - System32\Tasks\EOSv3 Scheduler onLogOn => D:\Downloads\esetonlinescanner_esn.exe [8162616 2019-12-06] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {8BF85D38-E821-4406-8006-98955588EE54} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe
Task: {8EF13296-6C6A-4C75-910A-F11F2D2D81CD} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18352 2019-08-19] (ASUSTek Computer Inc. -> AsusTek)
Task: {9B629CEC-4615-4398-B427-9A5D3665F3F1} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1618080 2015-05-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
Task: {9D480EDF-4BCE-41D7-A444-19BB209B8DF3} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {9E954E5D-DC01-4A6D-B6FA-8EC878300FE4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [375416 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {A5E96BDA-0042-438E-9694-EF8AB7E1D3D2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B184BA4E-93BD-4848-86A7-52C6DB037AFC} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407736 2015-11-16] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {B7779ADB-E352-4E4E-BB03-D97AB296C6FD} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16409496 2015-11-16] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {BB2DF8F7-9ED6-442B-9E26-9082B35DFF85} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {C96EFCF7-EEF9-4B9F-8201-EB6139D0E4CA} - System32\Tasks\HPCustParticipation HP Deskjet 1050 J410 series => C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPCustPartic.exe [4119656 2012-10-02] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {CBDFED76-C980-4ADC-A07C-F8B00BD227A7} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-24] (Dropbox, Inc -> Dropbox, Inc.)
Task: {CC8EA135-C397-4584-A5C5-9EBC9308C3E7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {CCF7A2B4-04EB-4A02-9680-A94FC77A46F1} - System32\Tasks\EOSv3 Scheduler onTime => D:\Downloads\esetonlinescanner_esn.exe [8162616 2019-12-06] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {D88B29D7-6F4F-43BB-A280-67D7EFB12EA4} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-12-02] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {E9DF74D6-E21F-41E9-BF1B-AC002302D31F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-12-07] (Google Inc -> Google Inc.)
Task: {EE04BB23-398D-4A25-804B-F9F78B23240B} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {EF906BE1-83F4-4164-AB70-DFEF71857228} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {F222AFB5-8EFA-4143-A437-FBA16C736AAE} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {FBB8BD85-05C7-44CE-8685-FB7D69CEA060} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6d6831e3-9062-4564-92a5-12c58d517595}: [NameServer] 10.0.2.15,8.8.8.8
Tcpip\..\Interfaces\{6d6831e3-9062-4564-92a5-12c58d517595}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ad24f8ce-6076-4b79-9a11-453f541f9438}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e859b985-47d1-4775-8770-9e78cf0f1a2a}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-523154326-416181780-3664323986-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus15.msn.com/?pc=ASTE
HKU\S-1-5-21-523154326-416181780-3664323986-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-523154326-416181780-3664323986-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26] (McAfee, Inc. -> Intel Security)
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File
BHO: No Name -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26] (McAfee, Inc. -> Intel Security)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-04-26] (McAfee, Inc. -> Intel Security)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-04-26] (McAfee, Inc. -> Intel Security)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> D:\Java\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> D:\Java\bin\plugin2\npjp2.dll [No File]
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-12-20] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-09-27] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-04-21] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-04-21] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-04-21] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-04-21] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-12-02] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-12-02] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-12-07] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-12-07] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-09-27] (Adobe Inc. -> Adobe Systems)

Chrome: 
=======
CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=es-es
CHR StartupUrls: Default -> "hxxps://drive.google.com/drive/folders/1TMxxubT15Qfy_7kRCHgfjmOmSE8gUZhe","hxxps://drive.google.com/drive/folders/1hlKrutWz6qYuIqkKgf5UCzqSFmJsRsMp"
CHR Profile: C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default [2019-12-07]
CHR Extension: (Traductor de Google) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2018-07-31]
CHR Extension: (Documentos) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-25]
CHR Extension: (Galaxy Aero 1440p) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\baobdjafbehnhgceapbejnfcfebhoafb [2018-01-23]
CHR Extension: (ColorZilla) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2018-12-02]
CHR Extension: (YouTube) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-24]
CHR Extension: (Link Grabber) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\caodelkhipncidmoebgbbeemedohcdma [2019-07-31]
CHR Extension: (FireShot: Webpage Screenshots + Annot...) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\cclnlekcccmhncabpcaoidbobelkpehj [2018-09-17]
CHR Extension: (Adblock Plus - bloqueador de anuncios gratis) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-23]
CHR Extension: (MozBar) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\eakacpaijcpapndcfffdgphdiccmpknp [2019-10-31]
CHR Extension: (Page Ruler) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\emliamioobfffbgcfdchabfibonehkme [2019-10-05]
CHR Extension: (Hojas de cálculo) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (Wappalyzer) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2019-10-31]
CHR Extension: (Keywords Everywhere - Keyword Tool) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbapdpeemoojbophdfndmlgdhppljgmp [2019-11-06]
CHR Extension: (WhatFont) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2018-12-02]
CHR Extension: (Grid Ruler) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\joadogiaiabhmggdifljlpkclnpfncmj [2018-12-03]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-01]
CHR Extension: (HabitLab) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\obghclocpdgcekcognpkblghkedcpdgd [2019-10-29]
CHR Extension: (AdFly Skipper) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\obnfifcganohemahpomajbhocfkdgmjb [2019-11-19]
CHR Extension: (Gmail) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-03]
CHR Extension: (Chrome Media Router) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-11-06]
CHR Extension: (Instant Wireframe) - C:\Users\tonym\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmpmnmbgidlnoamkpmcikaejhmeldnha [2018-12-02]
CHR Profile: C:\Users\tonym\AppData\Local\Google\Chrome\User Data\System Profile [2019-12-07]
CHR HKU\S-1-5-21-523154326-416181780-3664323986-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [823352 2019-09-27] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc. -> Apple Inc.)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.5.541\AsusWSWinService.exe [75264 2015-10-22] (ASUS Cloud Corporation) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6085360 2019-10-15] (AVAST Software s.r.o. -> AVAST Software)
R2 AtherosSvc; C:\WINDOWS\system32\DRIVERS\AdminService.exe [415992 2019-01-30] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2017-11-19] (BattlEye Innovations e.K. -> )
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-12-02] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-12-02] (Brave Software, Inc. -> BraveSoftware Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-24] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-24] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-12-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
R2 esifsvc; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [1883104 2019-01-24] (Intel Corporation -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [353768 2018-10-28] (Intel Corporation -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Trusted Connect Service -> Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2019-12-06] (Malwarebytes Inc -> Malwarebytes)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [6828424 2019-10-23] (AVAST Software s.r.o. -> AVAST Software)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [996736 2017-04-18] (McAfee, Inc. -> McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16160 2017-04-18] (McAfee, Inc. -> McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86776 2017-04-18] (McAfee, Inc. -> McAfee, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 LDrvSvc; C:\Program Files (x86)\OSTotoSoft\DriverTalent\LDrvSvc.dll [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [18048 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUS)
R3 AsusSGDrv; C:\WINDOWS\system32\DRIVERS\AsusSGDrv.sys [140032 2019-08-19] (ASUSTek Computer Inc. -> ASUS Corporation)
S0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37616 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [204824 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [274456 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [209552 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [65120 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2019-10-09] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [276952 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42736 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [161544 2019-11-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110320 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83792 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848432 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [460448 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2017-02-23] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316528 2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4321160 2017-11-23] (Qualcomm Atheros -> Qualcomm Atheros Communications, Inc.)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [78832 2019-01-24] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [75248 2019-01-24] (Intel Corporation -> Intel Corporation)
S3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [50696 2015-08-17] (Intel(R) Software -> Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [403440 2019-01-24] (Intel Corporation -> Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2019-12-06] (Malwarebytes Corporation -> Malwarebytes)
R3 iaLPSS_GPIO; C:\WINDOWS\System32\drivers\iaLPSS_GPIO.sys [46856 2015-06-15] (Intel Corporation - Client Components Group -> Intel Corporation)
S3 iaLPSS_I2C; C:\WINDOWS\System32\drivers\iaLPSS_I2C.sys [132360 2015-06-15] (Intel Corporation - Client Components Group -> Intel Corporation)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel(R) Software -> Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216544 2019-12-08] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-12-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [224408 2019-12-09] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2019-12-09] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [278344 2019-12-09] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [116832 2019-12-08] (Malwarebytes Corporation -> Malwarebytes)
S3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2018-04-11] (Microsoft Windows -> MediaTek Inc.)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2014-08-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1024848 2017-12-07] (Realtek Semiconductor Corp. -> Realtek )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2016-03-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R0 vsock; C:\WINDOWS\system32\DRIVERS\vsock.sys [91712 2016-09-30] (VMware, Inc. -> VMware, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45664 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [355760 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S1 ekjxhgqo; \??\C:\WINDOWS\system32\drivers\ekjxhgqo.sys [X]
S1 eytkpnmr; \??\C:\WINDOWS\system32\drivers\eytkpnmr.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

