Hola. Desde ayer, he notado que ocasionalmente se me cierran las ventanas del navegador todas solitas. Me pareció un error o algo así y no le di más importancia. Pero hoy he notado que mi ordenador intenta conectarse a diversas páginas web (me ha avisado el antivirus) y a pesar que las webs aparecen como “limpias” en virsustotal.com, las he bloqueado desde el archivo hosts. Una de las webs es expertdiets.ml y la otra es cnewvi.com
Me temo que tengo el ordenador infectado por algun malware.
He pasado el programa Hijackthis i os pongo el log.
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18
Platform: x64 Windows 7 (Pro), 6.1.7601.24533, Service Pack: 1
Time: 29.10.2019 - 09:07 (UTC+01:00)
Language: OS: Spanish (0xC0A). Display: Spanish (0xC0A). Non-Unicode: Spanish (0xC0A)
Elevated: No
Ran by: A-Carles (group: Limited User) on PC-A75, FirstRun: yes
Chrome: 78.0.3904.70
Firefox: 65.0.0.6963
Internet Explorer: 11.0.9600.19507
Default: "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "%1" (Firefox)
Boot mode: Normal
Running processes:
Number | Path
1 AGMService.exe
1 AGSService.exe
1 AVGSvc.exe
1 AsSysCtrlService.exe
1 AsusFanControlService.exe
1 BrYNSvc.exe
1 C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
1 C:\Program Files (x86)\ASUS\APRP\aprp.exe
1 C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
1 C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
1 C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
1 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
1 C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
1 C:\Program Files (x86)\FUJIFILM\DX100\x86\EKPPrintManager.exe
1 C:\Program Files (x86)\FUJIFILM\DX100\x86\EKPProcWatcher.exe
1 C:\Program Files (x86)\FUJIFILM\DX100\x86\EKPUSBEventWatcher.exe
17 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
1 C:\Program Files (x86)\Intel Corporation\Intel(R) Turbo Boost Max Technology 3.0\ITBM.exe
1 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
1 C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
1 C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe
1 C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
1 C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
1 C:\Program Files\Greenshot\Greenshot.exe
1 C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
1 C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
1 C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
1 C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
1 C:\Users\A-Carles\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\dllcontroller.exe
1 C:\Windows\SysWOW64\rundll32.exe
1 C:\Windows\System32\Wbem\WmiApSrv.exe
2 C:\Windows\System32\Wbem\WmiPrvSE.exe
1 C:\Windows\System32\Wbem\unsecapp.exe
1 C:\Windows\System32\audiodg.exe
1 C:\Windows\System32\dwm.exe
2 C:\Windows\System32\taskeng.exe
2 C:\Windows\System32\taskhost.exe
1 C:\Windows\explorer.exe
1 C:\Windows\splwow64.exe
1 C:\Windows\system32\IPROSetMonitor.exe
1 C:\Windows\system32\SearchFilterHost.exe
1 C:\Windows\system32\SearchIndexer.exe
1 C:\Windows\system32\SearchProtocolHost.exe
1 C:\Windows\system32\atieclxx.exe
1 C:\Windows\system32\atiesrxx.exe
2 C:\Windows\system32\conhost.exe
2 C:\Windows\system32\csrss.exe
1 C:\Windows\system32\lsass.exe
1 C:\Windows\system32\lsm.exe
1 C:\Windows\system32\services.exe
1 C:\Windows\system32\smss.exe
1 C:\Windows\system32\spoolsv.exe
13 C:\Windows\system32\svchost.exe
1 C:\Windows\system32\wininit.exe
1 C:\Windows\system32\winlogon.exe
1 C:\Windows\system32\wlanext.exe
1 D:\- 02 - PROGRAMES-I\02_ANTIVIRUS\04_HijackThis\2019-10-29_Hijackthis.exe
1 EKPLogger.exe
1 GoogleCrashHandler.exe
1 GoogleCrashHandler64.exe
1 ITBMSvc.exe
1 KBReader.exe
1 KeyExpressService.exe
1 LMS.exe
1 MBAMService.exe
1 NASvc.exe
1 NVDisplay.Container.exe
1 PMSvc.exe
1 TuneUpUtilitiesService64.exe
1 aaHMSvc.exe
1 afwServ.exe
1 app_updater.exe
1 armsvc.exe
1 aspnet_state.exe
1 aswidsagent.exe
1 atkexComSvc.exe
1 avgsvca.exe
2 httpd.exe
1 mdm.exe
1 mysqld.exe
1 ss_conn_service.exe
1 wmpnetwk.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://www.google.cat/
R3 - HKU\S-1-5-21-3520378656-2983391177-1615256727-1000: Default URLSearchHook is missing
R3 - HKU\S-1-5-21-3520378656-2983391177-1615256727-1007: Default URLSearchHook is missing
R3 - HKU\S-1-5-21-3520378656-2983391177-1615256727-1012: Default URLSearchHook is missing
O1 - Hosts: is empty
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll
O4 - (disabled) HKLM\..\Run-: [iTunesHelper] = C:\Program Files\iTunes\iTunesHelper.exe
O4 - Global User Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk -> C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe
O4 - HKLM\..\Run: [AVGUI.exe] = C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe /gui
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
O4 - HKLM\..\Run: [AvgUi] = C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe /lps=fmw
O4 - HKLM\..\Run: [Greenshot] = C:\Program Files\Greenshot\Greenshot.exe
O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
O4 - HKLM\..\Run: [StartCN] = C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe atlogon
O4 - HKLM\..\RunOnce: [*WerKernelReporting] = C:\Windows\SYSTEM32\WerFault.exe -k -rq
O4 - HKLM\..\RunOnce: [MSKSSRV] = streamci streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196} (file missing)
O4 - HKLM\..\RunOnce: [MSPCLOCK] = streamci streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D0-A5D6-28DB04C10000},{53172480-4791-11D0-A5D6-28DB04C10000} (file missing)
O4 - HKLM\..\RunOnce: [MSPQM] = streamci streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196} (file missing)
O4 - HKLM\..\RunOnce: [MSTEE.CxTransform] = streamci streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install (file missing)
O4 - HKLM\..\RunOnce: [MSTEE.Splitter] = streamci streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install (file missing)
O4 - HKLM\..\RunOnce: [WDM_DRMKAUD] = streamci streamci,StreamingDeviceSetup {EEC12DB6-AD9C-4168-8658-B03DAEF417FE},{ABD61E00-9350-47e2-A632-4438B90C6641},{FFBB6E3F-CCFE-4D84-90D9-421418B03A8E},C:\Windows\inf\WDMAUDIO.inf,WDM_DRMKAUD.Interface.Install (file missing)
O4 - HKU\.DEFAULT\..\RunOnce: [SPReview] = C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
O4 - MSConfig\startupreg: ASUS AiChargerPlus Execute [command] = C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe (HKLM) (2017/05/10)
O4 - MSConfig\startupreg: GrooveMonitor [command] = C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe (HKLM) (2017/05/10)
O4 - MSConfig\startupreg: NBAgent [command] = C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe /WinStart (HKLM) (2017/05/10)
O4 - MSConfig\startupreg: Skype [command] = C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun (HKCU) (2017/05/10)
O4 - User Startup: C:\Users\A-Carles\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\dllcontroller.exe -> (PE EXE)
O7 - TroubleShooting: (EV) HKU\S-1-5-19\..\Environment: [TEMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-19\..\Environment: [TMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-20\..\Environment: [TEMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-20\..\Environment: [TMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-21-3520378656-2983391177-1615256727-1000\..\Environment: [TEMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-21-3520378656-2983391177-1615256727-1000\..\Environment: [TMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-21-3520378656-2983391177-1615256727-1007\..\Environment: [TEMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-21-3520378656-2983391177-1615256727-1007\..\Environment: [TMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-21-3520378656-2983391177-1615256727-1012\..\Environment: [TEMP] = (not exist)
O7 - TroubleShooting: (EV) HKU\S-1-5-21-3520378656-2983391177-1615256727-1012\..\Environment: [TMP] = (not exist)
O10 - Broken Internet access because of LSP chain gap (#1 in chain of 11 missing)
O10 - Broken Internet access because of LSP chain gap (#1 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#10 in chain of 11 missing)
O10 - Broken Internet access because of LSP chain gap (#11 in chain of 11 missing)
O10 - Broken Internet access because of LSP chain gap (#2 in chain of 11 missing)
O10 - Broken Internet access because of LSP chain gap (#2 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#3 in chain of 11 missing)
O10 - Broken Internet access because of LSP chain gap (#3 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#4 in chain of 11 missing)
O10 - Broken Internet access because of LSP chain gap (#4 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#5 in chain of 11 missing)
O10 - Broken Internet access because of LSP chain gap (#5 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#6 in chain of 11 missing)
O10 - Broken Internet access because of LSP chain gap (#6 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#7 in chain of 11 missing)
O10 - Broken Internet access because of LSP chain gap (#7 in chain of 7 missing)
O10 - Broken Internet access because of LSP chain gap (#8 in chain of 11 missing)
O10 - Broken Internet access because of LSP chain gap (#9 in chain of 11 missing)
O15 - HKU\S-1-5-21-3520378656-2983391177-1615256727-1000\..\ProtocolDefaults: - [@ivt] protocol is in Unknown Zone, should be Intranet Zone (User: 'PC-ADMIN')
O15 - HKU\S-1-5-21-3520378656-2983391177-1615256727-1000\..\ProtocolDefaults: - [file] protocol is in Unknown Zone, should be Internet Zone (User: 'PC-ADMIN')
O15 - HKU\S-1-5-21-3520378656-2983391177-1615256727-1000\..\ProtocolDefaults: - [ftp] protocol is in Unknown Zone, should be Internet Zone (User: 'PC-ADMIN')
O15 - HKU\S-1-5-21-3520378656-2983391177-1615256727-1000\..\ProtocolDefaults: - [http] protocol is in Unknown Zone, should be Internet Zone (User: 'PC-ADMIN')
O15 - HKU\S-1-5-21-3520378656-2983391177-1615256727-1000\..\ProtocolDefaults: - [https] protocol is in Unknown Zone, should be Internet Zone (User: 'PC-ADMIN')
O15 - HKU\S-1-5-21-3520378656-2983391177-1615256727-1000\..\ProtocolDefaults: - [shell] protocol is in Unknown Zone, should be My Computer Zone (User: 'PC-ADMIN')
O17 - DHCP DNS 1: 212.166.211.2
O17 - DHCP DNS 2: 212.166.132.104
O18 - HKLM\Software\Classes\Protocols\Handler\grooveLocalGWS: [CLSID] = {88FED34C-F0CA-4636-A375-3CB6248B04CD} - (no file)
O18 - HKLM\Software\Classes\Protocols\Handler\ms-help: [CLSID] = {314111C7-A502-11D2-BBCA-00C04F8EC294} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\00avg: (no name) - {472083B0-C522-11CF-8763-00608CC02F24} - (no file)
O23 - Service R2: AMD External Events Utility - C:\Windows\system32\atiesrxx.exe
O23 - Service R2: ASUS Com Service - (asComSvc) - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service R2: ASUS HM Com Service - (asHmComSvc) - C:\Program Files (x86)\ASUS\AAHM\1.00.23\aaHMSvc.exe
O23 - Service R2: ASUS System Control Service - (AsSysCtrlService) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
O23 - Service R2: AVG Antivirus - C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
O23 - Service R2: AVG Firewall Service - (AVG Firewall) - C:\Program Files (x86)\AVG\Antivirus\afwServ.exe
O23 - Service R2: AVG PC TuneUp Service - (TuneUp.UtilitiesSvc) - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service R2: AVG Service - (avgsvc) - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service R2: Adobe Acrobat Update Service - (AdobeARMservice) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service R2: Adobe Genuine Monitor Service - (AGMService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service R2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service R2: AsusFanControlService - C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.11\AsusFanControlService.exe
O23 - Service R2: Bluetooth Service - (btwdins) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service R2: Diagnostics Tracking Service - (DiagTrack) - C:\Windows\System32\svchost.exe -k utcsvc; "ServiceDll" = C:\Windows\system32\diagtrack.dll
O23 - Service R2: Digital Wave Update Service - (DigitalWave.Update.Service) - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service R2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service R2: Intel(R) PROSet Monitoring Service - C:\Windows\system32\IProsetMonitor.exe
O23 - Service R2: Intel(R) Turbo Boost Max 3.0 Technology Application Service - (ITBMService) - C:\Windows\SysWOW64\ITBMSvc.exe
O23 - Service R2: Key Express Service - C:\Program Files (x86)\InstallShield Installation Information\{8B69B7CC-E1E2-4680-8E3B-94ED1D16301E}\KeyExpressService.exe
O23 - Service R2: Machine Debug Manager - (MDM) - C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
O23 - Service R2: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service R2: NVIDIA Display Container LS - (NVDisplay.ContainerLocalSystem) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
O23 - Service R2: Nero Update - (NAUpdate) - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service R2: SAMSUNG Mobile Connectivity Service - (ss_conn_service) - C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service R2: User Profile Manager Service - (PMSvc) - C:\Program Files (x86)\ForensiT\User Profile Manager\PMSvc.exe
O23 - Service R2: apache24 - E:\00__WEB_Center\AppServ\Apache24\bin\httpd.exe -k runservice
O23 - Service R2: mysql57 - E:\00__WEB_Center\AppServ\MySQL\bin\mysqld.exe --defaults-file=E:\00__WE~1\AppServ\MySQL\my.ini mysql57
O23 - Service R3: BrYNSvc - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service R3: avgbIDSAgent - C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
O23 - Service S2: Servicio de Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.70\elevation_service.exe
O23 - Service S3: InstallDriver Table Manager - (IDriverT) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service S3: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS - (ICCS) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service S3: Microsoft Office Diagnostics Service - (odserv) - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
O23 - Service S3: Microsoft Office Groove Audit Service - C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: Servicio de Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Servicio del iPod - (iPod Service) - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service S3: SwitchBoard - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service S3: Thunderbolt(TM) Service - (ThunderboltService) - C:\Program Files (x86)\Intel\Thunderbolt Software\tbtsvc.exe
--
End of file - Time spent: 2 sec. - 35222 bytes, CRC32: FFFFFFFF. Sign: ꐳBuenas @KSFOTO y Bienvenido al Foro. 
Para revisar tu maquina, sigue estos pasos, en el orden indicado y leyendo todo lo explicado.
Desactiva temporalmente el Antivirus 
Cómo deshabilitar temporalmente su Antivirus, mientras estemos realizando TODOS los pasos.
Vamos a descargar en TU ESCRITORIO(y NO en otro lugar 
) todas las herramientas que vamos a utilizar en este procedimiento (pero no las ejecutes todavía) :
Malwarebytes’ Anti-Malware + Manual. 
revisa en detalle el manual, para que sepas usarlo y configurarlo correctamente.
Farbar Recovery Scan Tool. seleccionando la versión adecuada para la arquitectura(32 o 64bits) de tu equipo. 
Como saber si Mi Windows es de 32 o 64 Bits ?.
Ejecutas las herramientas de una en una y en el orden indicado :
CCleaner.-
Instalas y Ejecutas CCleaner siguiendo los pasos indicados en el manual.