Error(1) reading file: "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office "
2019-12-09 12:29 - 2019-12-09 12:29 - 000224408 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2019-12-09 12:29 - 2019-12-09 12:29 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2019-12-08 22:15 - 2019-12-08 22:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2019-12-08 22:15 - 2019-12-08 22:15 - 000000000 ____D C:\Program Files\CPUID
2019-12-08 22:01 - 2019-12-08 22:01 - 000116832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2019-12-08 16:46 - 2019-12-08 21:59 - 000000000 ___HD C:\$WINDOWS.~BT
2019-12-08 16:08 - 2019-12-08 16:40 - 000000000 ___HD C:\$GetCurrent
2019-12-08 11:26 - 2019-12-09 12:28 - 000278344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-12-08 11:26 - 2019-12-08 11:26 - 000216544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2019-12-07 16:19 - 2019-12-08 16:45 - 000000036 _____ C:\WINDOWS\progress.ini
2019-12-07 15:43 - 2019-12-08 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2019-12-07 15:43 - 2019-12-07 15:43 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2019-12-07 15:32 - 2019-12-09 12:42 - 000000000 ____D C:\FRST
2019-12-07 14:45 - 2019-12-09 02:17 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-12-07 14:44 - 2019-12-07 14:44 - 000002374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-12-07 14:43 - 2019-12-09 02:17 - 000003550 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-12-07 14:43 - 2019-12-09 02:17 - 000003326 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-12-06 19:59 - 2019-12-09 02:17 - 000002948 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2019-12-06 19:59 - 2019-12-09 02:17 - 000002568 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2019-12-06 15:37 - 2019-12-06 15:37 - 000000665 _____ C:\Users\tonym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2019-12-06 15:37 - 2019-12-06 15:37 - 000000000 ____D C:\Users\tonym\AppData\Local\ESET
2019-12-06 14:28 - 2019-12-08 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-12-06 14:28 - 2019-12-06 14:28 - 000000000 ____D C:\Users\tonym\AppData\Local\mbamtray
2019-12-06 14:28 - 2019-12-06 14:28 - 000000000 ____D C:\Users\tonym\AppData\Local\mbam
2019-12-06 14:28 - 2019-12-06 14:28 - 000000000 ____D C:\Users\tonym\AppData\Local\cache
2019-12-06 14:27 - 2019-12-06 14:27 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-12-06 14:27 - 2019-12-06 14:26 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-12-06 14:26 - 2019-12-06 14:26 - 000000000 ____D C:\Program Files\Malwarebytes
2019-12-06 13:01 - 2019-12-08 16:40 - 000000000 ____D C:\Windows10Upgrade
2019-12-06 12:58 - 2019-12-08 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-12-05 18:25 - 2019-12-08 18:44 - 000000000 ____D C:\WINDOWS\Panther
2019-12-05 01:23 - 2019-12-05 01:23 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-12-05 01:23 - 2019-12-05 01:23 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-12-05 01:23 - 2019-12-05 01:23 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-12-05 01:23 - 2019-12-05 01:23 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-12-02 16:30 - 2019-12-02 16:30 - 000000000 ____D C:\Users\tonym\AppData\Roaming\BraveSoftware
2019-12-02 13:53 - 2019-12-09 02:17 - 000003364 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA
2019-12-02 13:53 - 2019-12-09 02:17 - 000003140 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore
2019-12-02 13:53 - 2019-12-02 13:53 - 000002491 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2019-12-02 13:53 - 2019-12-02 13:53 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2019-12-02 13:52 - 2019-12-02 13:53 - 000000000 ____D C:\Users\tonym\AppData\Local\BraveSoftware
2019-12-01 11:26 - 2019-12-01 11:26 - 000000000 ____D C:\testintel2
2019-11-25 12:25 - 2019-11-25 12:25 - 000000000 ____D C:\Users\tonym\AppData\Roaming\3cd65431c05d5aeb86b56f203b01e92cOLD
2019-11-13 15:26 - 2019-11-08 08:20 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-11-13 15:26 - 2019-11-08 08:20 - 000638264 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-11-13 15:26 - 2019-11-08 08:20 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-11-13 15:26 - 2019-11-08 08:01 - 000790720 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-11-13 15:26 - 2019-11-08 08:01 - 000396296 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2019-11-13 15:26 - 2019-11-08 08:00 - 001641160 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
12 
2019-11-13 15:26 - 2019-11-08 08:00 - 001632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-11-13 15:26 - 2019-11-08 08:00 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-11-13 15:26 - 2019-11-08 07:44 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-11-13 15:26 - 2019-11-08 07:43 - 012835328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-11-13 15:26 - 2019-11-08 07:43 - 000046592 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2019-11-13 15:26 - 2019-11-08 07:40 - 003614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-11-13 15:26 - 2019-11-08 07:40 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2019-11-13 15:26 - 2019-11-08 07:38 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-11-13 15:26 - 2019-11-08 06:16 - 001453624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-11-13 15:26 - 2019-11-08 06:00 - 012036096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-11-13 15:26 - 2019-11-08 05:56 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-11-13 15:26 - 2019-11-08 02:42 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-13 15:26 - 2019-11-08 02:40 - 005627280 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-11-13 15:26 - 2019-11-08 02:40 - 001224720 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-11-13 15:26 - 2019-11-08 02:40 - 001027600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-11-13 15:26 - 2019-11-08 02:39 - 001960800 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2019-11-13 15:26 - 2019-11-08 02:39 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-11-13 15:26 - 2019-11-08 02:39 - 000727584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-11-13 15:26 - 2019-11-08 02:39 - 000500752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-11-13 15:26 - 2019-11-08 02:39 - 000494904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-11-13 15:26 - 2019-11-08 02:39 - 000440768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-11-13 15:26 - 2019-11-08 02:39 - 000435728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-11-13 15:26 - 2019-11-08 02:39 - 000227848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-11-13 15:26 - 2019-11-08 02:39 - 000209936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-11-13 15:26 - 2019-11-08 02:39 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-11-13 15:26 - 2019-11-08 02:38 - 009080120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-11-13 15:26 - 2019-11-08 02:38 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-13 15:26 - 2019-11-08 02:38 - 007447904 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-11-13 15:26 - 2019-11-08 02:38 - 002711352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-11-13 15:26 - 2019-11-08 02:38 - 002571336 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-11-13 15:26 - 2019-11-08 02:38 - 001188000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-11-13 15:26 - 2019-11-08 02:38 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-11-13 15:26 - 2019-11-08 02:31 - 006053808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-11-13 15:26 - 2019-11-08 02:30 - 006570576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-13 15:26 - 2019-11-08 02:30 - 001979960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-11-13 15:26 - 2019-11-08 02:22 - 022016000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-11-13 15:26 - 2019-11-08 02:19 - 025855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-11-13 15:26 - 2019-11-08 02:17 - 022736384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-11-13 15:26 - 2019-11-08 02:16 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-11-13 15:26 - 2019-11-08 02:15 - 019386368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-11-13 15:26 - 2019-11-08 02:15 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-11-13 15:26 - 2019-11-08 02:14 - 004383232 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-11-13 15:26 - 2019-11-08 02:13 - 003403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-13 15:26 - 2019-11-08 02:13 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-11-13 15:26 - 2019-11-08 02:12 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-11-13 15:26 - 2019-11-08 02:11 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-11-13 15:26 - 2019-11-08 02:11 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-11-13 15:26 - 2019-11-08 02:11 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-11-13 15:26 - 2019-11-08 02:11 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-11-13 15:26 - 2019-11-08 02:11 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-11-13 15:26 - 2019-11-08 02:10 - 005769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-11-13 15:26 - 2019-11-08 02:10 - 003091968 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-11-13 15:26 - 2019-11-08 02:10 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-11-13 15:26 - 2019-11-08 02:10 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-13 15:26 - 2019-11-08 02:10 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-11-13 15:26 - 2019-11-08 02:09 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-11-13 15:26 - 2019-11-08 02:09 - 001920512 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-11-13 15:26 - 2019-11-08 02:08 - 003203072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-11-13 15:26 - 2019-11-08 02:08 - 002166272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-11-13 15:26 - 2019-11-08 02:07 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-11-13 15:26 - 2019-11-08 02:07 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-11-13 15:26 - 2019-11-08 02:07 - 000545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-11-13 15:26 - 2019-11-05 07:09 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-11-13 15:26 - 2019-10-02 10:46 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-11-13 15:26 - 2019-10-02 10:45 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-11-13 15:26 - 2019-10-02 10:45 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-11-13 15:26 - 2019-10-02 10:45 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-11-13 15:26 - 2019-10-02 10:45 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-13 15:26 - 2019-10-02 10:34 - 004098912 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-11-13 15:26 - 2019-10-02 10:29 - 001517480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-11-13 15:26 - 2019-10-02 10:28 - 021411976 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-11-13 15:26 - 2019-10-02 10:13 - 013572096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-11-13 15:26 - 2019-10-02 10:13 - 006594048 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-11-13 15:26 - 2019-10-02 10:12 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-13 15:26 - 2019-10-02 10:11 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-11-13 15:26 - 2019-10-02 10:07 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-13 15:26 - 2019-10-02 10:06 - 000599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-11-13 15:26 - 2019-10-02 09:24 - 001320640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-11-13 15:26 - 2019-10-02 09:22 - 020402960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-11-13 15:26 - 2019-10-02 09:22 - 003751824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-11-13 15:26 - 2019-10-02 09:16 - 005662720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-11-13 15:26 - 2019-10-02 09:11 - 012500992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-11-13 15:26 - 2019-10-02 08:25 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2019-11-13 15:26 - 2019-10-02 05:01 - 000514576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-11-13 15:26 - 2019-10-02 05:01 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-11-13 15:26 - 2019-10-02 04:50 - 006979128 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-13 15:26 - 2019-10-02 04:50 - 000095224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-11-13 15:26 - 2019-10-02 04:49 - 002810680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-11-13 15:26 - 2019-10-02 04:49 - 001662480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-11-13 15:26 - 2019-10-02 04:48 - 002421776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-11-13 15:26 - 2019-10-02 04:48 - 001922056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-11-13 15:26 - 2019-10-02 04:48 - 001023800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-11-13 15:26 - 2019-10-02 04:48 - 000791352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-11-13 15:26 - 2019-10-02 04:48 - 000545808 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-11-13 15:26 - 2019-10-02 04:48 - 000430304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2019-11-13 15:26 - 2019-10-02 04:48 - 000413200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-11-13 15:26 - 2019-10-02 04:48 - 000402744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2019-11-13 15:26 - 2019-10-02 04:48 - 000103736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2019-11-13 15:26 - 2019-10-02 04:40 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-11-13 15:26 - 2019-10-02 04:26 - 016598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-11-13 15:26 - 2019-10-02 04:21 - 013878784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-11-13 15:26 - 2019-10-02 04:20 - 001647616 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-11-13 15:26 - 2019-10-02 04:16 - 002379264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-13 15:26 - 2019-10-02 04:16 - 001676800 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-11-13 15:26 - 2019-10-02 04:14 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-11-13 15:26 - 2019-10-02 04:14 - 001222656 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-11-13 15:25 - 2019-11-08 08:01 - 000490136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-11-13 15:25 - 2019-11-08 07:46 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-11-13 15:25 - 2019-11-08 07:45 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2019-11-13 15:25 - 2019-11-08 07:43 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-13 15:25 - 2019-11-08 07:43 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-11-13 15:25 - 2019-11-08 07:42 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-13 15:25 - 2019-11-08 07:41 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-13 15:25 - 2019-11-08 07:40 - 004055552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-11-13 15:25 - 2019-11-08 07:38 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-13 15:25 - 2019-11-08 07:38 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-13 15:25 - 2019-11-08 07:38 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-13 15:25 - 2019-11-08 06:15 - 000322576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2019-11-13 15:25 - 2019-11-08 06:14 - 001628704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-11-13 15:25 - 2019-11-08 06:14 - 000662840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-11-13 15:25 - 2019-11-08 06:03 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2019-11-13 15:25 - 2019-11-08 06:00 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2019-11-13 15:25 - 2019-11-08 05:58 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2019-11-13 15:25 - 2019-11-08 05:57 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-11-13 15:25 - 2019-11-08 05:56 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-11-13 15:25 - 2019-11-08 05:55 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-11-13 15:25 - 2019-11-08 05:02 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-11-13 15:25 - 2019-11-08 02:40 - 000568312 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-11-13 15:25 - 2019-11-08 02:40 - 000135176 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-11-13 15:25 - 2019-11-08 02:40 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-11-13 15:25 - 2019-11-08 02:40 - 000060216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2019-11-13 15:25 - 2019-11-08 02:39 - 000249088 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-11-13 15:25 - 2019-11-08 02:38 - 001459328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-11-13 15:25 - 2019-11-08 02:38 - 001260776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-11-13 15:25 - 2019-11-08 02:38 - 001141712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-11-13 15:25 - 2019-11-08 02:38 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-11-13 15:25 - 2019-11-08 02:38 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-11-13 15:25 - 2019-11-08 02:38 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-11-13 15:25 - 2019-11-08 02:38 - 000605712 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-11-13 15:25 - 2019-11-08 02:38 - 000466744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-11-13 15:25 - 2019-11-08 02:32 - 000435216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-11-13 15:25 - 2019-11-08 02:32 - 000385272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-11-13 15:25 - 2019-11-08 02:32 - 000191800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-11-13 15:25 - 2019-11-08 02:32 - 000146920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-11-13 15:25 - 2019-11-08 02:31 - 001658136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2019-11-13 15:25 - 2019-11-08 02:31 - 000665432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-11-13 15:25 - 2019-11-08 02:31 - 000379432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-11-13 15:25 - 2019-11-08 02:30 - 001130776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-11-13 15:25 - 2019-11-08 02:30 - 000785776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-11-13 15:25 - 2019-11-08 02:30 - 000581256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-11-13 15:25 - 2019-11-08 02:14 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-11-13 15:25 - 2019-11-08 02:13 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-13 15:25 - 2019-11-08 02:13 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-11-13 15:25 - 2019-11-08 02:13 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2019-11-13 15:25 - 2019-11-08 02:13 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-11-13 15:25 - 2019-11-08 02:13 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-13 15:25 - 2019-11-08 02:12 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-11-13 15:25 - 2019-11-08 02:12 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-13 15:25 - 2019-11-08 02:12 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-13 15:25 - 2019-11-08 02:12 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-11-13 15:25 - 2019-11-08 02:12 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2019-11-13 15:25 - 2019-11-08 02:12 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-13 15:25 - 2019-11-08 02:12 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2019-11-13 15:25 - 2019-11-08 02:11 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-11-13 15:25 - 2019-11-08 02:11 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-13 15:25 - 2019-11-08 02:11 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-11-13 15:25 - 2019-11-08 02:10 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-11-13 15:25 - 2019-11-08 02:10 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-11-13 15:25 - 2019-11-08 02:10 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-11-13 15:25 - 2019-11-08 02:10 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2019-11-13 15:25 - 2019-11-08 02:09 - 002179072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-13 15:25 - 2019-11-08 02:09 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-11-13 15:25 - 2019-11-08 02:09 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2019-11-13 15:25 - 2019-11-08 02:08 - 002603008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-11-13 15:25 - 2019-11-08 02:08 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-13 15:25 - 2019-11-08 02:08 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-11-13 15:25 - 2019-11-08 02:08 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-11-13 15:25 - 2019-11-08 02:07 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-11-13 15:25 - 2019-11-08 02:07 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-11-13 15:25 - 2019-11-08 02:07 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-11-13 15:25 - 2019-11-08 02:07 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-13 15:25 - 2019-11-08 02:07 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-11-13 15:25 - 2019-11-08 02:07 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-11-13 15:25 - 2019-11-08 02:07 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-11-13 15:25 - 2019-11-08 00:46 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2019-11-13 15:25 - 2019-11-01 02:10 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-11-13 15:25 - 2019-10-02 10:34 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-11-13 15:25 - 2019-10-02 10:27 - 000117240 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-11-13 15:25 - 2019-10-02 10:09 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-13 15:25 - 2019-10-02 10:09 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-11-13 15:25 - 2019-10-02 10:09 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-11-13 15:25 - 2019-10-02 10:07 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-11-13 15:25 - 2019-10-02 10:06 - 000672768 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-11-13 15:25 - 2019-10-02 10:05 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2019-11-13 15:25 - 2019-10-02 09:23 - 000106560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-11-13 15:25 - 2019-10-02 09:12 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-11-13 15:25 - 2019-10-02 09:11 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2019-11-13 15:25 - 2019-10-02 09:08 - 000472576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2019-11-13 15:25 - 2019-10-02 09:07 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2019-11-13 15:25 - 2019-10-02 09:07 - 000486400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-11-13 15:25 - 2019-10-02 09:06 - 002406912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-11-13 15:25 - 2019-10-02 05:00 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-11-13 15:25 - 2019-10-02 04:58 - 000795360 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-11-13 15:25 - 2019-10-02 04:51 - 000192312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-11-13 15:25 - 2019-10-02 04:50 - 000536832 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-11-13 15:25 - 2019-10-02 04:50 - 000148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-11-13 15:25 - 2019-10-02 04:49 - 000769288 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-11-13 15:25 - 2019-10-02 04:49 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-13 15:25 - 2019-10-02 04:49 - 000088016 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-11-13 15:25 - 2019-10-02 04:35 - 000465832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-11-13 15:25 - 2019-10-02 04:34 - 000526512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2019-11-13 15:25 - 2019-10-02 04:34 - 000129360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-11-13 15:25 - 2019-10-02 04:34 - 000081040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-11-13 15:25 - 2019-10-02 04:33 - 003330880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-13 15:25 - 2019-10-02 04:33 - 001254712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-11-13 15:25 - 2019-10-02 04:32 - 000412696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2019-11-13 15:25 - 2019-10-02 04:21 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-13 15:25 - 2019-10-02 04:19 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-13 15:25 - 2019-10-02 04:19 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-11-13 15:25 - 2019-10-02 04:19 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-11-13 15:25 - 2019-10-02 04:18 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-13 15:25 - 2019-10-02 04:18 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2019-11-13 15:25 - 2019-10-02 04:18 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-13 15:25 - 2019-10-02 04:18 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-13 15:25 - 2019-10-02 04:18 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-13 15:25 - 2019-10-02 04:17 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-13 15:25 - 2019-10-02 04:17 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-11-13 15:25 - 2019-10-02 04:17 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2DP.sys
2019-11-13 15:25 - 2019-10-02 04:16 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-13 15:25 - 2019-10-02 04:16 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-13 15:25 - 2019-10-02 04:16 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-11-13 15:25 - 2019-10-02 04:15 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-11-13 15:25 - 2019-10-02 04:15 - 000517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-13 15:25 - 2019-10-02 04:14 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-11-13 15:25 - 2019-10-02 04:14 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-11-13 15:25 - 2019-10-02 04:14 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-11-13 15:25 - 2019-10-02 04:14 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-11-13 15:25 - 2019-10-02 04:14 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2019-11-13 15:25 - 2019-10-02 04:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-11-13 15:25 - 2019-10-02 04:13 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-11-13 15:25 - 2019-10-02 04:13 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-11-13 15:25 - 2019-10-02 04:11 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-11-13 15:25 - 2019-10-02 04:11 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-11-13 15:25 - 2019-10-02 04:10 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-11-13 15:25 - 2019-10-02 04:09 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-11-13 15:25 - 2019-10-02 04:09 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-11-11 22:34 - 2019-11-24 13:56 - 000000000 ____D C:\Users\tonym\AppData\LocalLow\uTorrent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-09 12:35 - 2016-09-24 09:28 - 000000166 _____ C:\Users\tonym\AppData\Roaming\sp_data.sys
2019-12-09 12:31 - 2019-11-06 21:22 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2019-12-09 12:30 - 2018-04-11 23:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-12-09 12:29 - 2017-05-27 01:17 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-12-09 12:27 - 2018-06-10 11:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-12-09 12:27 - 2015-11-27 11:55 - 000001032 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2019-12-09 12:27 - 2015-11-27 11:55 - 000001028 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2019-12-09 12:26 - 2018-04-11 21:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-12-09 11:49 - 2018-06-10 11:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-12-09 02:17 - 2019-11-06 12:28 - 000002866 _____ C:\WINDOWS\system32\Tasks\ASUS Smart Gesture Launcher
2019-12-09 02:17 - 2019-10-03 15:34 - 000002608 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2019-12-09 02:17 - 2019-08-21 12:02 - 000002586 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2019-12-09 02:17 - 2018-06-10 11:32 - 000003546 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2019-12-09 02:17 - 2018-06-10 11:32 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2019-12-09 02:17 - 2018-06-10 11:32 - 000003220 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2019-12-09 02:17 - 2018-06-10 11:32 - 000002974 _____ C:\WINDOWS\system32\Tasks\Update Checker
2019-12-09 02:17 - 2018-06-10 11:32 - 000002924 _____ C:\WINDOWS\system32\Tasks\ATK Package 36D18D69AFC3
2019-12-09 02:17 - 2018-06-10 11:32 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-523154326-416181780-3664323986-1001
2019-12-09 02:17 - 2018-06-10 11:32 - 000002722 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP Deskjet 1050 J410 series
2019-12-09 02:17 - 2018-06-10 11:32 - 000002346 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice
2019-12-09 02:17 - 2018-06-10 11:32 - 000002340 _____ C:\WINDOWS\system32\Tasks\ASUS USB Charger Plus
2019-12-09 02:17 - 2018-06-10 11:32 - 000002280 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2019-12-09 02:17 - 2018-06-10 11:32 - 000002216 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2019-12-09 02:17 - 2018-06-10 11:32 - 000002214 _____ C:\WINDOWS\system32\Tasks\ATK Package A22126881260
2019-12-09 02:17 - 2018-06-10 11:32 - 000002214 _____ C:\WINDOWS\system32\Tasks\ASUS Splendid ACMON
2019-12-09 02:17 - 2018-06-10 11:32 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2019-12-08 21:59 - 2018-06-10 11:32 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2019-12-08 21:58 - 2018-04-11 23:36 - 000000000 ____D C:\WINDOWS\INF
2019-12-08 20:45 - 2019-03-30 20:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2019-12-08 20:45 - 2019-01-21 11:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
2019-12-08 20:45 - 2019-01-02 01:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-12-08 20:45 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2019-12-08 20:45 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\System
2019-12-08 20:45 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\IME
2019-12-08 20:45 - 2018-04-11 23:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-12-08 20:45 - 2018-02-04 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-12-08 20:45 - 2018-01-09 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TypingMaster
2019-12-08 20:45 - 2017-12-22 22:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2019-12-08 20:45 - 2017-12-13 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-12-08 20:45 - 2017-07-07 01:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Agil READ
2019-12-08 20:45 - 2017-06-08 16:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2019-12-08 20:45 - 2017-06-08 16:52 - 000000000 ____D C:\WINDOWS\SHELLNEW
2019-12-08 20:45 - 2017-05-31 21:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.3
2019-12-08 20:45 - 2017-05-27 01:17 - 000000000 ____D C:\Program Files\Intel
2019-12-08 20:45 - 2017-05-24 15:39 - 000000000 ____D C:\Program Files\UNP
2019-12-08 20:45 - 2017-03-24 20:29 - 000000000 ____D C:\ProgramData\regid.1995-08.com.techsmith
2019-12-08 20:45 - 2017-03-13 21:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2019-12-08 20:45 - 2016-10-07 08:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2019-12-08 20:45 - 2016-09-26 21:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2019-12-08 20:45 - 2016-09-26 21:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2019-12-08 20:45 - 2016-09-24 11:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-12-08 20:45 - 2016-04-22 08:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2019-12-08 20:45 - 2016-04-22 08:23 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-12-08 20:45 - 2015-11-27 11:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2019-12-08 20:45 - 2015-11-27 11:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2019-12-08 20:45 - 2015-11-27 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2019-12-08 20:45 - 2015-10-30 07:24 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2019-12-08 20:44 - 2019-09-25 08:56 - 000000000 ____D C:\WINDOWS\system32\luminati
2019-12-08 20:44 - 2018-04-12 16:22 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2019-12-08 20:44 - 2018-04-12 16:18 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2019-12-08 20:44 - 2018-04-12 16:18 - 000000000 ____D C:\WINDOWS\system32\WCN
2019-12-08 20:44 - 2018-04-11 23:38 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2019-12-08 20:44 - 2018-04-11 23:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-12-08 20:44 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2019-12-08 20:44 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-12-08 20:44 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\spool
2019-12-08 20:44 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-12-08 20:44 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\Registration
2019-12-08 20:44 - 2017-05-27 01:17 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2019-12-08 18:44 - 2018-06-10 11:31 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2019-12-08 18:44 - 2018-06-10 11:31 - 000001908 _____ C:\WINDOWS\diagerr.xml
2019-12-08 13:07 - 2019-11-06 18:31 - 000000128 _____ C:\Users\tonym\AppData\Local\PUTTY.RND
2019-12-08 11:24 - 2018-06-10 11:08 - 000000000 ____D C:\Users\tonym
2019-12-07 19:13 - 2018-05-22 08:14 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-12-07 18:59 - 2018-02-04 20:12 - 000000000 ____D C:\Program Files\CCleaner
2019-12-07 16:19 - 2019-10-28 19:40 - 000000282 __RSH C:\ProgramData\ntuser.pol
2019-12-07 15:23 - 2019-03-30 20:50 - 000000000 ____D C:\Users\tonym\AppData\Roaming\FileZilla
2019-12-07 15:23 - 2016-10-05 15:30 - 000000000 ____D C:\Users\tonym\AppData\Roaming\uTorrent
2019-12-07 15:19 - 2017-12-13 20:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2019-12-07 15:18 - 2017-03-22 20:48 - 000000000 ____D C:\Users\tonym\AppData\Local\CrashDumps
2019-12-07 15:03 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-12-07 15:03 - 2017-12-02 11:10 - 000000000 ____D C:\Users\tonym\AppData\Local\Packages
2019-12-07 14:44 - 2016-09-24 11:09 - 000000000 ____D C:\Program Files (x86)\Google
2019-12-06 15:52 - 2018-01-19 20:06 - 000000000 ___HD C:\DESKTOP-6RP18Q3
2019-12-06 15:16 - 2017-03-14 20:09 - 000748816 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-12-06 15:15 - 2018-04-11 21:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-12-06 14:27 - 2018-04-11 23:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-12-06 14:27 - 2017-11-11 09:22 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-12-06 13:15 - 2019-01-02 01:38 - 000000000 ____D C:\Users\tonym\AppData\Roaming\vlc
2019-12-06 12:59 - 2015-11-27 11:55 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-12-04 19:21 - 2019-10-31 12:05 - 000000000 ____D C:\Users\tonym\Local Sites
2019-12-03 21:33 - 2019-03-30 20:50 - 000000000 ____D C:\Users\tonym\AppData\Local\FileZilla
2019-12-02 10:37 - 2019-08-04 14:03 - 000000000 ____D C:\Users\tonym\AppData\Local\JDownloader 2.0
2019-12-01 19:31 - 2019-01-21 10:09 - 000000000 ___RD C:\Descargas
2019-12-01 14:49 - 2018-06-10 11:08 - 000002400 _____ C:\Users\tonym\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-12-01 14:49 - 2016-09-24 09:31 - 000000000 ___RD C:\Users\tonym\OneDrive
2019-11-30 22:01 - 2018-04-11 23:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-11-30 19:27 - 2017-09-24 01:16 - 000007602 _____ C:\Users\tonym\AppData\Local\resmon.resmoncfg
2019-11-30 19:14 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-11-30 11:24 - 2019-07-17 19:16 - 000000000 ___RD C:\Users\tonym\Creative Cloud Files
2019-11-30 11:24 - 2016-09-26 22:20 - 000000000 ____D C:\Users\tonym\AppData\Local\Adobe
2019-11-25 12:25 - 2018-01-19 20:07 - 000000000 ____D C:\Users\tonym\AppData\Roaming\3cd65431c05d5aeb86b56f203b01e92c
2019-11-24 13:25 - 2019-05-31 16:34 - 000000000 ____D C:\Users\tonym\AppData\Local\BitTorrentHelper
2019-11-24 13:19 - 2016-04-22 08:28 - 000000000 ____D C:\ProgramData\Intel
2019-11-22 11:28 - 2018-06-10 11:22 - 001768612 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-22 11:28 - 2018-04-12 16:18 - 000789396 _____ C:\WINDOWS\system32\perfh00A.dat
2019-11-22 11:28 - 2018-04-12 16:18 - 000155976 _____ C:\WINDOWS\system32\perfc00A.dat
2019-11-18 21:28 - 2017-05-09 15:19 - 000000000 ____D C:\Users\tonym\AppData\Roaming\discord
2019-11-18 21:17 - 2019-01-01 18:31 - 000000000 ___HD C:\adobeTemp
2019-11-15 10:23 - 2016-10-04 21:53 - 000000000 ___RD C:\Users\tonym\3D Objects
2019-11-15 10:19 - 2018-06-10 11:02 - 000526712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-11-14 17:49 - 2018-04-11 23:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-11-14 17:49 - 2018-04-11 21:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-11-13 15:25 - 2016-09-24 13:20 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-11-13 15:18 - 2016-09-24 13:19 - 128443096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories ========