Úsalo primero en su opción de Limpiador para borrar cookies, temporales de Internet y todos los archivos que te muestre como obsoletos.
Después usa su opción de Registro para limpiar todo el registro de Windows(haciendo copia de seguridad).
Malwarebytes.-
Instalas y Ejecutas MBAM siguiendo los pasos indicados en el manual.
Realiza un Análisis Completo.
Seleccionando TODOS a Cuarentena para enviarlo a la cuarentena y Reinicias el sistema.
En el apartado del manual Historial 
encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta, para analizarlo.
AdwCleaner.-
Ejecuta Adwcleaner.exe.
Pulsamos en el botón Analizar ahora, y espera a que se realice el proceso, inmediatamente pulsa siempre sobre el botón Iniciar Reparación.
Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
El log/informe lo encontramos en la pestaña “Informes”, volviendo a abrir el programa si fuese necesario, para poder copiarlo y pegarlo en tu próxima respuesta.
El informe también se puede encontrar en C:\AdwCleaner\Logs\AdwCleaner[C00].txt
Junkware Removal Tool.-
Ejecuta JRT.exe.
Y pulsar cualquier tecla para continuar, esperar pacientemente a que termine el proceso.
Si en algún momento te pide Reiniciar hazlo.
Al finalizar, un registro/informe (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.
Copia y pega el contenido de JRT.txt en tu próxima respuesta.
Farbar Recovery Scan Tool.-
Ejecuta FRST.exe.
En el mensaje de la ventana del Disclaimer, pulsamos Yes
En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.
Poner los informes en tu próxima respuesta de :
Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).
Y nos cuentas como funciona tu equipo en relación al problema planteado.
Saludos Javier.
Gracias Javier. He hecho todo lo que me has dicho. Me ha llevado algun tiempo porque también tenía otras responsabilidades.
Parece que el AdwCleaner ha encontrado un troyano. No se si era el esponsable de los errores. De momento, por ahora llevo unos minutos con el ordenador conectado a internet y parece que por ahora no se abren ni cierran ventanas. No quiero cantar victoria tan pronto.
Te paso los informes.
Informe Malwarebytes:
Malwarebytes
www.malwarebytes.com
-Detalles del registro-
Fecha del análisis: 29/10/19
Hora del análisis: 16:37
Archivo de registro: 0ba4191d-fa62-11e9-bc67-3859f8865e2d.json
-Información del software-
Versión: 3.8.3.2965
Versión de los componentes: 1.0.629
Versión del paquete de actualización: 1.0.13089
Licencia: Gratis
-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x64
Sistema de archivos: NTFS
Usuario: PC-A75\A-Carles
-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 414347
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 1 min, 8 seg
-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar
-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)
Módulo: 0
(No hay elementos maliciosos detectados)
Clave del registro: 0
(No hay elementos maliciosos detectados)
Valor del registro: 0
(No hay elementos maliciosos detectados)
Datos del registro: 0
(No hay elementos maliciosos detectados)
Secuencia de datos: 0
(No hay elementos maliciosos detectados)
Carpeta: 0
(No hay elementos maliciosos detectados)
Archivo: 0
(No hay elementos maliciosos detectados)
Sector físico: 0
(No hay elementos maliciosos detectados)
WMI: 0
(No hay elementos maliciosos detectados)
(end)Informes AdwCleaner
Informe 1.
# -------------------------------
# Malwarebytes AdwCleaner 7.4.2.0
# -------------------------------
# Build: 10-21-2019
# Database: 2019-10-21.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-29-2019
# Duration: 00:00:15
# OS: Windows 7 Professional
# Scanned: 35182
# Detected: 6
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
Trojan.Agent C:\WebUpdater
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.SlimCleanerPlus HKLM\Software\Wow6432Node\SlimWare Utilities Inc
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Preinstalled Software ] *****
Preinstalled.ASUSAISuite Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{2AEAE3EB-AF83-4A1E-A749-2C263F62955B}
Preinstalled.ASUSProductRegistration Folder C:\Program Files (x86)\ASUS\APRP
Preinstalled.ASUSProductRegistration Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}
Preinstalled.HPCleanFLC File C:\Users\A-Carles\Desktop\Microsoft Office.lnk
AdwCleaner_Debug.log - [4133 octets] - [29/10/2019 16:48:18]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########Informe 2:
# -------------------------------
# Malwarebytes AdwCleaner 7.4.2.0
# -------------------------------
# Build: 10-21-2019
# Database: 2019-10-21.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-29-2019
# Duration: 00:00:00
# OS: Windows 7 Professional
# Cleaned: 2
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\WebUpdater
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKLM\Software\Wow6432Node\SlimWare Utilities Inc
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner_Debug.log - [17400 octets] - [29/10/2019 16:48:18]
AdwCleaner[S00].txt - [1899 octets] - [29/10/2019 16:48:48]
AdwCleaner[S01].txt - [1960 octets] - [29/10/2019 16:55:48]
AdwCleaner[S02].txt - [2022 octets] - [29/10/2019 17:18:01]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########Informe Junkware Removal Tool.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Professional x64
Ran by PC-ADMIN (Administrator) on 29/10/2019 at 17:34:18,30
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 25
Successfully deleted: C:\ProgramData\mntemp (File)
Successfully deleted: C:\Users\PC-ADMIN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Users\PC-ADMIN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1VYB1R6J (Temporary Internet Files Folder)
Successfully deleted: C:\Users\PC-ADMIN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\PC-ADMIN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ADFRVM6E (Temporary Internet Files Folder)
Successfully deleted: C:\Users\PC-ADMIN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EKO1X0AG (Temporary Internet Files Folder)
Successfully deleted: C:\Users\PC-ADMIN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\PC-ADMIN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GJN6AMEL (Temporary Internet Files Folder)
Successfully deleted: C:\Users\PC-ADMIN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GVZJCSSK (Temporary Internet Files Folder)
Successfully deleted: C:\Users\PC-ADMIN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LG59M3L0 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\PC-ADMIN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\PC-ADMIN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ME4KAC60 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\PC-ADMIN\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\O3WJRKJH (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1VYB1R6J (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ADFRVM6E (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EKO1X0AG (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GJN6AMEL (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GVZJCSSK (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LG59M3L0 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ME4KAC60 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\O3WJRKJH (Temporary Internet Files Folder)
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 29/10/2019 at 17:36:10,51
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Informes Farbar Recovery Scan Tool:
Frst.txt - Part 1 - (Linea 0 a 499)
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-10-2019
Ran by A-Carles (ATTENTION: The user is not administrator) on PC-A75 (ASUS All Series) (29-10-2019 17:46:28)
Running from D:\- 02 - PROGRAMES-I\02_ANTIVIRUS\00_Informes_Antivirus-log\PROGRAMES AVUI\05_Farbar Recovery Scan Tool
Loaded Profiles: PC-ADMIN & ARES & A-Carles_1Monitor & A-Carles (Available Profiles: PC-ADMIN & ARES & A-Carles_1Monitor & A-Carles)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat.exe
(AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
Failed to access process -> aaHMSvc.exe
Failed to access process -> afwServ.exe
Failed to access process -> AGMService.exe
Failed to access process -> AGSService.exe
Failed to access process -> app_updater.exe
Failed to access process -> armsvc.exe
Failed to access process -> aspnet_state.exe
Failed to access process -> AsSysCtrlService.exe
Failed to access process -> AsusFanControlService.exe
Failed to access process -> atiesrxx.exe
Failed to access process -> atkexComSvc.exe
Failed to access process -> AVGSvc.exe
Failed to access process -> avgsvca.exe
Failed to access process -> BrYNSvc.exe
Failed to access process -> btwdins.exe
Failed to access process -> conhost.exe
Failed to access process -> conhost.exe
Failed to access process -> csrss.exe
Failed to access process -> csrss.exe
Failed to access process -> EKPLogger.exe
Failed to access process -> GoogleCrashHandler.exe
Failed to access process -> GoogleCrashHandler64.exe
Failed to access process -> httpd.exe
Failed to access process -> httpd.exe
Failed to access process -> IPROSetMonitor.exe
Failed to access process -> ITBMSvc.exe
Failed to access process -> jhi_service.exe
Failed to access process -> KBReader.exe
Failed to access process -> KeyExpressService.exe
Failed to access process -> LMS.exe
Failed to access process -> lsass.exe
Failed to access process -> lsm.exe
Failed to access process -> MBAMService.exe
Failed to access process -> mdm.exe
Failed to access process -> mysqld.exe
Failed to access process -> NASvc.exe
Failed to access process -> NVDisplay.Container.exe
Failed to access process -> PMSvc.exe
Failed to access process -> SearchFilterHost.exe
Failed to access process -> SearchIndexer.exe
Failed to access process -> SearchProtocolHost.exe
Failed to access process -> services.exe
Failed to access process -> smss.exe
Failed to access process -> spoolsv.exe
Failed to access process -> ss_conn_service.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> TuneUpUtilitiesService64.exe
Failed to access process -> unsecapp.exe
Failed to access process -> wininit.exe
Failed to access process -> winlogon.exe
Failed to access process -> wlanext.exe
Failed to access process -> WmiPrvSE.exe
Failed to access process -> WmiPrvSE.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [528384 2015-11-10] (Greenshot) [File not signed]
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [309680 2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8844032 2016-01-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8029576 2016-11-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-09-25] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2892800 2017-03-30] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [571392 2011-10-30] (Nikon Corporation) [File not signed]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [EKPUSBEventWatcher] => C:\Program Files (x86)\FUJIFILM\DX100\x86\EKPUSBEventWatcher.exe [3889752 2015-11-25] (FUJIFILM Corporation -> Seiko Epson Corporation)
HKLM-x32\...\Run: [EKPProcWatcher] => C:\Program Files (x86)\FUJIFILM\DX100\x86\EKPProcWatcher.exe [3567704 2015-11-25] (FUJIFILM Corporation -> Seiko Epson Corporation)
HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3581440 2017-04-26] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [RUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2011-09-20] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM\...\RunOnce: [MSPCLOCK] => rundll32.exe streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D0-A5D6-28DB04C10000},{53172480-4791-11D0-A5D6-28DB04C10000}
HKLM\...\RunOnce: [MSPQM] => rundll32.exe streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196}
HKLM\...\RunOnce: [MSKSSRV] => rundll32.exe streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196}
HKLM\...\RunOnce: [MSTEE.CxTransform] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},C:\Windows\inf\ksfilter.inf,MSTEE.Interf (the data entry has 11 more characters).
HKLM\...\RunOnce: [MSTEE.Splitter] => rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},C:\Windows\inf\ksfilter.inf,MSTEE.Interf (the data entry has 11 more characters).
HKLM\...\RunOnce: [WDM_DRMKAUD] => C:\Windows\inf\WDMAUDIO.inf [9180 2017-05-03] (Microsoft Windows -> )
HKLM\...\RunOnce: [*WerKernelReporting] => C:\Windows\SYSTEM32\WerFault.exe [416256 2019-09-10] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Policies\Explorer: [DontSetAutoplayCheckbox] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\MountPoints2: {61758add-56bf-11e8-814a-704d7bb3261e} - L:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\MountPoints2: {ba9ae526-118b-11e9-aa0f-704d7bb3261e} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.70\Installer\chrmstp.exe [2019-10-24] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2015-05-18] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{D28973E5-8630-41af-8831-50A15FEB396B}] -> C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll [2015-05-18] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{FA71484C-B17A-4eca-BBC7-4905606C89E9}] -> C:\Program Files (x86)\ForensiT\User Profile Manager\ProfileManagerCredentialProvider64.dll [2013-01-21] () [File not signed]
HKLM\Software\...\Authentication\Credential Provider Filters: [{F1DEEA6F-CD36-42CC-A2B7-D6208C7ED68B}] -> C:\Program Files (x86)\ForensiT\User Profile Manager\UserProfileManagerCredentialFilter64.dll [2015-11-04] (ForensiT Limited) [File not signed]
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\Users\A-Carles\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\dllcontroller.exe [2019-01-20] () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2017-04-30]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 212.166.211.2 212.166.132.104
Tcpip\..\Interfaces\{1F644A82-F8A2-432F-A079-FFC6C05D25F3}: [DhcpNameServer] 62.81.29.254 62.81.16.213
Tcpip\..\Interfaces\{C60BBFB5-0A2A-4B22-A94E-AC5756808408}: [DhcpNameServer] 212.166.211.2 212.166.132.104
Internet Explorer:
==================
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.cat/
URLSearchHook: [S-1-5-21-3520378656-2983391177-1615256727-1000] ATTENTION => Default URLSearchHook is missing
URLSearchHook: [S-1-5-21-3520378656-2983391177-1615256727-1007] ATTENTION => Default URLSearchHook is missing
URLSearchHook: [S-1-5-21-3520378656-2983391177-1615256727-1012] ATTENTION => Default URLSearchHook is missing
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll [2018-07-23] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-23] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: ContributeBHO Class -> {074C1DC5-9320-4A9A-947D-C042949C6216} -> C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27] (Adobe Systems Incorporated -> Adobe Systems, Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27] (Adobe Systems Incorporated -> Adobe Systems, Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
FireFox:
========
FF DefaultProfile: 2018-06-26_Perfil-Firefox_65_Carles-OK
FF ProfilePath: D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2017-08-13_ARES [2019-09-19]
FF DownloadDir: D:\00__DOCS_IMPORTANTS\- C - CASA - V i v e n d a\A - 1 - Cardenal Cisneros 54 (Mariola)\2015_LLOGUER_Airbnb\ICONES
FF Homepage: D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2017-08-13_ARES -> hxxp://www.google.cat
FF Extension: (YouTube Video and Audio Downloader) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2017-08-13_ARES\Extensions\[email protected] [2017-02-19] [Legacy]
FF Extension: (Video DownloadHelper) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2017-08-13_ARES\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2016-08-20] [Legacy]
FF Extension: (StrataStripe) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2017-08-13_ARES\Extensions\{cbbbbcd0-3cf7-11dd-ae16-0800200c9a66}.xpi [2013-01-11] [Legacy] [not signed]
FF Extension: (Adblock Plus) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2017-08-13_ARES\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-08-20] [Legacy]
FF Extension: (Screenshoter) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2017-08-13_ARES\Extensions\{d9babd10-47de-11df-9879-0800200c9a66}.xpi [2016-04-27] [Legacy]
FF ProfilePath: D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2019-05-04_Perfil_Firefox-37_Carles_OK [2019-09-19]
FF Homepage: D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2019-05-04_Perfil_Firefox-37_Carles_OK -> hxxp://www.google.cat
FF ProfilePath: D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2019-05-04_Perfil_Firefox-37_Carles_Marcadors [2019-09-19]
FF Homepage: D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2019-05-04_Perfil_Firefox-37_Carles_Marcadors -> hxxp://www.google.cat
FF Extension: (YouTube Video and Audio Downloader) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2019-05-04_Perfil_Firefox-37_Carles_Marcadors\Extensions\[email protected] [2019-05-09] [Legacy]
FF Extension: (Video DownloadHelper) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2019-05-04_Perfil_Firefox-37_Carles_Marcadors\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-05-09] [Legacy]
FF ProfilePath: D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2015-04-03_Perfil-Firefox-37__TV3 [2019-09-19]
FF Homepage: D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2015-04-03_Perfil-Firefox-37__TV3 -> hxxp://www.google.cat
FF Extension: (YouTube Video and Audio Downloader) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2015-04-03_Perfil-Firefox-37__TV3\Extensions\[email protected] [2019-05-09] [Legacy]
FF Extension: (Video DownloadHelper) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2015-04-03_Perfil-Firefox-37__TV3\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-05-09] [Legacy]
FF ProfilePath: D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles_Marcadors [2019-09-19]
FF Homepage: D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles_Marcadors -> hxxp://www.google.cat
FF Extension: (No Name) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles_Marcadors\Extensions\instalats [2019-05-13] [not signed]
FF Extension: (Video DownloadHelper) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles_Marcadors\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-05-09]
FF Extension: (Theme Font & Size Changer) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles_Marcadors\Extensions\{f69e22c7-bc50-414a-9269-0f5c344cd94c}.xpi [2019-01-24]
FF Extension: (No Name) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_Carles-OK\extensions\{f69e22c7-bc50-414a-9269-0f5c344cd94c}.xpi [not found]
FF Extension: (No Name) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_Carles-OK\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [not found]
FF ProfilePath: D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles-OK [2019-10-29]
FF Homepage: D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles-OK -> hxxp://www.google.cat
FF Extension: (No Name) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles-OK\Extensions\instalats [2019-01-23] [not signed]
FF Extension: (Ver Imagen) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles-OK\Extensions\{287dcf75-bec6-4eec-b4f6-71948a2eea29}.xpi [2019-10-16]
FF Extension: (Video DownloadHelper) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles-OK\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-05-09]
FF Extension: (Theme Font & Size Changer) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles-OK\Extensions\{f69e22c7-bc50-414a-9269-0f5c344cd94c}.xpi [2019-01-24]
FF HKLM-x32\...\Firefox\Extensions: [{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}] - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF Extension: (Adobe Contribute Toolbar) - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2017-05-04] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2017-05-29] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-16] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-16] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-3520378656-2983391177-1615256727-1022: @zoom.us/ZoomVideoPlugin -> C:\Users\A-Carles\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2019-07-11] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2017-01-03]
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxps://web.whatsapp.com/","hxxps://web.telegram.org/","hxxp://agricultura.gencat.cat/ca/serveis/ofertes-treball/","hxxps://www.hofmann-pro.com/","hxxp://www.concordspain.com/","hxxps://www.conos-paradise.com/en/shop/country.html?iso=es&m=lithops","hxxps://tramits.paeria.cat/Ciutadania/DetallTramit.aspx?Cercador=True&IdTramit=1597"
CHR Profile: C:\Users\A-Carles\AppData\Local\Google\Chrome\User Data\Default [2019-10-29]
CHR DownloadDir: D:\POLITICA\CAT - C a t a l u n y a\WhhatsApp\0000_Grup_SomRepublica-Zona9-CDM
CHR Extension: (mobile browser emulator) - C:\Users\A-Carles\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbofcampnkjmiomohpbaihdcbjhbfepf [2019-10-27]
CHR Extension: (AVG SafePrice | Comparaciones, ofertas y cupones) - C:\Users\A-Carles\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2019-09-05]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\A-Carles\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Chrome Media Router) - C:\Users\A-Carles\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-24]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx
Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-3520378656-2983391177-1615256727-1022) OperaStable - "C:\Users\PC-ADMIN\AppData\Local\Programs\Opera\Launcher.exe"
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [289160 2016-11-08] (Advanced Micro Devices, Inc. -> AMD)
R2 apache24; E:\00__WEB_Center\AppServ\Apache24\bin\httpd.exe [21504 2016-12-17] (Apache Software Foundation) [File not signed]
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2015-05-08] (ASUSTeK Computer Inc. -> )
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.23\aaHMSvc.exe [963536 2016-04-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] (ASUSTeK Computer Inc. -> ) [File not signed]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.11\AsusFanControlService.exe [418264 2016-04-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [409280 2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files (x86)\AVG\Antivirus\afwServ.exe [416568 2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [6893160 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428264 2018-06-14] (AVG Netherlands B.V. -> AVG Technologies CZ, s.r.o.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [298496 2017-03-22] (Brother Industries, Ltd.) [File not signed]
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [441664 2019-08-23] (Digital Wave Ltd -> Digital Wave Ltd)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 ITBMService; C:\Windows\SysWOW64\ITBMSvc.exe [48680 2017-06-16] (Intel Corporation -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-10-16] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 Key Express Service; C:\Program Files (x86)\InstallShield Installation Information\{8B69B7CC-E1E2-4680-8E3B-94ED1D16301E}\KeyExpressService.exe [99128 2015-05-08] (ASUSTeK Computer Inc. -> )
R2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 lmhosts; C:\Windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 mysql57; E:\00__WEB_Center\AppServ\MySQL\my.ini [13765 2017-05-14] () [File not signed]
R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 NlaSvc; C:\Windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 nsi; C:\Windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 PMSvc; C:\Program Files (x86)\ForensiT\User Profile Manager\PMSvc.exe [230400 2016-02-26] (ForensiT) [File not signed]
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-05-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
S3 ThunderboltService; C:\Program Files (x86)\Intel\Thunderbolt Software\tbtsvc.exe [1831064 2015-11-04] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [6598496 2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [45920 2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [38752 2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [26558976 2016-11-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [520072 2016-11-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AndroidAFD; C:\Windows\SysWow64\drivers\AndroidAFDx64.sys [22552 2015-10-19] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] (ASUSTeK Computer Inc. -> )
R3 ASMTFilter; C:\Windows\SysWow64\drivers\asmtufdriver.sys [24792 2014-06-13] (ASMedia Technology Inc. -> hxxp://www.asmedia.com.tw)
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2015-12-24] (ASUSTeK Computer Inc. -> )
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation -> MCCI Corporation)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96256 2016-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [207496 2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [263056 2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [206408 2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [61520 2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [42336 2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [167920 2019-07-31] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 avgNetNd6; C:\Windows\System32\DRIVERS\avgNetNd6.sys [29944 2017-05-03] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R1 avgNetSec; C:\Windows\System32\drivers\avgNetSec.sys [549248 2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [112360 2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [87992 2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [1030832 2019-07-31] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [477632 2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S2 avgStm; C:\Windows\System32\drivers\avgStm.sys [225656 2019-06-17] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [385904 2019-05-30] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-22] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [502256 2015-08-12] (Intel(R) Intel Network Drivers -> Intel Corporation)
R3 e1rexpress; C:\Windows\System32\DRIVERS\e1r62x64.sys [499184 2015-06-04] (Intel(R) Intel Network Drivers -> Intel Corporation)
R3 IntelTurboBoostMax; C:\Windows\System32\DRIVERS\IntelNit.sys [134008 2017-06-16] (Intel Corporation -> Intel Corporation)
R3 KBFilter; C:\Windows\SysWow64\drivers\KBFilter.sys [29496 2015-06-04] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-10-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [180480 2015-10-08] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 rtsuvc; C:\Windows\System32\DRIVERS\rtsuvc.sys [8228240 2012-09-19] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [114568 2012-08-27] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
R3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [230280 2012-08-27] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
R0 secnvme; C:\Windows\System32\DRIVERS\secnvme.sys [91896 2017-03-20] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
R0 secnvmeF; C:\Windows\System32\DRIVERS\secnvmeF.sys [30664 2017-03-20] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-22] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [166288 2017-05-22] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-02-21] (AVG Technologies CZ, s.r.o. -> AVG Netherlands B.V.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-10-29 17:46 - 2019-10-29 17:46 - 000000000 ____D C:\FRST
2019-10-29 17:36 - 2019-10-29 17:36 - 000004583 _____ C:\Users\PC-ADMIN\Desktop\JRT.txt
2019-10-29 17:20 - 2019-10-29 17:20 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-10-29 16:48 - 2019-10-29 17:18 - 000000000 ____D C:\AdwCleaner
2019-10-29 16:42 - 2019-10-29 16:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-10-29 16:42 - 2019-09-30 06:25 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-10-29 11:01 - 2019-10-29 11:01 - 000001334 _____ C:\Users\A-Carles\Desktop\PROG.lnk
2019-10-25 03:16 - 2019-10-25 03:17 - 000000000 ____D C:\Users\A-Carles\AppData\Roaming\NCH Software
2019-10-25 03:16 - 2019-10-25 03:16 - 000002195 _____ C:\Users\A-Carles\Desktop\Suite de NCH.lnk
2019-10-25 03:16 - 2019-10-25 03:16 - 000001197 _____ C:\Users\A-Carles\Desktop\Prism, convertidor de archivos de vídeo.lnk
2019-10-25 03:16 - 2019-10-25 03:16 - 000001183 _____ C:\Users\A-Carles\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prism, convertidor de archivos de vídeo.lnk
2019-10-25 03:16 - 2019-10-25 03:16 - 000000000 ____D C:\Users\A-Carles\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Suite de NCH
2019-10-25 03:16 - 2019-10-25 03:16 - 000000000 ____D C:\Users\A-Carles\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programas para vídeo
2019-10-25 03:16 - 2019-10-25 03:16 - 000000000 ____D C:\ProgramData\NCH Software
2019-10-25 02:16 - 2019-10-25 02:16 - 000000000 ____D C:\Users\A-Carles\AppData\Roaming\HandBrake
2019-10-25 02:13 - 2019-10-25 02:16 - 000000000 ____D C:\Users\A-Carles\AppData\Local\Movavi
2019-10-25 02:13 - 2019-10-25 02:16 - 000000000 ____D C:\Users\A-Carles\AppData\Local\FreemakeVideoConverter
2019-10-25 02:13 - 2019-10-25 02:16 - 000000000 ____D C:\Users\A-Carles\AppData\Local\CrashRpt
2019-10-25 02:12 - 2019-10-25 02:16 - 000000000 ____D C:\Users\A-Carles\AppData\Local\ConverterAgent
2019-10-25 02:12 - 2019-10-25 02:16 - 000000000 ____D C:\Users\A-Carles\AppData\Local\converter
2019-10-18 14:31 - 2019-10-18 14:45 - 000000852 _____ C:\Users\A-Carles\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2019-10-18 14:31 - 2019-10-18 14:45 - 000000804 _____ C:\Users\A-Carles\Desktop\Start Tor Browser.lnk
2019-10-18 14:08 - 2019-10-18 14:08 - 000000000 ____D C:\Users\A-Carles\Desktop\Tor Browser
2019-10-18 07:34 - 2019-10-11 03:22 - 000338944 _____ (Microsoft Corporation) C:\Windows\system32\sipnotify.exe
2019-10-17 23:18 - 2019-10-28 01:35 - 000001361 _____ C:\Users\Public\Desktop\Free MP4 Video Converter.lnk
2019-10-17 23:18 - 2019-10-17 23:18 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack
2019-10-17 23:16 - 2019-10-28 01:38 - 000000000 ____D C:\Users\A-Carles\AppData\Roaming\DVDVideoSoft
2019-10-17 23:16 - 2019-10-28 01:35 - 000001349 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2019-10-17 23:16 - 2019-10-28 01:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2019-10-17 23:16 - 2019-10-17 23:16 - 000001526 _____ C:\Users\Public\Desktop\Free Video to DVD Converter.lnk
2019-10-17 23:16 - 2019-10-17 23:16 - 000001325 _____ C:\Users\Public\Desktop\Free DVD Video Burner.lnk
2019-10-17 23:16 - 2019-10-17 23:16 - 000000000 ____D C:\ProgramData\DigitalWave.ApplicationUpdater_files
2019-10-17 23:14 - 2019-10-28 01:35 - 000000000 ____D C:\Program Files (x86)\DVDVideoSoft
2019-10-17 23:11 - 2019-10-17 23:18 - 000000000 ____D C:\Users\PC-ADMIN\AppData\Roaming\DVDVideoSoft
2019-10-16 16:58 - 2019-10-16 17:05 - 158271579 _____ C:\Users\A-Carles\Downloads\Beautiful Fucking - Sexy Little Fuckbit - Free Porn Videos -.mp4
2019-10-16 13:59 - 2019-10-16 13:59 - 000001080 _____ C:\Users\A-Carles\Downloads\WhhatsApp.lnk
2019-10-16 11:16 - 2019-10-16 11:17 - 000001607 _____ C:\Users\A-Carles\Desktop\OPOS (2).lnk
2019-10-10 15:09 - 2019-10-10 15:09 - 000001150 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VCF Manager By Devlomi.lnk
2019-10-10 15:09 - 2019-10-10 15:09 - 000001138 _____ C:\Users\Public\Desktop\VCF Manager By Devlomi.lnk
2019-10-10 15:09 - 2019-10-10 15:09 - 000000000 ____D C:\Program Files (x86)\VCF Manager By Devlomi
2019-10-09 04:08 - 2019-10-07 07:49 - 000390752 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-10-09 04:08 - 2019-10-07 06:57 - 000341896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-10-09 04:08 - 2019-10-06 05:12 - 025753088 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-10-09 04:08 - 2019-10-06 05:00 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-10-09 04:08 - 2019-10-06 05:00 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-10-09 04:08 - 2019-10-06 04:49 - 002909184 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-10-09 04:08 - 2019-10-06 04:48 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-10-09 04:08 - 2019-10-06 04:47 - 000579584 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-10-09 04:08 - 2019-10-06 04:47 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-10-09 04:08 - 2019-10-06 04:47 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-10-09 04:08 - 2019-10-06 04:46 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-10-09 04:08 - 2019-10-06 04:41 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-10-09 04:08 - 2019-10-06 04:40 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-10-09 04:08 - 2019-10-06 04:38 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-10-09 04:08 - 2019-10-06 04:37 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-10-09 04:08 - 2019-10-06 04:37 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-10-09 04:08 - 2019-10-06 04:36 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-10-09 04:08 - 2019-10-06 04:36 - 000797696 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-10-09 04:08 - 2019-10-06 04:34 - 005500928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-10-09 04:08 - 2019-10-06 04:32 - 020290048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-10-09 04:08 - 2019-10-06 04:31 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-10-09 04:08 - 2019-10-06 04:28 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-10-09 04:08 - 2019-10-06 04:28 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-10-09 04:08 - 2019-10-06 04:23 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-10-09 04:08 - 2019-10-06 04:22 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-10-09 04:08 - 2019-10-06 04:22 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-10-09 04:08 - 2019-10-06 04:19 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-10-09 04:08 - 2019-10-06 04:19 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-10-09 04:08 - 2019-10-06 04:18 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-10-09 04:08 - 2019-10-06 04:18 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-10-09 04:08 - 2019-10-06 04:17 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-10-09 04:08 - 2019-10-06 04:17 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-10-09 04:08 - 2019-10-06 04:17 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-10-09 04:08 - 2019-10-06 04:16 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-10-09 04:08 - 2019-10-06 04:16 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-10-09 04:08 - 2019-10-06 04:15 - 002302464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-10-09 04:08 - 2019-10-06 04:12 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-10-09 04:08 - 2019-10-06 04:12 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-10-09 04:08 - 2019-10-06 04:11 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-10-09 04:08 - 2019-10-06 04:10 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-10-09 04:08 - 2019-10-06 04:10 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-10-09 04:08 - 2019-10-06 04:10 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-10-09 04:08 - 2019-10-06 04:07 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-10-09 04:08 - 2019-10-06 04:05 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-10-09 04:08 - 2019-10-06 04:05 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-10-09 04:08 - 2019-10-06 04:03 - 002132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-10-09 04:08 - 2019-10-06 04:03 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-10-09 04:08 - 2019-10-06 04:03 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-10-09 04:08 - 2019-10-06 04:00 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-10-09 04:08 - 2019-10-06 04:00 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-10-09 04:08 - 2019-10-06 03:59 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-10-09 04:08 - 2019-10-06 03:58 - 015413760 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-10-09 04:08 - 2019-10-06 03:57 - 004859904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-10-09 04:08 - 2019-10-06 03:57 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-10-09 04:08 - 2019-10-06 03:56 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-10-09 04:08 - 2019-10-06 03:56 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-10-09 04:08 - 2019-10-06 03:55 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-10-09 04:08 - 2019-10-06 03:53 - 004112384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-10-09 04:08 - 2019-10-06 03:50 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-10-09 04:08 - 2019-10-06 03:49 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-10-09 04:08 - 2019-10-06 03:48 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-10-09 04:08 - 2019-10-06 03:48 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-10-09 04:08 - 2019-10-06 03:45 - 013808640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-10-09 04:08 - 2019-10-06 03:45 - 001566208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-10-09 04:08 - 2019-10-06 03:35 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-10-09 04:08 - 2019-10-06 03:34 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-10-09 04:08 - 2019-10-06 03:32 - 001331712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-10-09 04:08 - 2019-10-06 03:30 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-10-09 04:08 - 2019-09-19 05:27 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2019-10-09 04:08 - 2019-09-17 03:32 - 004060896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-10-09 04:08 - 2019-09-17 03:32 - 003966688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-10-09 04:08 - 2019-09-17 03:32 - 000709856 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-10-09 04:08 - 2019-09-17 03:32 - 000627424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-10-09 04:08 - 2019-09-17 03:31 - 005552864 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-10-09 04:08 - 2019-09-17 03:31 - 001319496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-10-09 04:08 - 2019-09-17 03:31 - 000263904 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-10-09 04:08 - 2019-09-17 03:31 - 000155360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-10-09 04:08 - 2019-09-17 03:31 - 000096992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-10-09 04:08 - 2019-09-17 03:30 - 001670784 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000834048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
Frst.txt - Part 2 - (Linea 500 a 999)