2016-09-24 09:28 - 2019-12-09 12:35 - 000000166 _____ () C:\Users\tonym\AppData\Roaming\sp_data.sys
2017-03-25 21:31 - 2018-02-12 16:47 - 000006144 _____ () C:\Users\tonym\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-11-12 12:02 - 2018-11-12 12:02 - 000000410 _____ () C:\Users\tonym\AppData\Local\oobelibMkey.log
2019-11-06 18:31 - 2019-12-08 13:07 - 000000128 _____ () C:\Users\tonym\AppData\Local\PUTTY.RND
2018-02-22 21:52 - 2018-02-22 21:52 - 000003731 _____ () C:\Users\tonym\AppData\Local\recently-used.xbel
2017-09-24 01:16 - 2019-11-30 19:27 - 000007602 _____ () C:\Users\tonym\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
13 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-12-2019
Ran by Aula214 (09-12-2019 12:45:25)
Running from D:\Downloads
Windows 10 Home Version 1803 17134.1130 (X64) (2018-06-10 11:34:28)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-523154326-416181780-3664323986-500 - Administrator - Disabled)
Aula214 (S-1-5-21-523154326-416181780-3664323986-1001 - Administrator - Enabled) => C:\Users\tonym
DefaultAccount (S-1-5-21-523154326-416181780-3664323986-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-523154326-416181780-3664323986-1000 - Limited - Disabled) => C:\Users\defaultuser0
Invitado (S-1-5-21-523154326-416181780-3664323986-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-523154326-416181780-3664323986-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\uTorrent) (Version: 3.5.5.45395 - BitTorrent Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.0.0.354 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_1) (Version: 20.0.1 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.23)  MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Agil READ 5.1 (HKLM\...\{AF7A9734-0919-4C77-BB2A-E4DFC82FAF5B}) (Version: 5.1 - Agil MENTE Software)
Apple Application Support (32 bits) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Asistente para actualización a Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22899 - Microsoft Corporation)
ASUS Device Activation (HKLM-x32\...\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}) (Version: 1.0.4.0 - ASUSTeK COMPUTER INC.)
ASUS GIFTBOX (HKLM-x32\...\ASUS GIFTBOX) (Version: 7.4.223 - ASUSTek Computer Inc)
ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.6 - ASUSTeK COMPUTER INC.)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.24 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.14.0006 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0042 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.101 - ICEpower a/s)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Avast SecureLine for Asustek (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.239.3 - AVAST Software)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 78.1.0.1 - Brave Software Inc)
calibre 64bit (HKLM\...\{00A87BBC-1F88-4E30-B61F-C56933578808}) (Version: 3.14.0 - Kovid Goyal)
Camtasia Studio 8 (HKLM-x32\...\{BFA04EE0-8240-4667-8D53-45496A901C33}) (Version: 8.1.2.1327 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
CPUID CPU-Z 1.90 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.90 - CPUID, Inc.)
CrystalDiskInfo 8.3.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.3.2 - Crystal Dew World)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
Discord (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Dropbox (HKLM-x32\...\Dropbox) (Version: 86.4.146 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.189.1 - Dropbox, Inc.) Hidden
Duolingo (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Duolingo) (Version:  - Duolingo)
Eines de correcció del Microsoft Office 2013: català (HKLM-x32\...\{90150000-001F-0403-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
f.lux (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Flux) (Version:  - f.lux Software LLC)
Ferramentas de verificación de Microsoft Office 2013 - Galego (HKLM-x32\...\{90150000-001F-0456-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Figma (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Figma) (Version: 73.7.0 - Figma, Inc.)
Figma Font Helper (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\FigmaHelper) (Version: 21.0 - Figma, Inc.)
FileZilla Client 3.45.1 (HKLM-x32\...\FileZilla Client) (Version: 3.45.1 - Tim Kosse)
Foxit PhantomPDF (HKLM-x32\...\{E40149BB-552F-44C8-A10F-4188ADC5AD70}) (Version: 7.0.510.429 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.108 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
HP Deskjet 1050 J410 series Ayuda (HKLM-x32\...\{5C90D8CF-F12A-41C6-9007-3B651A1F0D78}) (Version: 140.0.66.66 - Hewlett Packard)
HP Deskjet 1050 J410 series Estudio para la mejora del producto (HKLM\...\{857BB9C2-560B-4D85-A586-7CCDF1D4CB15}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Deskjet 1050 J410 series Software básico del dispositivo (HKLM\...\{C585DE2E-0AC0-404C-AC0E-8F5ED300BA93}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.16.112.1 - Intel Security)
Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5063 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 1.1.253.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 5.3.3.2 (HKLM-x32\...\{C7C4A0C6-8483-4065-851D-CBE5DC17D046}) (Version: 5.3.3.2 - The Document Foundation)
Local 5.0.7 (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\{db9b6d64-7ad2-556e-893c-24e21cb471e1}) (Version: 5.0.7 - Flywheel)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.36.1 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.17.1298.831 - Microsoft Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.2 - Qualcomm Atheros)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10130.27054 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.24.1208.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7661 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Revisores de Texto do Microsoft Office 2013 – Português do Brasil (HKLM-x32\...\{90150000-001F-0416-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
Turbo-Speed Reader 1.0 (HKLM-x32\...\Turbo-Speed Reader 1.0) (Version: 1.0 - Ramón Campayo)
TypingMaster Pro (HKLM-x32\...\{98B6FB8A-8638-4037-AD44-CF7D0EEAB875}_is1) (Version: 7.10 - TypingMaster Inc)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.5 - VideoLAN)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.5.541 - ASUS Cloud Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.1.0 - ASUS)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 7.3.0-0 - Bitnami)
XD.CC.v1.0.12.x64.MULTI (HKLM\...\{204086A4-86F5-4092-BC72-12D2EDDA8BCA}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden

Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc [2019-07-17] (Adobe Systems Incorporated)
Adobe XD -> C:\Program Files\WindowsApps\Adobe.CC.XD_21.0.12.11_x64__adky2gkssdxte [2019-07-17] (Adobe Systems Incorporated)
Correo y Calendario -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x64__8wekyb3d8bbwe [2019-11-26] (Microsoft Corporation) [MS Ad]
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_105.1.623.0_x64__v10z8vjag6ke6 [2019-11-15] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
MSN El Tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.33.13253.0_x64__8wekyb3d8bbwe [2019-11-24] (Microsoft Corporation) [MS Ad]
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.0.0.0_x64__a2t3txkz9j1jw [2019-07-26] (MAGIX)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-523154326-416181780-3664323986-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-0E356A18F977} -> [Creative Cloud Files] => C:\Users\tonym\Creative Cloud Files [2019-07-17 19:16]
CustomCLSID: HKU\S-1-5-21-523154326-416181780-3664323986-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\tonym\Dropbox [2016-09-24 10:04]
CustomCLSID: HKU\S-1-5-21-523154326-416181780-3664323986-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} =>  -> No File
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} =>  -> No File
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} =>  -> No File
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.5.541\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.5.541\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.5.541\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2015-04-30] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files (x86)\Common Files\AWS\2.2.5.541\ASUSWSContextMenu.dll [2015-10-22] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-06] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-06-04] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-11-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-09] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-06] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\tonym\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\e2f3576b7abb043d\Brave.lnk -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) =============

2015-12-02 17:01 - 2015-12-02 17:01 - 000124928 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-12-02 17:01 - 2015-12-02 17:01 - 000027648 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-12-02 17:01 - 2015-12-02 17:01 - 000029184 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\VideoEnhance.dll
2015-12-02 17:01 - 2015-12-02 17:01 - 001676288 _____ (ASUS TeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ApplyLUT.dll
2015-12-02 17:01 - 2015-12-02 17:01 - 000178176 _____ (ASUS TeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\GenLUT.dll
2015-12-02 17:01 - 2015-12-02 17:01 - 000164864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ColorU.dll
2019-12-06 15:38 - 2019-12-09 12:39 - 001195008 _____ (ESET) [File not signed] C:\Users\tonym\AppData\Local\ESET\ESETOnlineScanner\esets_apiW_a.DLL
2019-09-04 14:14 - 2019-09-04 14:07 - 002095104 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\AVAST Software\SecureLine\libcrypto-1_1.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\hola.org -> hxxp://hola.org
IE trusted site: HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 07:24 - 2019-12-04 19:23 - 000008800 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 65.52.240.48
127.0.0.1 69.167.144.18
127.0.0.1 157.56.8.159
127.0.0.1 69.167.144.15
127.0.0.1 updater.techsmith.com
127.0.0.1 camtasiatudi.techsmith.com
127.0.0.1 tsccloud.cloudapp.net
127.0.0.1 assets.cloud.techsmith.com
0.0.0.0 192.150.18.108
0.0.0.0 192.150.22.40
0.0.0.0 192.150.14.69
0.0.0.0 192.150.8.118
0.0.0.0 192.150.8.100
0.0.0.0 192.150.18.101
0.0.0.0 192.168.112.207
0.0.0.0 194.224.66.48
0.0.0.0 199.7.52.190
0.0.0.0 199.7.52.190:80
0.0.0.0 209.34.83.73:43
0.0.0.0 209.34.83.73:443
0.0.0.0 www.adobeereg.com #75.125.24.83
0.0.0.0 adobeereg.com #207.66.2.10
0.0.0.0 activate.adobe.com #192.150.22.40
0.0.0.0 practivate.adobe
0.0.0.0 practivate.adobe.com
0.0.0.0 practivate.adobe.*
0.0.0.0 practivate.adobe.com #192.150.18.54
0.0.0.0 practivate.adobe.newoa