2019-10-09 04:08 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 03:04 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-10-09 04:08 - 2019-09-17 03:03 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-10-09 04:08 - 2019-09-17 03:00 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-10-09 04:08 - 2019-09-17 03:00 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-10-09 04:08 - 2019-09-17 03:00 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-10-09 04:08 - 2019-09-17 02:59 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-10-09 04:08 - 2019-09-17 02:59 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-10-09 04:08 - 2019-09-17 02:59 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-10-09 04:08 - 2019-09-17 02:59 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-10-09 04:08 - 2019-09-17 02:59 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-10-09 04:08 - 2019-09-17 02:57 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-10-09 04:08 - 2019-09-17 02:57 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 02:57 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 02:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 02:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-10-09 04:08 - 2019-09-17 02:56 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-10-09 04:08 - 2019-09-17 02:56 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-10-09 04:08 - 2019-09-17 02:55 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-10-09 04:08 - 2019-09-17 02:53 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-10-09 04:08 - 2019-09-17 02:53 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-10-09 04:08 - 2019-09-17 02:52 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-10-09 04:08 - 2019-09-17 02:52 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-10-09 04:08 - 2019-09-17 02:52 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-10-09 04:08 - 2019-09-17 02:52 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-10-09 04:08 - 2019-09-17 02:51 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-10-09 04:08 - 2019-09-17 02:51 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-10-09 04:08 - 2019-09-17 02:51 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-10-09 04:08 - 2019-09-17 02:51 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-10-09 04:08 - 2019-09-17 02:51 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-10-09 04:08 - 2019-09-17 02:51 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-10-09 04:08 - 2019-09-17 02:51 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-10-09 04:08 - 2019-09-17 01:13 - 000455392 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2019-10-09 04:08 - 2019-09-11 05:56 - 000353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-10-09 04:08 - 2019-09-11 05:56 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2019-10-09 04:08 - 2019-09-10 03:27 - 000383488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-10-09 04:08 - 2019-09-10 03:27 - 000320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2019-10-09 04:08 - 2019-09-10 03:27 - 000160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2019-10-09 04:08 - 2019-09-10 03:24 - 001281536 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2019-10-09 04:08 - 2019-09-10 03:24 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-10-09 04:08 - 2019-09-10 03:24 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2019-10-09 04:08 - 2019-09-10 03:24 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2019-10-09 04:08 - 2019-09-10 03:24 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2019-10-09 04:08 - 2019-09-10 03:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2019-10-09 04:08 - 2019-09-10 03:02 - 006135296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-10-09 04:08 - 2019-09-10 03:00 - 000361472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2019-10-09 04:08 - 2019-09-10 03:00 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2019-10-09 04:08 - 2019-09-10 03:00 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2019-10-09 04:08 - 2019-09-10 03:00 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2019-10-09 04:08 - 2019-09-10 03:00 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2019-10-09 04:08 - 2019-09-10 02:54 - 003231744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-10-09 04:08 - 2019-09-10 02:53 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2019-10-09 04:08 - 2019-09-10 02:53 - 000152576 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2019-10-09 04:08 - 2019-09-10 02:53 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2019-10-09 04:08 - 2019-09-10 02:53 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2019-10-09 04:08 - 2019-09-10 02:52 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2019-10-09 04:08 - 2019-09-10 02:49 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2019-10-09 04:08 - 2019-09-10 01:09 - 007082496 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-10-09 04:08 - 2019-09-10 01:09 - 003187712 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-10-03 23:55 - 2019-09-12 04:53 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2019-10-03 23:55 - 2019-09-12 04:52 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-10-03 23:55 - 2019-09-12 04:52 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-10-03 23:55 - 2019-09-12 04:44 - 000680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-10-03 23:55 - 2019-09-12 04:44 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2019-10-03 23:55 - 2019-09-12 04:44 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-10-03 23:55 - 2019-09-12 04:44 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-10-03 23:55 - 2019-09-12 04:44 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2019-10-03 23:55 - 2019-09-12 04:24 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-10-03 13:50 - 2019-10-29 15:17 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2019-10-02 07:19 - 2019-08-29 03:52 - 000836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-10-02 07:19 - 2019-08-29 03:50 - 001078784 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-10-02 07:19 - 2019-08-21 02:59 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-10-02 07:19 - 2019-08-21 02:56 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-10-02 07:19 - 2019-08-20 05:21 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-10-02 07:19 - 2019-08-16 02:02 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2019-10-02 07:19 - 2019-08-16 01:56 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2019-10-02 07:19 - 2019-08-13 23:16 - 000484864 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2019-10-02 07:19 - 2019-08-13 23:13 - 000363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2019-10-02 07:19 - 2019-08-13 03:58 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-10-02 07:19 - 2019-08-13 03:58 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2019-10-02 07:19 - 2019-08-13 03:58 - 000376320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2019-10-02 07:19 - 2019-08-13 03:58 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-10-02 07:19 - 2019-07-30 02:56 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2019-10-02 07:19 - 2019-07-30 02:56 - 000080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2019-10-02 07:19 - 2019-07-30 02:56 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2019-10-02 07:19 - 2019-07-13 09:36 - 000289720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-10-02 07:19 - 2019-07-13 09:34 - 001391616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-10-02 07:19 - 2019-07-13 09:34 - 000180736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2019-10-02 07:19 - 2019-07-13 09:34 - 000039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ssdpapi.dll
2019-10-02 07:19 - 2019-07-13 09:34 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2019-10-02 07:19 - 2019-07-13 09:33 - 000256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2019-10-02 07:19 - 2019-07-13 09:33 - 000194560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2019-10-02 07:19 - 2019-07-13 09:33 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2019-10-02 07:19 - 2019-07-13 09:33 - 000043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2019-10-02 07:19 - 2019-07-13 09:32 - 002009600 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-10-02 07:19 - 2019-07-13 09:32 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2019-10-02 07:19 - 2019-07-13 09:32 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2019-10-02 07:19 - 2019-07-13 09:31 - 000318976 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2019-10-02 07:19 - 2019-07-13 09:31 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2019-10-02 07:19 - 2019-07-13 09:31 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2019-10-02 07:19 - 2019-07-13 09:31 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2019-10-02 07:19 - 2019-07-13 09:22 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-10-02 07:19 - 2019-07-04 02:56 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-10-02 07:19 - 2019-07-04 02:14 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-10-02 07:19 - 2019-06-28 06:24 - 000448512 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2019-10-02 07:19 - 2019-06-28 06:24 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2019-10-02 07:19 - 2019-06-12 16:21 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2019-10-02 07:19 - 2019-06-12 16:21 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2019-10-02 07:19 - 2019-06-12 16:21 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2019-10-02 07:19 - 2019-06-12 16:21 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2019-10-02 07:19 - 2019-06-12 16:20 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2019-10-02 07:19 - 2019-06-12 16:20 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2019-10-02 07:19 - 2019-06-12 16:20 - 000988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2019-10-02 07:19 - 2019-06-12 16:20 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2019-10-02 07:19 - 2019-06-12 16:20 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2019-10-02 07:19 - 2019-06-12 16:20 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2019-10-02 07:19 - 2019-06-12 16:20 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2019-10-02 07:19 - 2019-06-12 16:20 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2019-10-02 07:19 - 2019-06-12 16:20 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2019-10-02 07:19 - 2019-06-12 16:20 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2019-10-02 07:19 - 2019-06-12 16:20 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll
2019-10-02 07:19 - 2019-06-12 16:20 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2019-10-02 07:19 - 2019-06-12 16:19 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2019-10-02 07:19 - 2019-06-12 16:19 - 000744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2019-10-02 07:19 - 2019-06-12 16:19 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2019-10-02 07:19 - 2019-06-12 16:19 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2019-10-02 07:19 - 2019-06-12 16:19 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2019-10-02 07:19 - 2019-06-12 16:11 - 000094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2019-10-02 07:19 - 2019-06-12 16:08 - 014637568 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2019-10-02 07:19 - 2019-06-12 16:08 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2019-10-02 07:19 - 2019-06-12 16:08 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2019-10-02 07:19 - 2019-06-12 16:08 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 001202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2019-10-02 07:19 - 2019-06-12 16:07 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2019-10-02 07:19 - 2019-06-12 16:06 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2019-10-02 07:19 - 2019-06-12 16:06 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2019-10-02 07:19 - 2019-06-12 16:06 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2019-10-02 07:19 - 2019-06-12 16:04 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2019-10-02 07:19 - 2019-06-12 15:50 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2019-10-02 07:19 - 2019-06-12 15:49 - 000205312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Dism.exe
2019-10-02 07:19 - 2019-06-12 15:49 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2019-10-02 07:19 - 2019-06-12 15:37 - 000274944 _____ (Microsoft Corporation) C:\Windows\system32\Dism.exe
2019-10-02 07:19 - 2019-06-12 15:37 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2019-10-02 07:19 - 2019-06-12 15:37 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2019-10-02 07:19 - 2019-06-04 00:11 - 001110528 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2019-10-02 07:19 - 2019-06-04 00:11 - 000474112 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2019-10-02 07:19 - 2019-06-04 00:10 - 000304640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll
2019-10-02 07:19 - 2019-05-25 01:03 - 001867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2019-10-02 07:19 - 2019-05-25 00:59 - 012880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-10-02 07:19 - 2019-05-25 00:58 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2019-10-02 07:19 - 2019-05-23 02:58 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2019-10-02 07:19 - 2019-05-23 01:31 - 001988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2019-10-02 07:19 - 2019-05-09 16:18 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2019-10-02 07:19 - 2019-05-09 16:18 - 000025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2019-10-02 07:19 - 2019-05-09 16:17 - 001806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2019-10-02 07:19 - 2019-05-09 16:09 - 000114400 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2019-10-02 07:19 - 2019-05-09 16:07 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2019-10-02 07:19 - 2019-05-09 16:07 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2019-10-02 07:19 - 2019-05-09 16:06 - 001942016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2019-10-02 07:19 - 2019-05-09 16:06 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2019-10-02 07:19 - 2019-05-09 15:51 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2019-10-02 07:19 - 2019-04-25 16:18 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2019-10-02 07:19 - 2019-04-19 03:44 - 000185064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2019-10-02 07:19 - 2019-04-19 03:43 - 000064232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS
2019-10-02 07:19 - 2019-04-19 03:43 - 000063208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2019-10-02 07:19 - 2019-04-19 03:43 - 000060648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys
2019-10-02 07:19 - 2019-04-19 03:43 - 000031976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys
2019-10-02 07:19 - 2019-04-19 03:43 - 000023784 _____ (Microsoft Corporation) C:\Windows\system32\streamci.dll
2019-10-02 07:19 - 2019-04-19 03:43 - 000020200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys
2019-10-02 07:19 - 2019-04-19 03:42 - 000122600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS
2019-10-02 07:19 - 2019-04-19 03:42 - 000015080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys
2019-10-02 07:19 - 2019-04-19 03:42 - 000012136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys
2019-10-02 07:19 - 2019-04-16 14:15 - 000419648 _____ C:\Windows\SysWOW64\locale.nls
2019-10-02 07:19 - 2019-04-16 14:15 - 000419648 _____ C:\Windows\system32\locale.nls
2019-10-02 07:19 - 2019-04-12 14:05 - 000064248 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000020944 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000019408 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000017656 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000017656 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000016120 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000015608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000014288 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000014072 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000013560 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000012752 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000012536 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000012240 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000012024 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000011512 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:05 - 000011504 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000914584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000065784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000021752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000018680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000017352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000017144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000015608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000015096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000013560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000013560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000013048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000012024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000012024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000011728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000011512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2019-10-02 07:19 - 2019-04-12 14:04 - 000011000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2019-10-02 07:19 - 2019-04-09 16:17 - 000174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2019-10-02 07:19 - 2019-04-09 16:05 - 003165184 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2019-10-02 07:19 - 2019-04-09 16:05 - 000573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2019-10-02 07:19 - 2019-04-09 16:05 - 000192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2019-10-02 07:19 - 2019-04-09 16:05 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2019-10-02 07:19 - 2019-04-09 16:05 - 000093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2019-10-02 07:19 - 2019-04-09 16:05 - 000035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2019-10-02 07:19 - 2019-04-09 16:05 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2019-10-02 07:19 - 2019-04-09 16:03 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2019-10-02 07:19 - 2019-04-09 15:52 - 000709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2019-10-02 07:19 - 2019-04-09 15:52 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2019-10-02 07:19 - 2019-04-09 15:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2019-10-02 07:19 - 2019-04-09 15:52 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2019-10-02 07:19 - 2019-04-09 15:52 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2019-10-02 07:19 - 2019-04-09 15:52 - 000012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2019-10-02 07:19 - 2019-04-07 15:38 - 000407040 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2019-10-02 07:19 - 2019-04-05 01:34 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\cryptdll.dll
2019-10-02 07:19 - 2019-04-05 01:23 - 000057856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdll.dll
2019-10-02 07:19 - 2019-03-21 03:10 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll
2019-10-02 07:19 - 2019-03-11 22:41 - 001894912 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2019-10-02 07:19 - 2019-03-11 22:41 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2019-10-02 07:19 - 2019-03-11 22:33 - 001241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2019-10-02 07:19 - 2019-03-11 22:33 - 000107520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2019-10-02 07:19 - 2019-03-11 22:33 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2019-10-02 07:19 - 2019-03-05 03:44 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2019-10-02 07:19 - 2019-03-05 03:44 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2019-10-02 07:19 - 2019-02-21 16:48 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2019-10-02 07:19 - 2019-02-21 16:43 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2019-10-02 07:19 - 2019-02-16 07:02 - 000972288 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2019-10-02 07:19 - 2019-02-16 07:02 - 000443904 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2019-10-02 07:19 - 2019-02-16 06:50 - 000321536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2019-10-02 07:19 - 2019-02-10 16:36 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2019-10-02 07:19 - 2019-02-10 16:36 - 000195584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2019-10-02 07:19 - 2019-02-10 16:35 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2019-10-02 07:19 - 2019-02-07 17:06 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\brdgcfg.dll
2019-10-02 07:19 - 2019-02-07 17:06 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\bridgeres.dll
2019-10-02 07:19 - 2019-02-07 16:46 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\bridgeunattend.exe
2019-10-02 07:19 - 2019-02-03 16:36 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys
2019-10-02 07:19 - 2018-12-08 04:08 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2019-10-02 07:19 - 2018-12-08 03:56 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2019-10-02 07:19 - 2018-12-08 03:56 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2019-10-02 07:19 - 2018-12-08 03:47 - 000058368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2019-10-02 07:19 - 2018-12-08 03:47 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2019-10-02 07:19 - 2018-12-04 17:07 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2019-10-02 07:19 - 2018-12-04 16:55 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2019-10-02 07:19 - 2018-11-18 03:57 - 002565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2019-10-02 07:19 - 2018-10-27 04:41 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\dispex.dll
2019-10-02 07:19 - 2018-10-27 04:04 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dispex.dll
2019-10-02 07:19 - 2018-09-23 03:55 - 002319872 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2019-10-02 07:19 - 2018-09-23 03:54 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2019-10-02 07:19 - 2018-09-23 03:54 - 000778240 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2019-10-02 07:19 - 2018-09-23 03:54 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2019-10-02 07:19 - 2018-09-23 03:54 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2019-10-02 07:19 - 2018-09-23 03:54 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2019-10-02 07:19 - 2018-09-23 03:54 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2019-10-02 07:19 - 2018-09-23 03:54 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2019-10-02 07:19 - 2018-09-23 03:54 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2019-10-02 07:19 - 2018-09-23 03:37 - 001549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2019-10-02 07:19 - 2018-09-23 03:37 - 001400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2019-10-02 07:19 - 2018-09-23 03:37 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2019-10-02 07:19 - 2018-09-23 03:37 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2019-10-02 07:19 - 2018-09-23 03:37 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2019-10-02 07:19 - 2018-09-23 03:37 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2019-10-02 07:19 - 2018-09-23 03:37 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2019-10-02 07:19 - 2018-09-23 03:37 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2019-10-02 07:19 - 2018-09-23 03:34 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2019-10-02 07:19 - 2018-09-23 03:34 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2019-10-02 07:19 - 2018-09-23 03:33 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2019-10-02 07:19 - 2018-09-23 03:22 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2019-10-02 07:19 - 2018-09-23 03:22 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2019-10-02 07:19 - 2018-09-23 03:21 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2019-10-02 07:19 - 2018-09-23 03:21 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2019-10-02 07:19 - 2018-09-09 01:59 - 002851840 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2019-10-02 07:19 - 2018-09-09 01:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2019-10-02 07:19 - 2018-08-16 03:18 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2019-10-02 07:19 - 2018-08-13 22:49 - 001391856 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2019-10-02 07:19 - 2018-08-12 21:28 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2019-10-02 07:19 - 2018-08-12 21:14 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2019-10-02 07:19 - 2018-08-10 16:20 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2019-10-02 07:19 - 2018-06-29 16:55 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2019-10-02 07:19 - 2018-06-29 16:55 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2019-10-02 07:19 - 2018-06-29 16:40 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscdll.dll
2019-10-02 07:19 - 2018-06-29 16:09 - 000034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscapi.dll
2019-10-02 07:19 - 2018-06-08 17:21 - 000369664 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2019-10-02 07:19 - 2018-06-08 17:19 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2019-10-02 07:19 - 2018-06-08 16:55 - 000330240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll
2019-10-02 07:19 - 2018-06-08 16:54 - 000269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2019-10-02 07:19 - 2018-06-08 16:44 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2019-10-02 07:19 - 2018-06-08 16:28 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2019-10-02 07:19 - 2018-05-11 22:19 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2019-10-02 07:19 - 2018-05-02 16:32 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2019-10-02 07:19 - 2018-04-25 17:02 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2019-10-02 07:19 - 2018-04-10 17:32 - 000487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2019-10-02 07:19 - 2018-03-06 19:11 - 000052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsnmp32.dll
2019-10-02 07:19 - 2018-02-22 04:28 - 000217600 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2019-10-02 07:19 - 2018-02-22 04:06 - 000134656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2019-10-02 07:19 - 2018-02-10 19:23 - 002292224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2019-10-02 07:19 - 2018-02-10 19:23 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\racpldlg.dll
2019-10-02 07:19 - 2018-02-10 19:11 - 003665920 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2019-10-02 07:19 - 2018-02-10 19:11 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\racpldlg.dll
2019-10-02 07:19 - 2018-02-10 18:36 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdchange.exe
2019-10-02 07:19 - 2018-02-10 18:36 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsraLegacy.tlb
2019-10-02 07:19 - 2018-02-10 18:25 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmiacpi.sys
2019-10-02 07:19 - 2018-02-10 18:25 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\errdev.sys
2019-10-02 07:19 - 2018-02-10 18:25 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\MsraLegacy.tlb
2019-10-02 07:19 - 2018-01-12 17:27 - 004834816 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2019-10-02 07:19 - 2018-01-12 17:26 - 000308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2019-10-02 07:19 - 2018-01-12 17:16 - 003405824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2019-10-02 07:19 - 2018-01-01 03:18 - 001741312 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2019-10-02 07:19 - 2018-01-01 03:18 - 000961024 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2019-10-02 07:19 - 2018-01-01 03:18 - 000842752 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2019-10-02 07:19 - 2018-01-01 03:18 - 000705024 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2019-10-02 07:19 - 2018-01-01 03:18 - 000366592 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2019-10-02 07:19 - 2018-01-01 03:18 - 000324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2019-10-02 07:19 - 2018-01-01 03:18 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2019-10-02 07:19 - 2018-01-01 03:18 - 000181760 _____ (Microsoft Corporation) C:\Windows\system32\PeerDist.dll
2019-10-02 07:19 - 2018-01-01 03:18 - 000131584 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistWSDDiscoProv.dll
2019-10-02 07:19 - 2018-01-01 03:18 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2019-10-02 07:19 - 2018-01-01 03:18 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2019-10-02 07:19 - 2018-01-01 03:18 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistHttpTrans.dll
2019-10-02 07:19 - 2018-01-01 03:18 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapPeerProxy.dll
2019-10-02 07:19 - 2018-01-01 03:18 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapAuthProxy.dll
2019-10-02 07:19 - 2018-01-01 03:04 - 000559616 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2019-10-02 07:19 - 2018-01-01 03:00 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2019-10-02 07:19 - 2018-01-01 03:00 - 000276992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcncsvc.dll
2019-10-02 07:19 - 2018-01-01 03:00 - 000216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2019-10-02 07:19 - 2018-01-01 03:00 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2019-10-02 07:19 - 2018-01-01 03:00 - 000139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDist.dll
2019-10-02 07:19 - 2018-01-01 03:00 - 000081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2019-10-02 07:19 - 2018-01-01 03:00 - 000052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2019-10-02 07:19 - 2018-01-01 02:59 - 000309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2019-10-02 07:19 - 2018-01-01 02:47 - 000244224 _____ (Microsoft Corporation) C:\Windows\system32\vmicsvc.exe
2019-10-02 07:19 - 2018-01-01 02:46 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\IcCoinstall.dll
2019-10-02 07:19 - 2018-01-01 02:46 - 000051712 _____ (Microsoft Corporation) C:\Windows\system32\vmictimeprovider.dll
2019-10-02 07:19 - 2018-01-01 02:43 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2019-10-02 07:19 - 2018-01-01 02:43 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnEapPeerProxy.dll
2019-10-02 07:19 - 2018-01-01 02:43 - 000019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnEapAuthProxy.dll
2019-10-02 07:19 - 2018-01-01 02:43 - 000013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshqos.dll
2019-10-02 07:19 - 2017-12-05 18:36 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2019-10-02 07:19 - 2017-12-05 18:36 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2019-10-02 07:19 - 2017-11-02 17:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2019-10-02 07:19 - 2017-10-17 00:04 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2019-10-02 07:19 - 2017-10-16 23:46 - 000953344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2019-10-02 07:18 - 2019-08-27 03:34 - 000350208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2019-10-02 07:18 - 2019-08-22 23:07 - 000628480 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-10-02 07:18 - 2019-08-21 02:56 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-10-02 07:18 - 2019-08-21 02:56 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-10-02 07:18 - 2019-08-21 00:19 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-10-02 07:18 - 2019-08-20 05:24 - 000385248 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-10-02 07:18 - 2019-08-20 05:21 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-10-02 07:18 - 2019-08-20 05:21 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-10-02 07:18 - 2019-08-20 05:21 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-10-02 07:18 - 2019-08-20 04:59 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys
2019-10-02 07:18 - 2019-08-20 03:47 - 001251840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2019-10-02 07:18 - 2019-08-15 08:59 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-10-02 07:18 - 2019-08-15 08:59 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-10-02 07:18 - 2019-08-14 18:54 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2019-10-02 07:18 - 2019-08-14 18:53 - 000253440 _____ (Microsoft) C:\Windows\SysWOW64\DShowRdpFilter.dll
2019-10-02 07:18 - 2019-08-14 06:22 - 000374496 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2019-10-02 07:18 - 2019-08-14 06:20 - 000300032 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2019-10-02 07:18 - 2019-08-14 06:20 - 000282112 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll
2019-10-02 07:18 - 2019-08-14 05:52 - 000455680 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2019-10-02 07:18 - 2019-08-13 23:20 - 000162016 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-10-02 07:18 - 2019-08-13 23:19 - 000988384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-10-02 07:18 - 2019-08-13 23:19 - 000267488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2019-10-02 07:18 - 2019-08-13 23:15 - 000732160 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-10-02 07:18 - 2019-08-13 23:15 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-10-02 07:18 - 2019-08-13 23:15 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2019-10-02 07:18 - 2019-08-13 23:13 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-10-02 07:18 - 2019-08-13 01:56 - 002863104 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-10-02 07:18 - 2019-08-13 01:56 - 001712640 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-10-02 07:18 - 2019-08-13 01:56 - 001650176 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2019-10-02 07:18 - 2019-08-13 01:56 - 000802304 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-10-02 07:18 - 2019-08-13 01:56 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-10-02 07:18 - 2019-08-13 01:56 - 000501760 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2019-10-02 07:18 - 2019-08-13 01:56 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-10-02 07:18 - 2019-08-13 01:56 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-10-02 07:18 - 2019-08-13 01:56 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-10-02 07:18 - 2019-07-30 03:20 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-10-02 07:18 - 2019-07-30 03:20 - 000517632 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-10-02 07:18 - 2019-07-30 03:20 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-10-02 07:18 - 2019-07-30 03:19 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-10-02 07:18 - 2019-07-30 03:16 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-10-02 07:18 - 2019-07-30 03:16 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2019-10-02 07:18 - 2019-07-30 02:56 - 000556032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2019-10-02 07:18 - 2019-07-30 02:54 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2019-10-02 07:18 - 2019-07-13 09:35 - 001894840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-10-02 07:18 - 2019-07-13 09:35 - 000378808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2019-10-02 07:18 - 2019-07-13 09:34 - 000335360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2PGraph.dll
2019-10-02 07:18 - 2019-07-13 09:34 - 000217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll
2019-10-02 07:18 - 2019-07-13 09:34 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-10-02 07:18 - 2019-07-13 09:32 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2019-10-02 07:18 - 2019-07-13 09:32 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2019-10-02 07:18 - 2019-07-13 09:32 - 000264704 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2019-10-02 07:18 - 2019-07-13 09:32 - 000193024 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll
2019-10-02 07:18 - 2019-07-13 09:32 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-10-02 07:18 - 2019-07-13 09:32 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\Groupinghc.dllFrst.txt - Part 3 - (Linea 1000 a 1266)
2019-10-02 07:18 - 2019-07-13 09:32 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\ssdpapi.dll
2019-10-02 07:18 - 2019-07-13 09:31 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcmonitor.dll
2019-10-02 07:18 - 2019-07-13 09:13 - 000011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcmonitor.dll
2019-10-02 07:18 - 2019-06-28 06:24 - 000887808 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2019-10-02 07:18 - 2019-06-28 06:24 - 000414208 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2019-10-02 07:18 - 2019-06-28 06:24 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2019-10-02 07:18 - 2019-06-28 06:23 - 000428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2019-10-02 07:18 - 2019-06-28 06:23 - 000392704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2019-10-02 07:18 - 2019-06-28 06:23 - 000083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2019-10-02 07:18 - 2019-06-28 06:23 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2019-10-02 07:18 - 2019-06-21 04:09 - 000806400 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2019-10-02 07:18 - 2019-06-21 04:05 - 000628224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2019-10-02 07:18 - 2019-06-12 16:19 - 001177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2019-10-02 07:18 - 2019-06-12 16:08 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2019-10-02 07:18 - 2019-06-12 16:08 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-10-02 07:18 - 2019-06-12 16:07 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2019-10-02 07:18 - 2019-06-12 16:07 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2019-10-02 07:18 - 2019-06-12 16:07 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2019-10-02 07:18 - 2019-06-12 16:07 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2019-10-02 07:18 - 2019-06-12 16:07 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-10-02 07:18 - 2019-06-12 16:07 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2019-10-02 07:18 - 2019-06-12 16:07 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2019-10-02 07:18 - 2019-06-12 16:07 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll
2019-10-02 07:18 - 2019-06-12 16:06 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2019-10-02 07:18 - 2019-06-12 16:05 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2019-10-02 07:18 - 2019-06-12 16:01 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2019-10-02 07:18 - 2019-06-02 04:50 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2019-10-02 07:18 - 2019-05-25 01:04 - 014185984 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-10-02 07:18 - 2019-05-23 03:06 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-10-02 07:18 - 2019-05-23 03:06 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2019-10-02 07:18 - 2019-05-23 02:58 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-10-02 07:18 - 2019-05-23 01:05 - 001182208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2019-10-02 07:18 - 2019-05-09 16:18 - 002368000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-10-02 07:18 - 2019-05-09 16:17 - 000805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2019-10-02 07:18 - 2019-05-09 16:07 - 003247616 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-10-02 07:18 - 2019-05-09 16:06 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2019-10-02 07:18 - 2019-05-09 15:40 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2019-10-02 07:18 - 2019-04-25 16:06 - 000110592 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2019-10-02 07:18 - 2019-04-19 03:42 - 000068328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2019-10-02 07:18 - 2019-04-19 03:42 - 000036064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vdrvroot.sys
2019-10-02 07:18 - 2019-04-12 14:05 - 000994384 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2019-10-02 07:18 - 2019-04-09 15:53 - 002651136 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2019-10-02 07:18 - 2019-03-29 02:36 - 000114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2019-10-02 07:18 - 2019-03-11 22:41 - 001032192 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2019-10-02 07:18 - 2019-03-11 22:41 - 000688128 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2019-10-02 07:18 - 2019-03-11 22:41 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2019-10-02 07:18 - 2019-03-11 22:33 - 000827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2019-10-02 07:18 - 2019-03-05 03:44 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2019-10-02 07:18 - 2019-02-21 16:37 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2019-10-02 07:18 - 2019-02-10 17:10 - 001680104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-10-02 07:18 - 2019-02-10 16:36 - 000328192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2019-10-02 07:18 - 2019-02-07 17:01 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2019-10-02 07:18 - 2018-12-08 04:08 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2019-10-02 07:18 - 2018-12-08 04:08 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2019-10-02 07:18 - 2018-12-08 04:08 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2019-10-02 07:18 - 2018-12-08 04:08 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2019-10-02 07:18 - 2018-12-08 04:08 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2019-10-02 07:18 - 2018-12-08 03:56 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndptsp.tsp
2019-10-02 07:18 - 2018-12-08 03:47 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2019-10-02 07:18 - 2018-12-08 03:41 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2019-10-02 07:18 - 2018-12-08 03:41 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2019-10-02 07:18 - 2018-12-08 03:41 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2019-10-02 07:18 - 2018-12-04 17:07 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2019-10-02 07:18 - 2018-12-04 16:55 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2019-10-02 07:18 - 2018-11-11 18:01 - 000366824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2019-10-02 07:18 - 2018-10-27 04:42 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2019-10-02 07:18 - 2018-10-27 04:42 - 000202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2019-10-02 07:18 - 2018-10-27 04:42 - 000150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2019-10-02 07:18 - 2018-10-27 04:42 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2019-10-02 07:18 - 2018-10-27 04:27 - 000173568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2019-10-02 07:18 - 2018-10-27 04:27 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2019-10-02 07:18 - 2018-10-27 04:27 - 000121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2019-10-02 07:18 - 2018-10-27 04:11 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2019-10-02 07:18 - 2018-10-27 04:11 - 000156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2019-10-02 07:18 - 2018-10-27 04:04 - 000141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2019-10-02 07:18 - 2018-10-27 04:04 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2019-10-02 07:18 - 2018-10-27 04:04 - 000025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshcon.dll
2019-10-02 07:18 - 2018-08-30 02:47 - 001230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2019-10-02 07:18 - 2018-08-30 02:10 - 001424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2019-10-02 07:18 - 2018-08-28 06:50 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2019-10-02 07:18 - 2018-08-10 16:55 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2019-10-02 07:18 - 2018-08-10 16:54 - 000828928 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2019-10-02 07:18 - 2018-08-10 16:54 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2019-10-02 07:18 - 2018-08-10 16:54 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2019-10-02 07:18 - 2018-08-10 16:40 - 000463360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2019-10-02 07:18 - 2018-08-10 16:27 - 000077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2019-10-02 07:18 - 2018-08-03 16:55 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2019-10-02 07:18 - 2018-08-03 16:39 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2019-10-02 07:18 - 2018-07-18 16:18 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2019-10-02 07:18 - 2018-07-06 17:09 - 000947904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2019-10-02 07:18 - 2018-06-29 16:55 - 000695808 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll
2019-10-02 07:18 - 2018-06-29 16:55 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll
2019-10-02 07:18 - 2018-06-29 16:14 - 000516096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys
2019-10-02 07:18 - 2018-06-08 17:19 - 000357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2019-10-02 07:18 - 2018-05-15 04:44 - 001159680 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2019-10-02 07:18 - 2018-05-15 04:13 - 000782848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2019-10-02 07:18 - 2018-05-11 22:19 - 000977408 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2019-10-02 07:18 - 2018-05-11 01:40 - 000741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2019-10-02 07:18 - 2018-05-11 01:40 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2019-10-02 07:18 - 2018-05-02 16:32 - 000344064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2019-10-02 07:18 - 2018-05-02 16:32 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2019-10-02 07:18 - 2018-05-02 16:32 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2019-10-02 07:18 - 2018-05-02 16:32 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2019-10-02 07:18 - 2018-05-02 16:32 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2019-10-02 07:18 - 2018-05-02 16:32 - 000007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2019-10-02 07:18 - 2018-04-25 16:18 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2019-10-02 07:18 - 2018-04-18 17:03 - 000701952 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2019-10-02 07:18 - 2018-04-18 17:03 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\hhsetup.dll
2019-10-02 07:18 - 2018-04-18 16:51 - 000523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2019-10-02 07:18 - 2018-04-18 16:51 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhsetup.dll
2019-10-02 07:18 - 2018-04-18 16:41 - 000016896 _____ (Microsoft Corporation) C:\Windows\hh.exe
2019-10-02 07:18 - 2018-04-18 16:35 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hh.exe
2019-10-02 07:18 - 2018-04-10 17:35 - 001735168 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2019-10-02 07:18 - 2018-04-10 17:34 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2019-10-02 07:18 - 2018-04-10 17:33 - 001241600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2019-10-02 07:18 - 2018-03-06 19:13 - 000148160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2019-10-02 07:18 - 2018-03-06 19:11 - 000184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2019-10-02 07:18 - 2018-03-06 19:10 - 000170176 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2019-10-02 07:18 - 2018-03-06 19:07 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2019-10-02 07:18 - 2018-03-06 19:07 - 000067072 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2019-10-02 07:18 - 2018-02-10 19:35 - 000334528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2019-10-02 07:18 - 2018-02-10 19:11 - 000133120 _____ (Microsoft Corporation) C:\Windows\system32\msrahc.dll
2019-10-02 07:18 - 2018-02-10 18:36 - 000108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msra.exe
2019-10-02 07:18 - 2018-02-10 18:26 - 000653312 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2019-10-02 07:18 - 2018-02-10 18:26 - 000051712 _____ (Microsoft Corporation) C:\Windows\system32\sdchange.exe
2019-10-02 07:18 - 2018-01-12 17:40 - 000407040 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2019-10-02 07:18 - 2018-01-01 03:21 - 000288488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2019-10-02 07:18 - 2018-01-01 03:21 - 000213736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2019-10-02 07:18 - 2018-01-01 03:18 - 001361408 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSvc.dll
2019-10-02 07:18 - 2018-01-01 03:18 - 000863232 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2019-10-02 07:18 - 2018-01-01 03:18 - 000444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2019-10-02 07:18 - 2018-01-01 03:18 - 000439296 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2019-10-02 07:18 - 2018-01-01 03:18 - 000303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2019-10-02 07:18 - 2018-01-01 03:18 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2019-10-02 07:18 - 2018-01-01 03:18 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\vmicres.dll
2019-10-02 07:18 - 2018-01-01 03:18 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\traffic.dll
2019-10-02 07:18 - 2018-01-01 03:18 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\wshqos.dll
2019-10-02 07:18 - 2018-01-01 03:18 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wshnetbs.dll
2019-10-02 07:18 - 2018-01-01 03:00 - 000351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2019-10-02 07:18 - 2018-01-01 03:00 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\traffic.dll
2019-10-02 07:18 - 2018-01-01 02:55 - 000131584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2019-10-02 07:18 - 2018-01-01 02:55 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys
2019-10-02 07:18 - 2018-01-01 02:41 - 000754176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2019-10-02 07:18 - 2017-12-05 18:36 - 000625664 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2019-10-02 07:18 - 2017-12-05 18:36 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2019-10-02 07:18 - 2017-12-05 18:08 - 000481792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2019-10-02 07:18 - 2017-12-05 18:08 - 000215040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2019-10-02 07:18 - 2017-12-05 17:04 - 000404992 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2019-10-02 07:18 - 2017-12-05 16:49 - 000032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcsPlugInService.dll
2019-10-02 07:18 - 2017-11-02 17:55 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2019-10-02 07:18 - 2017-11-02 17:55 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2019-10-02 07:18 - 2017-11-02 17:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2019-10-02 07:18 - 2017-11-02 16:11 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2019-10-02 07:18 - 2017-11-02 16:11 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2019-10-02 07:18 - 2017-11-02 16:11 - 000075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2019-10-02 07:18 - 2017-11-02 15:56 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-10-29 17:32 - 2018-10-17 19:30 - 000000000 ____D C:\Users\A-Carles\AppData\LocalLow\Mozilla
2019-10-29 17:28 - 2009-07-14 05:45 - 000015376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-10-29 17:28 - 2009-07-14 05:45 - 000015376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-10-29 17:24 - 2009-07-14 10:31 - 000747396 _____ C:\Windows\system32\perfh00A.dat
2019-10-29 17:24 - 2009-07-14 10:31 - 000158868 _____ C:\Windows\system32\perfc00A.dat
2019-10-29 17:24 - 2009-07-14 06:13 - 001676890 _____ C:\Windows\system32\PerfStringBackup.INI
2019-10-29 17:24 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-10-29 17:20 - 2017-04-30 22:08 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-29 17:20 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-10-29 17:19 - 2017-05-30 14:45 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2019-10-29 16:42 - 2017-04-30 22:39 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-10-29 16:10 - 2018-06-26 20:45 - 000000000 ____D C:\Users\PC-ADMIN\AppData\Local\CrashDumps
2019-10-29 16:10 - 2017-06-05 09:07 - 000000000 ____D C:\Windows\Minidump
2019-10-29 11:59 - 2018-07-27 14:25 - 000000000 ____D C:\Users\A-Carles\AppData\Local\CrashDumps
2019-10-29 08:17 - 2018-07-25 21:06 - 000000000 ____D C:\Users\A-Carles\AppData\Local\Adobe
2019-10-28 16:18 - 2017-05-12 00:20 - 000001577 _____ C:\Users\A-Carles\Desktop\COTXE..lnk
2019-10-28 16:16 - 2018-07-28 13:28 - 000001074 _____ C:\Users\A-Carles\Desktop\ACCIDENT.2.lnk
2019-10-27 22:10 - 2018-07-02 20:31 - 000000000 ____D C:\Users\A-Carles_1Monitor
2019-10-27 22:10 - 2017-07-27 01:22 - 000000000 ____D C:\Users\ARES
2019-10-24 09:08 - 2017-05-01 19:52 - 000002236 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-23 18:39 - 2018-07-25 21:06 - 000000000 ____D C:\Users\A-Carles\AppData\Local\Greenshot
2019-10-23 16:15 - 2018-10-15 12:53 - 000001425 _____ C:\Users\A-Carles\Desktop\Gestori.lnk
2019-10-22 00:53 - 2017-05-12 00:20 - 000001319 _____ C:\Users\A-Carles\Desktop\Musica CD.lnk
2019-10-21 08:37 - 2018-07-09 16:29 - 000001801 _____ C:\Users\A-Carles\Desktop\2018 Subvencio.lnk
2019-10-20 13:40 - 2017-08-21 23:00 - 000001732 _____ C:\Users\A-Carles\Desktop\WHAT.lnk
2019-10-18 20:12 - 2019-03-03 19:57 - 000000000 ____D C:\Users\A-Carles\AppData\Roaming\vlc
2019-10-17 15:09 - 2017-05-12 00:20 - 000001742 _____ C:\Users\A-Carles\Desktop\Provei dors.lnk
2019-10-17 08:16 - 2019-09-08 14:24 - 000000000 ____D C:\Program Files\CCleaner
2019-10-16 16:20 - 2019-09-20 08:27 - 000000000 ____D C:\Users\A-Carles\AppData\Roaming\TeamViewer
2019-10-15 19:14 - 2018-05-27 21:46 - 000001074 _____ C:\Users\A-Carles\Desktop\ACCIDENT.lnk
2019-10-14 09:34 - 2019-01-16 00:12 - 000535552 _____ (Dirección General de la Policía) C:\Users\A-Carles\AppData\Local\DNIeService.exe
2019-10-13 20:05 - 2019-05-15 22:45 - 000002592 _____ C:\Users\A-Carles\Desktop\Airbnb.lnk
2019-10-13 20:05 - 2019-05-15 22:45 - 000002561 _____ C:\Users\A-Carles\Desktop\Airbnb 2019.lnk
2019-10-12 22:54 - 2017-05-04 23:40 - 000000020 ____H C:\ProgramData\PKP_DLev.DAT
2019-10-11 08:42 - 2009-07-14 06:08 - 000032548 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-10-10 01:07 - 2019-09-12 09:54 - 000001199 _____ C:\Users\A-Carles\Desktop\ARNAU EXP.lnk
2019-10-09 12:57 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2019-10-09 09:25 - 2009-07-14 05:45 - 005151552 _____ C:\Windows\system32\FNTCACHE.DAT
2019-10-09 09:23 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-10-09 05:31 - 2017-04-30 22:06 - 000000000 ____D C:\Windows\system32\MRT
2019-10-09 05:31 - 2017-04-30 19:58 - 001650540 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2019-10-09 05:27 - 2017-04-30 22:06 - 127230528 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-10-09 00:11 - 2017-05-22 19:36 - 000000865 _____ C:\Users\A-Carles\Desktop\VIDEOS Clients.lnk
2019-10-07 22:54 - 2017-05-12 00:20 - 000002346 _____ C:\Users\A-Carles\Desktop\Lloguer.lnk
2019-10-07 21:34 - 2017-05-01 19:51 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-04 19:18 - 2017-04-30 19:34 - 000000000 ____D C:\Users\PC-ADMIN
2019-10-02 19:17 - 2017-05-03 08:44 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-10-02 19:17 - 2017-05-03 08:44 - 000000000 ____D C:\Windows\system32\appraiser
2019-10-02 19:17 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\Setup
2019-10-02 19:17 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\Dism
2019-10-02 19:17 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\Setup
2019-10-02 19:17 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\Dism
2019-10-02 12:47 - 2018-07-25 21:06 - 000147552 _____ C:\Users\A-Carles\AppData\Local\GDIPFONTCACHEV1.DAT
==================== Files in the root of some directories ========
2016-04-24 08:39 - 2016-04-24 08:39 - 000662456 _____ (ForensiT Limited) C:\ProgramData\UserProfileMigrationService.exe
2019-07-08 22:17 - 2019-07-08 22:17 - 000000132 _____ () C:\Users\A-Carles\AppData\Roaming\Adobe GIF Format CS5 Prefs
2019-05-16 20:04 - 2019-09-08 13:36 - 000000132 _____ () C:\Users\A-Carles\AppData\Roaming\Adobe PNG Format CS5 Prefs
2019-02-17 03:33 - 2019-07-24 14:17 - 000001456 _____ () C:\Users\A-Carles\AppData\Local\Adobe Guardar para Web 12.0 Prefs
2019-01-16 00:12 - 2019-10-14 09:34 - 000535552 _____ (Dirección General de la Policía) C:\Users\A-Carles\AppData\Local\DNIeService.exe
2018-09-28 11:08 - 2018-09-28 11:08 - 000000000 _____ () C:\Users\A-Carles\AppData\Local\oobelibMkey.log
==================== FLock ==============================
2018-05-13 16:06 C:\MSOCache
2009-07-14 04:20 C:\PerfLogs
2017-04-30 19:34 C:\Recovery
2019-10-29 17:33 C:\Windows\system32\config
2009-07-14 06:09 C:\Windows\system32\FxsTmp
2009-07-14 04:20 C:\Windows\system32\ias
2009-07-14 04:20 C:\Windows\system32\Msdtc
2009-07-14 04:20 C:\Windows\system32\NetworkList
2019-10-29 17:18 C:\Windows\system32\Tasks
2017-05-12 17:42 C:\Windows\system32\wdi
2018-05-13 16:08 C:\Windows\system32\wfp
2017-08-07 00:01 C:\Windows\LiveKernelReports
2019-10-29 16:10 C:\Windows\Minidump
2009-07-14 03:34 C:\Windows\ModemLogs
2017-05-01 16:46 C:\Windows\Prefetch
2009-07-14 04:20 C:\Windows\SysWOW64\config
2009-07-14 06:32 C:\Windows\SysWOW64\FxsTmp
2009-07-14 04:20 C:\Windows\SysWOW64\Msdtc
2009-07-14 04:20 C:\Windows\SysWOW64\NetworkList
2009-07-14 04:20 C:\Windows\SysWOW64\Tasks
2018-07-25 17:45 C:\Users\A-CARLES.PC-A75
2018-07-25 19:04 C:\Users\A-CARLES.PC-A75.000
2018-07-25 18:42 C:\Users\A-CARLES_01
2019-10-27 22:10 C:\Users\A-Carles_1Monitor
2019-10-27 22:10 C:\Users\ARES
2018-08-30 19:42 C:\Users\A-Carles\AppData\Local\ElevatedDiagnostics
2017-07-28 23:30 C:\Users\A-Carles_0\AppData\Local\Diagnostics
2017-09-09 21:29 C:\Users\A-Carles_0\AppData\Local\ElevatedDiagnostics
2017-05-02 00:37 C:\ProgramData\Brother
2017-06-08 08:27 C:\Users\PC-ADMIN\AppData\Local\ElevatedDiagnostics
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
ATTENTION: ==> Could not access BCD. The user is not administrator -> No se pudo abrir el almac�n de datos de configuraci�n de arranque (BCD).