There are 143 more lines.


2017-07-18 00:16 - 2017-11-15 10:50 - 000000446 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Calibre2\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-523154326-416181780-3664323986-1001\Control Panel\Desktop\\Wallpaper -> D:\Pictures\wallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "FAH.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Actualizar notificador.lnk"
HKLM\...\StartupApproved\StartupFolder: => "avast! SecureLine.lnk"
HKLM\...\StartupApproved\StartupFolder: => "WinZip Preloader.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Avast SecureLine VPN.lnk"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\StartupFolder: => "EvernoteClipper.lnk"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\Run: => "SandboxieControl"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\Run: => "Figma Helper"
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\StartupApproved\Run: => "CCXProcess"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{B12C4FAE-E610-44A4-AFB5-9E35C1973E98}C:\users\tonym\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tonym\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{83831F08-5B0F-46A7-873B-79F861BF9E56}C:\users\tonym\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tonym\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{70631BB1-F1ED-4F30-8F7A-C3FC77B2C06F}] => (Allow) C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\USBSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [TCP Query User{31F84A08-5908-4232-B6AA-86588BDCE2BD}C:\users\tonym\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tonym\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{C215B9DE-ABA4-41D8-AE04-2CD631C30F85}C:\users\tonym\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tonym\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{76F04842-93D2-41FB-88F4-35E50BEBA30E}] => (Block) %ProgramFiles%\Adobe\Adobe Photoshop CC 2019\Photoshop.exe No File
FirewallRules: [{C1B00988-3B4A-44EE-95D2-F4D8FB7FE0E1}] => (Block) C:\Program Files\Adobe\Adobe Photoshop CC 2019 ()
FirewallRules: [TCP Query User{A58D7B68-00AB-4BD6-A35A-109F8FD09959}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{6A3D663A-CA33-4B31-8E64-A6CE015F0F19}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{1D350D29-538F-490F-9D64-4BD90CA1954C}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [UDP Query User{A084E553-E647-48D9-8055-94F6340A0643}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [TCP Query User{38B45DEC-791D-47FF-9101-E4B4ECFB3BB8}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [UDP Query User{27C8D54F-D3CF-4D0E-992B-26CE1B22C467}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [TCP Query User{78C97B56-7726-4A14-B8FF-EF81570895AD}C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{160426D3-1A18-4CAA-9880-BCB3F8263E4F}C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{A1D09CE8-891E-4864-863D-59F16FA80732}C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe] => (Block) C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{686A3005-923A-4C5A-8194-46C7DD496FB6}C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe] => (Block) C:\users\tonym\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{DB16A1E7-7E7B-4F0C-BFCF-BC6021BC73AA}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{44205170-E2E7-45EB-A7E9-4DA7C635EA6F}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{1F83BC5C-222F-4B1D-881A-228F114704C4}C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\nginx-1.16.0\nginx.exe] => (Allow) C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\nginx-1.16.0\nginx.exe (Flywheel (Fancy Chap, Inc.) -> )
FirewallRules: [UDP Query User{F2FC0C14-A86D-4B5C-9EDD-75652FCB1E73}C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\nginx-1.16.0\nginx.exe] => (Allow) C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\nginx-1.16.0\nginx.exe (Flywheel (Fancy Chap, Inc.) -> )
FirewallRules: [TCP Query User{385203D9-1346-4D95-86A9-6743A47980C3}C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\mailhog\mailhog.exe] => (Allow) C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\mailhog\mailhog.exe (Flywheel (Fancy Chap, Inc.) -> )
FirewallRules: [UDP Query User{49430A3A-7D51-4A13-BEC4-8F6181A3A0D1}C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\mailhog\mailhog.exe] => (Allow) C:\users\tonym\appdata\local\programs\local\resources\extraresources\site-binaries-win32\mailhog\mailhog.exe (Flywheel (Fancy Chap, Inc.) -> )
FirewallRules: [{F7FB26A2-4FAF-4859-9FFD-666CE2EFB455}] => (Allow) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{E84C890A-3E5C-4BAB-B437-8312918BFB5D}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{CA80A302-9C7B-4775-BD3C-8AFE6B59E4BB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/09/2019 12:28:35 PM) (Source: TrueKey) (EventID: 0) (User: )
Description: Error al procesar el cambio de sesión. System.ArgumentNullException: El valor no puede ser nulo.
   en System.Threading.Monitor.Enter(Object obj)
   en McAfee.YAP.Service.Common.UsersManager.GetWindowsUsers(Boolean async)
   en McAfee.YAP.Service.Service.OnSessionChange(SessionChangeDescription changeDescription)
   en System.ServiceProcess.ServiceBase.DeferredSessionChange(Int32 eventType, Int32 sessionId)

Error: (12/09/2019 12:27:44 PM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: ESIF(8.5.10103.7263) TYPE: ERROR MODULE: DPTF TIME 42293 ms

DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function:  ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:  
DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function:  EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message:  Error returned from ESIF services interface function call
Participant:  TCPU [0]
Domain:  PKG [0]
ESIF Primitive:  SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance:  0
ESIF Return Code:  ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant:  TCPU [0]
Domain:  PKG [0]
Policy:  ConfigTDP Policy [0]

Error: (12/09/2019 12:27:44 PM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: ESIF(8.5.10103.7263) TYPE: ERROR MODULE: DPTF TIME 42291 ms

DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function:  ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:  
DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function:  EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message:  Error returned from ESIF services interface function call
Participant:  TCPU [0]
Domain:  PKG [0]
ESIF Primitive:  SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance:  0
ESIF Return Code:  ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant:  TCPU [0]
Domain:  PKG [0]
Policy:  ConfigTDP Policy [0]

Error: (12/09/2019 12:27:44 PM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: ESIF(8.5.10103.7263) TYPE: ERROR MODULE: DPTF TIME 42290 ms

DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function:  ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:  
DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function:  EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message:  Error returned from ESIF services interface function call
Participant:  TCPU [0]
Domain:  PKG [0]
ESIF Primitive:  SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance:  0
ESIF Return Code:  ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant:  TCPU [0]
Domain:  PKG [0]
Policy:  ConfigTDP Policy [0]

Error: (12/09/2019 12:23:43 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa SearchUI.exe, versión 10.0.17134.1130, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, comprueba el historial de problemas en la sección Seguridad y mantenimiento del Panel de control.

Identificador de proceso: cbc

Hora de inicio: 01d5ae12ad3acd67

Hora de finalización: 4294967295

Ruta de la aplicación: C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

Identificador de informe: cf74ac55-cf5c-4c1c-844d-a387da429cfe

Nombre completo de paquete con errores: Microsoft.Windows.Cortana_1.10.8.17134_neutral_neutral_cw5n1h2txyewy

Identificador de aplicación relativa del paquete con errores: CortanaUI

Error: (12/09/2019 12:20:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa SkypeApp.exe, versión 8.54.0.91, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, comprueba el historial de problemas en la sección Seguridad y mantenimiento del Panel de control.

Identificador de proceso: 254c

Hora de inicio: 01d5ae12bde48de4

Hora de finalización: 4294967295

Ruta de la aplicación: C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c\SkypeApp.exe

Identificador de informe: 744e6b87-9950-4f19-934f-3c2878e89843

Nombre completo de paquete con errores: Microsoft.SkypeApp_14.54.91.0_x64__kzf8qxf38zg5c

Identificador de aplicación relativa del paquete con errores: App

Error: (12/09/2019 11:55:32 AM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: ESIF(8.5.10103.7263) TYPE: ERROR MODULE: DPTF TIME 50404094 ms

DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function:  ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:  
DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function:  EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message:  Error returned from ESIF services interface function call
Participant:  TCPU [0]
Domain:  PKG [0]
ESIF Primitive:  SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance:  0
ESIF Return Code:  ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant:  TCPU [0]
Domain:  PKG [0]
Policy:  ConfigTDP Policy [0]

Error: (12/09/2019 11:55:32 AM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: ESIF(8.5.10103.7263) TYPE: ERROR MODULE: DPTF TIME 50404093 ms

DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function:  ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:  
DPTF Build Version:  8.5.10103.7263
DPTF Build Date:  Dec 12 2018 18:51:29
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function:  EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message:  Error returned from ESIF services interface function call
Participant:  TCPU [0]
Domain:  PKG [0]
ESIF Primitive:  SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance:  0
ESIF Return Code:  ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant:  TCPU [0]
Domain:  PKG [0]
Policy:  ConfigTDP Policy [0]


System errors:
=============
Error: (12/09/2019 12:44:13 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-6RP18Q3)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 y APPID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 al usuario DESKTOP-6RP18Q3\Aula214 con SID (S-1-5-21-523154326-416181780-3664323986-1001) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (12/09/2019 12:40:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador

Error: (12/09/2019 12:40:48 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\tonym\AppData\Local\Temp\ehdrv.sys

Error: (12/09/2019 12:40:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador

Error: (12/09/2019 12:40:48 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\tonym\AppData\Local\Temp\ehdrv.sys

Error: (12/09/2019 12:40:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador

Error: (12/09/2019 12:40:48 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\tonym\AppData\Local\Temp\ehdrv.sys

Error: (12/09/2019 12:40:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio eapihdrv no pudo iniciarse debido al siguiente error: 
Se ha bloqueado la descarga de este controlador


Windows Defender:
===================================
Date: 2019-10-30 19:30:22.147
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {1396654A-23D1-44B4-8FBF-D525CF1C3A18}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-10-30 18:46:36.822
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {2E9E67F2-B0F6-4CCC-875F-4C0A7713C7FF}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-10-29 16:29:49.256
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:JS/CoinHive.A&threatid=2147729066&enterprise=0
Nombre: Trojan:JS/CoinHive.A
Id.: 2147729066
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: file:_C:\ProgramData\AVAST Software\Avast\report\WebShield.txt
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Sistema
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: Unknown
Versión de firma: AV: 1.305.926.0, AS: 1.305.926.0, NIS: 1.305.926.0
Versión de motor: AM: 1.1.16500.1, NIS: 1.1.16500.1

Date: 2019-10-29 16:29:07.955
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:JS/CoinHive.A&threatid=2147729066&enterprise=0
Nombre: Trojan:JS/CoinHive.A
Id.: 2147729066
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: file:_C:\ProgramData\AVAST Software\Avast\report\WebShield.txt
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Sistema
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: Unknown
Versión de firma: AV: 1.305.906.0, AS: 1.305.906.0, NIS: 1.305.906.0
Versión de motor: AM: 1.1.16500.1, NIS: 1.1.16500.1

Date: 2019-10-29 10:37:33.731
Description: 
Antivirus de Windows Defender detectó malware u otro software potencialmente no deseado.
Para obtener más información consulte lo siguiente:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:JS/CoinHive.A&threatid=2147729066&enterprise=0
Nombre: Trojan:JS/CoinHive.A
Id.: 2147729066
Gravedad: Grave
Categoría: Caballo de Troya
Ruta de acceso: file:_C:\ProgramData\AVAST Software\Avast\report\WebShield.txt
Origen de detección: Equipo local
Tipo de detección: Concreto
Fuente de detección: Sistema
Usuario: NT AUTHORITY\SYSTEM
Nombre de proceso: Unknown
Versión de firma: AV: 1.293.978.0, AS: 1.293.978.0, NIS: 1.293.978.0
Versión de motor: AM: 1.1.15900.4, NIS: 1.1.15900.4

Date: 2019-10-15 20:06:37.111
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.293.978.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.15900.4
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-10-15 20:06:37.111
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.293.978.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.15900.4
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-10-15 20:06:37.110
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.293.978.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.15900.4
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-10-15 20:06:37.099
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.293.978.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.15900.4
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

Date: 2019-10-15 20:06:37.099
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.293.978.0
Origen de actualización: Centro de protección contra malware de Microsoft
Tipo de firma: AntiSpyware
Tipo de actualización: Completa
Usuario: NT AUTHORITY\Servicio de red
Versión de motor actual: 
Versión de motor anterior: 1.1.15900.4
Código de error: 0x80072ee7
Descripción del error: No se pudo resolver el nombre de servidor o su dirección 

CodeIntegrity:
===================================

Date: 2019-12-08 22:15:35.489
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\FileZilla FTP Client\fzshellext_64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-08 22:15:35.486
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\FileZilla FTP Client\fzshellext_64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-08 22:15:35.442
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-08 22:15:35.437
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-07 20:50:08.917
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\FileZilla FTP Client\fzshellext_64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-07 20:50:08.913
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\FileZilla FTP Client\fzshellext_64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-07 20:50:08.718
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-12-07 20:50:08.681
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. X540LA.203 10/13/2015
Motherboard: ASUSTeK COMPUTER INC. X540LA
Processor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Percentage of memory in use: 56%
Total physical RAM: 8090.43 MB
Available physical RAM: 3512.7 MB
Total Virtual: 9370.43 MB
Available Virtual: 4737.03 MB

==================== Drives ================================

Drive c: (vol) (Fixed) (Total:371.76 GB) (Free:172.46 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (DATA) (Fixed) (Total:558.91 GB) (Free:30.98 GB) NTFS

\\?\Volume{3b071a70-d57f-4c69-b7ae-0e64786dc534}\ () (Fixed) (Total:0.58 GB) (Free:0.56 GB) NTFS
\\?\Volume{d80cb9d2-2a5f-4afb-b0ed-9848ea8d5c8e}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 81958623)

Partition: GPT.

==================== End of Addition.txt =======================
14

Bien… y ahora sigue estos pasos, :arrow_forward: MUY Importante :arrow_backward: Realiza una copia de seguridad del registro :

  • Para hacerlo descarga :arrow_forward: DelFix.exe(en tu escritorio).

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).

  • Atención, ahora marca/selecciona únicamente la casilla :white_check_mark: Create registry backup, las demás casillas NO. :face_with_monocle:

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

:warning: Con los demás programas cerrados ve a :arrow_forward: Inicio :arrow_forward: Ejecutar :arrow_forward: y escribe Notepad.exe.

  • Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => -> No File
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => -> No File
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Run: [a40779f2] => C:\ProgramData\Intel\Wireless\459be34\akcfdec.exe [943784 2019-12-09] (AutoIt Consulting Ltd -> AutoIt Team)
C:\ProgramData\Intel\Wireless\459be34
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKU\S-1-5-21-523154326-416181780-3664323986-1001\...\Run: [a40779f2] => C:\ProgramData\Intel\Wireless\459be34\akcfdec.exe [943784 2019-12-09] (AutoIt Consulting Ltd -> AutoIt Team)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3689890A-607F-40E2-8819-026B00051190} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {824AD792-A0AA-4DA7-B49D-A5416C62B678} - System32\Tasks\EOSv3 Scheduler onLogOn => D:\Downloads\esetonlinescanner_esn.exe [8162616 2019-12-06] (ESET, spol. s r.o. -> ESET spol. s r.o.)
Task: {CCF7A2B4-04EB-4A02-9680-A94FC77A46F1} - System32\Tasks\EOSv3 Scheduler onTime => D:\Downloads\esetonlinescanner_esn.exe [8162616 2019-12-06] (ESET, spol. s r.o. -> ESET spol. s r.o.)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-523154326-416181780-3664323986-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File
BHO: No Name -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> D:\Java\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> D:\Java\bin\plugin2\npjp2.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-12-07] (Google Inc -> Google LLC)
CHR HKU\S-1-5-21-523154326-416181780-3664323986-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
S2 LDrvSvc; C:\Program Files (x86)\OSTotoSoft\DriverTalent\LDrvSvc.dll [X]
S1 ekjxhgqo; \??\C:\WINDOWS\system32\drivers\ekjxhgqo.sys [X]
S1 eytkpnmr; \??\C:\WINDOWS\system32\drivers\eytkpnmr.sys [X]
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio :arrow_backward: Esto es muy importante.

:o: Nota :o: Es importante que la herramienta FRST.exe(Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.

Y ahora usa el 2º MÉTODO: de esta Faq de Windows 8(aplicable a Windows 10) :arrow_forward: ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.

  • Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).

  • Presionar el botón FIX y aguardar a que termine.

  • La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pegar el contenido de este fichero en tu próxima respuesta. :+1:

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Saludos.

15

Muchas pero muchas gracias se ha borrado el virús y ahora va muy bien MUCHAS GRACIAS!

1 me gusta
16

Hola.

Excelente. :clap:

Pero por favor, pon el informe con el resultado de la reparacion para que podamos valorarlo y darte nuevas indicaciones.

Saludos.