Acceso denegado.
==================== End of FRST.txt ========================Informe Addition
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-10-2019
Ran by A-Carles (29-10-2019 17:46:58)
Running from D:\- 02 - PROGRAMES-I\02_ANTIVIRUS\00_Informes_Antivirus-log\PROGRAMES AVUI\05_Farbar Recovery Scan Tool
Windows 7 Professional Service Pack 1 (X64) (2017-04-30 18:34:01)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
A-Carles (S-1-5-21-3520378656-2983391177-1615256727-1022 - Limited - Enabled) => C:\Users\A-Carles
A-Carles_1Monitor (S-1-5-21-3520378656-2983391177-1615256727-1012 - Limited - Enabled) => C:\Users\A-Carles_1Monitor
Administrador (S-1-5-21-3520378656-2983391177-1615256727-500 - Administrator - Disabled)
ARES (S-1-5-21-3520378656-2983391177-1615256727-1007 - Limited - Enabled) => C:\Users\ARES
Invitado (S-1-5-21-3520378656-2983391177-1615256727-501 - Limited - Enabled)
PC-ADMIN (S-1-5-21-3520378656-2983391177-1615256727-1000 - Administrator - Enabled) => C:\Users\PC-ADMIN
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG Antivirus (Disabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Disabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}
FW: AVG Antivirus (Disabled) {77FCDD80-5C3B-5549-57A4-B1A62BD5FB8F}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
Adobe Acrobat X Pro - Italiano, Español, Nederlands, Português (HKLM-x32\...\{AC76BA86-1040-7D70-7760-000000000005}) (Version: 10.1.16 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{1BBD8D70-721A-41AD-AC8F-7308A0C8FA92}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\{6E9EF98E-259E-416D-B5F8-0ABDB99942CE}) (Version: 10.1.52.14 - Adobe Systems, Inc.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.10 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.7 64-bit (HKLM\...\{1B77B02E-17E4-4B6D-B8A1-74B29AF3D8DD}) (Version: 5.7.0 - Adobe Systems Incorporated)
AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 1.01.40 - ASUSTeK Computer Inc.)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
Apple Application Support (64 bits) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AppServ 8.6.0 (remove only) (HKLM-x32\...\AppServ) (Version: - )
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.33.1 - Asmedia Technology)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.030 - ASUSTek Computer Inc.)
AVG (HKLM\...\{136B57DF-DA9E-4361-A165-09AB4422BCD1}) (Version: 1.231.3 - AVG Technologies) Hidden
AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 19.5.3093 - AVG Technologies)
AVG PC TuneUp (HKLM-x32\...\{52B6D655-9038-4290-B710-0E568F806155}) (Version: 16.80.3 - AVG Technologies) Hidden
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.80.3.38236 - AVG Technologies)
AWicons Lite by Lokas Software (HKLM-x32\...\AWicons Lite by Lokas Software) (Version: - )
BrLauncher (HKLM-x32\...\{42D26B47-887C-45FC-BCAE-0BE485C5C0BB}) (Version: 2.0.11.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{190861E7-09C5-42D8-BB4B-0AFB234BCFC1}) (Version: 1.0.3.1 - Brother Industries Ltd.) Hidden
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.34.223.5 - Broadcom Corporation)
Brother IPPoverUSB Driver (HKLM-x32\...\{36DAA671-6347-495C-B816-6FB782430D8A}) (Version: 1.1.0.0 - Brother Industries Ltd.) Hidden
Brother Printer Driver (HKLM-x32\...\{6D33FF09-043C-45A6-A3E5-5DDBF686AC4E}) (Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
BrSupportTools (HKLM-x32\...\{32F47565-84B1-42CC-B09A-4CDDD9A32F94}) (Version: 1.0.20.0 - Brother Industries Ltd.) Hidden
Capture NX 2 (HKLM\...\Capture NX 2) (Version: 2.3.0 - NIKON CORPORATION)
Catalyst Control Center Next Localization BR (HKLM\...\{E63C2F30-553E-02EC-1166-6A4E9A8ABCB3}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{6007C7BF-08C0-97C5-8995-D62A6370B02C}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{1E2DE3DD-BFF0-CA66-53FA-70FB91D9DCF4}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{1872EA3F-7A3A-119B-4E56-8AD0C2C691E9}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{74A6C030-79E7-33C2-1AB0-C3DCE39580DA}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{AAACD4E2-32D4-6D86-4B4D-F4EFB295F470}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{268724A1-9765-9C22-B03E-F43060700EBD}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{5B4A5183-3D1D-A2F4-DBC1-CE01B8C9A792}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{DE8D013C-04B2-1E96-ED5F-27A6BE4C54A9}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{63453FF8-1086-8809-F1CD-49EF2B400BF2}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{8E2667A4-660C-B3A1-55A0-C03814DD9D2A}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{8A9613D4-BCC8-C3B2-3AD3-FBA8E190E17F}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{57B6E45E-2D8C-EF93-0481-356877523C68}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{9AE0BB67-BD69-4C53-866A-6604276F6290}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{2D7872D0-B797-DC8E-D38F-789FDB277C7F}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{1D295BD7-20C5-903A-098E-92BA8EEB6667}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{2C0E9F47-705F-2499-0B16-2D3FB3B26E24}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{27BA0AD1-A4D8-5771-DBFC-74A211DC226D}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{508C83D2-1A7D-F73F-8903-842299736D33}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{BC74BF6F-DA7D-C01B-2C26-4864BE2D533A}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{359526F4-4155-ABF3-C6C6-360C855CE4F2}) (Version: 2016.1108.1446.26563 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6521 - CDBurnerXP)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Compatibilidad con Aplicaciones de Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Compresor WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
Data Lifeguard Diagnostic for Windows 1.31 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation)
Desinstalador de impresoras FUJIFILM DX100 (HKLM\...\FUJIFILM DX100) (Version: - )
Desinstalador de impresoras FUJIFILM DX100 EX (HKLM\...\FUJIFILM DX100 EX) (Version: - )
EPSON Copy Utility 3 (HKLM-x32\...\{67EDD823-135A-4D59-87BD-950616D6E857}) (Version: 3.3.0.0 - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
FMW 1 (HKLM\...\{4CC5FB14-3F4D-4FA8-B921-00A9B40145C4}) (Version: 1.227.45 - AVG Technologies) Hidden
Free MP4 Video Converter (HKLM-x32\...\Free MP4 Video Converter_is1) (Version: 5.0.113.823 - Digital Wave Ltd)
Free Video to DVD Converter (HKLM-x32\...\Free Video to DVD Converter_is1) (Version: 5.0.99.823 - Digital Wave Ltd)
FreeFileSync 9.0 (HKLM-x32\...\FreeFileSync_is1) (Version: 9.0 - www.FreeFileSync.org)
FUJIFILM DX100 Software (HKLM-x32\...\{3D4BC9CB-33A4-4211-88B5-1F534DD281D3}_is1) (Version: 4.0.0.4225 - FUJIFILM Corporation)
Garmin MapSource (HKLM-x32\...\{D02220CE-1475-4F0F-9F12-251161999D53}) (Version: 6.16.2 - Garmin Ltd or its subsidiaries)
Garmin Trip and Waypoint Manager v5 (HKLM-x32\...\{414A373B-59DF-4102-94CA-9FE9A74CBDDA}) (Version: 5.0.0.0 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (HKLM\...\{DC7720F2-98BE-41C1-B0A8-E391362E86B8}) (Version: 2.3.1.1 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.70 - Google LLC)
Google Earth Pro (HKLM-x32\...\{9D524A1E-F2FC-444D-B12A-7592CEB56EB5}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.22.5 - Google Inc.) Hidden
GPSBabel 1.4.4 (HKLM-x32\...\{1B8FE958-A304-4902-BF7A-4E2F0F5B7017}_is1) (Version: - GPSBabel)
Greenshot 1.2.8.12 (HKLM\...\Greenshot_is1) (Version: 1.2.8.12 - Greenshot)
High-Definition Video Playback 10 (HKLM-x32\...\{237CCB62-8454-43E3-B158-3ACD0134852E}) (Version: 7.0.11400.29.0 - Nero AG) Hidden
HL-2130 (HKLM-x32\...\{E2A97415-BD97-4867-B906-05E39E9EE51F}) (Version: 1.0.7.0 - Brother Industries, Ltd.)
Hofmann 11.2.0.10 (HKLM-x32\...\{934E2D1B-B7E1-4E54-801C-0D7A4C74A61E}) (Version: 11.2.0 - Hofmann)
ImageMagick 6.9.0-7 Q16 (64-bit) (2015-03-15) (HKLM\...\ImageMagick 6.9.0 Q16 (64-bit)_is1) (Version: 6.9.0 - ImageMagick Studio LLC)
Instalable DNIe (HKLM\...\{D2CE0562-13E0-4FC9-85F2-CA3D0392310E}) (Version: 14.0.1 - Cuerpo Nacional de Policía)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1173 - Intel Corporation)
Intel(R) Network Connections 20.5.51.0 (HKLM\...\PROSetDX) (Version: 20.5.51.0 - Intel)
Intel(R) Turbo Boost Max Technology 3.0 (HKLM\...\IntelNit) (Version: 1.0.0.1032 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.2.42 - Intel Corporation)
Intel® USB 3.1 Device Driver (HKLM\...\{7DFE2F7E-3154-45D6-A468-4725DE033AC8}) (Version: 15.2.30.250 - Intel Corporation)
iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.)
Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Lupas Rename 2000 v5.0 Release (HKLM-x32\...\Lupas Rename 2000_is1) (Version: - Ivan Anton Albarracin)
Malwarebytes versión 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft .NET Framework 4.7 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel 2007 Help Actualización (KB963678) (HKLM-x32\...\{90120000-0016-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59E09C3D-4878-47D9-87DB-6D0018026889}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook 2007 Help Actualización (KB963677) (HKLM-x32\...\{90120000-001A-0C0A-0000-0000000FF1CE}_ENTERPRISE_{59C244C2-0C37-4E85-8F7E-DBDD3958B694}) (Version: - Microsoft)
Microsoft Office Powerpoint 2007 Help Actualización (KB963669) (HKLM-x32\...\{90120000-0018-0C0A-0000-0000000FF1CE}_ENTERPRISE_{F318245D-05AE-4681-A749-A036CE44AF29}) (Version: - Microsoft)
Microsoft Office Word 2007 Help Actualización (KB963665) (HKLM-x32\...\{90120000-001B-0C0A-0000-0000000FF1CE}_ENTERPRISE_{377BA42A-1C84-45D6-94B8-6D00887D172D}) (Version: - Microsoft)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 37.0 (x86 ca) (HKLM-x32\...\Mozilla Firefox 37.0 (x86 ca)) (Version: 37.0 - Mozilla)
Mozilla Firefox 65.0 (x64 ca) (HKLM\...\Mozilla Firefox 65.0 (x64 ca)) (Version: 65.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0 - Mozilla)
Mozilla Thunderbird 24.3.0 (x86 ca) (HKLM-x32\...\Mozilla Thunderbird 24.3.0 (x86 ca)) (Version: 24.3.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero BackItUp 10 (HKLM-x32\...\{68AB6930-5BFF-4FF6-923B-516A91984FE6}) (Version: 5.4.11600.19.100 - Nero AG)
Nero Burning ROM 10 (HKLM-x32\...\{7A5D731D-B4B3-490E-B339-75685712BAAB}) (Version: 10.0.11100.10.100 - Nero AG)
Nero BurnRights 10 (HKLM-x32\...\{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.0.11000.12.100 - Nero AG)
Nero CoverDesigner 10 (HKLM-x32\...\{FCF00A6E-FB58-477A-ABE9-232907105521}) (Version: 5.0.10900.11.100 - Nero AG)
Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.0.10800.7.100 - Nero AG)
Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.0.11000.10.100 - Nero AG)
Nero InfoTool 10 (HKLM-x32\...\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}) (Version: 7.0.10800.8.100 - Nero AG)
Nero MediaHub 10 (HKLM-x32\...\{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}) (Version: 1.0.13400.11.100 - Nero AG)
Nero Multimedia Suite 10 (HKLM-x32\...\{277C1559-4CF7-44FF-8D07-98AA9C13AABD}) (Version: 10.0.13100 - Nero AG)
Nero Recode 10 (HKLM-x32\...\{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}) (Version: 4.6.10900.4.100 - Nero AG)
Nero RescueAgent 10 (HKLM-x32\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.0.10900.9.100 - Nero AG)
Nero SoundTrax 10 (HKLM-x32\...\{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}) (Version: 4.6.10600.2.100 - Nero AG)
Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.0.11200.12.100 - Nero AG)
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0017 - Nero AG)
Nero Vision 10 (HKLM-x32\...\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}) (Version: 7.0.11100.8.100 - Nero AG)
Nero WaveEditor 10 (HKLM-x32\...\{EDCDFAD5-DF80-4600-A493-E9DAD6810230}) (Version: 5.6.10600.2.100 - Nero AG)
NetworkRepairTool (HKLM-x32\...\{86E68F57-FAFE-4052-BDD4-3B90C38236AE}) (Version: 1.2.16.0 - Brother Industries, Ltd.) Hidden
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.0 - Nikon)
Nikon Movie Editor (HKLM-x32\...\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}) (Version: 2.3.0 - Nikon)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.1.5 - )
NVIDIA Controlador de 3D Vision 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.54 - NVIDIA Corporation)
NVIDIA Controlador de audio HD 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation)
Opera Stable 63.0.3368.107 (HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\Opera 63.0.3368.107) (Version: 63.0.3368.107 - Opera Software)
Panel de control de NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden
PDF Settings CS5 (HKLM-x32\...\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}) (Version: 10.0 - Adobe Systems Incorporated) Hidden
Picture Control Utility (HKLM-x32\...\{87441A59-5E64-4096-A170-14EFE67200C3}) (Version: 1.4.2 - Nikon)
Picture Control Utility x64 (HKLM\...\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}) (Version: 1.4.2 - Nikon)
Prism, convertidor de archivos de vídeo (HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\Prism) (Version: 5.23 - NCH Software)
PxMergeModule (HKLM-x32\...\{024521CF-C07E-4F8E-8481-0D75695E03AF}) (Version: 1.00.0000 - Your Company Name) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7727 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.23.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.23.0 - Renesas Electronics Corporation)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.65.0 - Samsung Electronics Co., Ltd.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
Software para dispositivos de chipset Intel® (HKLM-x32\...\{5f313643-63c9-4660-8dae-eb4a80196cb4}) (Version: 10.1.2.19 - Intel(R) Corporation) Hidden
Software Thunderbolt™ (HKLM-x32\...\{B0E8A8CA-5A40-49C3-BE5E-9076664DB9AA}) (Version: 15.3.39.250 - Intel Corporation)
SoftwareUpdateNotification (HKLM-x32\...\{F58E9F54-C092-42C5-B4C3-C4B7C337750B}) (Version: 1.0.7.0 - Brother Insutries Ltd.) Hidden
StatusMonitor (HKLM-x32\...\{40578A7A-6E36-457F-A4F0-45BC37EB61FD}) (Version: 1.20.1.0 - Brother Insutries Ltd.) Hidden
Technitium MAC Address Changer v6.0 (HKLM-x32\...\TMACv6.0) (Version: 6.0 - Technitium)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
USB Video Device (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.8400.10186 - Realtek Semiconductor Corp.)
UsbRepairTool (HKLM-x32\...\{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 - Brother Industries, Ltd.) Hidden
User Profile Manager 2.7 (HKLM-x32\...\{1FFD85A3-F4EB-4E5F-90FF-44EC13D21D02}) (Version: 2.7.1040 - ForensiT)
VCF Manager By Devlomi version 1.1 BETA (HKLM-x32\...\{4B8DB29D-A5EB-4304-A06F-A5DD0392F979}_is1) (Version: 1.1 BETA - Devlomi)
ViewNX 2 (HKLM\...\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}) (Version: 2.3.0 - Nikon)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0-2) (Version: 1.0.26.0 - LunarG, Inc.)
WIDCOMM Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.6680 - Broadcom Corporation)
Windows Driver Package - Dirección General de la Policía (UMPass) SmartCard (10/30/2018 1.0.2.7) (HKLM\...\EC0850ACBB539AD49EB5503A072981871981EB01) (Version: 10/30/2018 1.0.2.7 - Dirección General de la Policía)
Zoom (HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\ZoomUMX) (Version: 4.4 - Zoom Video Communications, Inc.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_05.dll [2012-06-18] () [File not signed]
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2005-06-07] () [File not signed]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2006-12-03] () [File not signed]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [AVG Disk Space Explorer Shell Extension] -> {4838CD50-7E5D-4811-9B17-C47A85539F28} => C:\Program Files (x86)\AVG\AVG PC TuneUp\DseShExt-x64.dll [2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2019-01-10] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2005-06-07] () [File not signed]
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2006-12-03] () [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2016-11-08] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2005-06-07] () [File not signed]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2006-12-03] () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\A-Carles\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default
==================== Loaded Modules (Whitelisted) =============
2017-04-30 21:41 - 2017-04-30 21:40 - 048920064 _____ () [File not signed] C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2017-04-30 23:20 - 2005-06-07 10:26 - 000043008 _____ () [File not signed] C:\Program Files (x86)\WinRAR\rarext64.dll
2017-05-11 20:36 - 2016-09-04 22:27 - 000100352 _____ () [File not signed] C:\Users\A-Carles\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_EScript.ESP
2017-05-11 20:36 - 2016-09-03 10:03 - 010594304 _____ () [File not signed] C:\Users\A-Carles\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_exlang32.esp
2017-05-11 20:36 - 2016-09-03 10:05 - 000014336 _____ () [File not signed] C:\Users\A-Carles\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_Updater.ESP
2017-05-11 20:36 - 2016-09-11 10:39 - 000044032 _____ () [File not signed] C:\Users\A-Carles\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_weblink.ESP
2017-05-15 16:43 - 2016-09-13 19:23 - 000146432 _____ () [File not signed] C:\Users\A-Carles\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_WebPDF.ESP
2015-09-24 16:42 - 2015-09-24 16:42 - 000336896 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\locale\es_es\Acrobat Elements\ContextMenu64.esp
2015-09-24 16:42 - 2015-09-24 16:42 - 001779811 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\plug_ins\EScript.api
2015-09-24 16:42 - 2015-09-24 16:42 - 000106595 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\plug_ins\IA32.api
2015-09-24 16:42 - 2015-09-24 16:42 - 000169059 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\plug_ins\Updater.api
2015-09-24 16:42 - 2015-09-24 16:42 - 000307299 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\plug_ins\weblink.api
2015-09-24 16:42 - 2015-09-24 16:42 - 000767075 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\plug_ins\WebPDF.api
2015-09-24 16:41 - 2015-09-24 16:41 - 001396736 _____ (Adobe Systems Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\SPPlugins\ADMPlugin.apl
2016-11-08 13:44 - 2016-11-08 13:44 - 000851456 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\CNext\CNext\atiacm64.dll
2016-11-08 13:44 - 2016-11-08 13:44 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\CNext\CNext\atiamesp.dll
2019-07-11 23:09 - 2015-12-31 15:15 - 000077312 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AeroadminService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-10-29 09:16 - 2019-10-29 09:02 - 000041933 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 expertdiets.ml
127.0.0.1 browserr.top
127.0.0.1 cnewvi.com # s'ha obert sola sense fer res dia 29/10/2019
127.0.0.1 http://es.msn.com/ # Messenger
127.0.0.1 activate.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip4.adobe.com
127.0.0.1 adobe.activate.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 crl.verisign.net
127.0.0.1 CRL.VERISIGN.NET.*
127.0.0.1 ereg.adobe.com
127.0.0.1 ereg.wip.adobe.com
127.0.0.1 ereg.wip1.adobe.com
127.0.0.1 ereg.wip2.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 ereg.wip4.adobe.com
127.0.0.1 hl2rcv.adobe.com
There are 1082 more lines.
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files\ImageMagick-6.9.0-Q16_64bit;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver;;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\WIDCOMM\Bluetooth Software\syswow64;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\Skype\Phone\
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\Control Panel\Desktop\\Wallpaper ->
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\startupreg: ASUS AiChargerPlus Execute => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: NBAgent => "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe No File
FirewallRules: [{7087365F-0924-4781-A368-D40D3A93A275}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BAD92ABB-2C12-4EA6-8300-197CBC467675}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A1A597AD-6721-42E6-B571-A73B34C13889}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{10F85DD6-8433-4691-8AA9-ACF335C3CE83}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DCF54610-59C7-4C71-A99E-D76DCBC695E3}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9E06039F-4289-4BB6-960F-C2A42B9A6173}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E33CA815-6228-4DC0-AA78-15ECCFE73ADB}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{C45D37E9-6B85-4168-A8E6-966A9FE10B41}C:\program files (x86)\adobe\adobe dreamweaver cs5\dreamweaver.exe] => (Allow) C:\program files (x86)\adobe\adobe dreamweaver cs5\dreamweaver.exe (Adobe Systems Incorporated -> Adobe Systems, Inc.)
FirewallRules: [UDP Query User{37A484E5-4C6F-4D07-B961-8807E49AA404}C:\program files (x86)\adobe\adobe dreamweaver cs5\dreamweaver.exe] => (Allow) C:\program files (x86)\adobe\adobe dreamweaver cs5\dreamweaver.exe (Adobe Systems Incorporated -> Adobe Systems, Inc.)
FirewallRules: [TCP Query User{57A3A3E0-E1D1-496F-A026-7AA707642469}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{A16504BB-5883-4F37-AF17-02534431F2E0}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{37DD9FBD-ECE9-4509-964E-BCC74CC3D2E0}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{47742306-E5C6-4920-984B-95AECAA7E3FD}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{E4C03996-F5C6-4AD1-8ABD-C2C9005124EC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:931.41 GB) (Free:611.11 GB) (66%)
Check "winmgmt" service or repair WMI.
==================== Faulty Device Manager Devices ============
Name: Bluetooth USB module
Description: Bluetooth USB module
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Broadcom
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Intel(R) Ethernet Connection (2) I218-V
Description: Intel(R) Ethernet Connection (2) I218-V
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: e1dexpress
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/29/2019 05:38:09 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error
Error: (10/29/2019 05:37:54 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error
Error: (10/29/2019 05:34:46 PM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description: ATI EEU Service event error
Error: (10/29/2019 05:20:19 PM) (Source: MySQL) (EventID: 100) (User: )
Description: Incorrect definition of table performance_schema.replication_group_member_stats: expected column 'COUNT_TRANSACTIONS_ROWS_VALIDATING' at position 6, found 'COUNT_TRANSACTIONS_VALIDATING'.For more information, see Help and Support Center at http://www.mysql.com.
Error: (10/29/2019 05:20:19 PM) (Source: MySQL) (EventID: 100) (User: )
Description: Incorrect definition of table performance_schema.replication_connection_status: expected column 'RECEIVED_TRANSACTION_SET' at position 7 to have type longtext, found type text.For more information, see Help and Support Center at http://www.mysql.com.
Error: (10/29/2019 05:20:18 PM) (Source: MySQL) (EventID: 100) (User: )
Description: InnoDB: Could not find a valid tablespace file for `mysql/time_zone_transition_type`. Please refer to http://dev.mysql.com/doc/refman/5.7/en/innodb-troubleshooting-datadict.html for how to resolve the issue.For more information, see Help and Support Center at http://www.mysql.com.
Error: (10/29/2019 05:20:18 PM) (Source: MySQL) (EventID: 100) (User: )
Description: InnoDB: Cannot open datafile for read-only: '.\mysql\time_zone_transition_type.ibd' OS error: 71For more information, see Help and Support Center at http://www.mysql.com.
Error: (10/29/2019 05:20:18 PM) (Source: MySQL) (EventID: 100) (User: )
Description: InnoDB: Operating system error number 2 in a file operation.For more information, see Help and Support Center at http://www.mysql.com.
System errors:
=============
Error: (10/29/2019 05:46:35 PM) (Source: DCOM) (EventID: 10016) (User: PC-A75)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
y APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
al usuario PC-A75\A-Carles con SID (S-1-5-21-3520378656-2983391177-1615256727-1022) en la dirección LocalHost (con LRPC). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.
Error: (10/29/2019 05:46:35 PM) (Source: DCOM) (EventID: 10016) (User: PC-A75)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
y APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
al usuario PC-A75\A-Carles con SID (S-1-5-21-3520378656-2983391177-1615256727-1022) en la dirección LocalHost (con LRPC). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.
Error: (10/29/2019 05:46:35 PM) (Source: DCOM) (EventID: 10016) (User: PC-A75)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
y APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
al usuario PC-A75\A-Carles con SID (S-1-5-21-3520378656-2983391177-1615256727-1022) en la dirección LocalHost (con LRPC). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.
Error: (10/29/2019 05:46:16 PM) (Source: DCOM) (EventID: 10016) (User: PC-A75)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
y APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
al usuario PC-A75\A-Carles con SID (S-1-5-21-3520378656-2983391177-1615256727-1022) en la dirección LocalHost (con LRPC). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.
Error: (10/29/2019 05:46:16 PM) (Source: DCOM) (EventID: 10016) (User: PC-A75)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
y APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
al usuario PC-A75\A-Carles con SID (S-1-5-21-3520378656-2983391177-1615256727-1022) en la dirección LocalHost (con LRPC). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.
Error: (10/29/2019 05:46:16 PM) (Source: DCOM) (EventID: 10016) (User: PC-A75)
Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
y APPID
{56BE716B-2F76-4DFA-8702-67AE10044F0B}
al usuario PC-A75\A-Carles con SID (S-1-5-21-3520378656-2983391177-1615256727-1022) en la dirección LocalHost (con LRPC). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.
Error: (10/29/2019 05:18:51 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.
Ruta de acceso del módulo: C:\Windows\System32\bcmihvsrv64.dll
Error: (10/29/2019 05:18:51 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN se detuvo inesperadamente.
Ruta de acceso del módulo: C:\Windows\System32\bcmihvsrv64.dll
CodeIntegrity:
===================================
Date: 2019-10-26 00:20:25.702
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume11\0000__FAMILIA-DOCS\TIETA_ASSUN\2018_Recuperacio Perdut\Recuperacio\GamePanel.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2019-10-26 00:20:25.351
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume11\0000__FAMILIA-DOCS\TIETA_ASSUN\2018_Recuperacio Perdut\Recuperacio\GamePanel.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2019-10-26 00:20:24.995
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume11\0000__FAMILIA-DOCS\TIETA_ASSUN\2018_Recuperacio Perdut\Recuperacio\GamePanel.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2019-10-26 00:20:24.623
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume11\0000__FAMILIA-DOCS\TIETA_ASSUN\2018_Recuperacio Perdut\Recuperacio\GamePanel.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2019-10-26 00:20:24.195
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume11\0000__FAMILIA-DOCS\TIETA_ASSUN\2018_Recuperacio Perdut\Recuperacio\GamePanel_1.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2019-10-26 00:20:23.837
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume11\0000__FAMILIA-DOCS\TIETA_ASSUN\2018_Recuperacio Perdut\Recuperacio\GamePanel_1.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2019-10-26 00:20:23.481
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume11\0000__FAMILIA-DOCS\TIETA_ASSUN\2018_Recuperacio Perdut\Recuperacio\GamePanel_1.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
Date: 2019-10-26 00:20:23.108
Description:
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume11\0000__FAMILIA-DOCS\TIETA_ASSUN\2018_Recuperacio Perdut\Recuperacio\GamePanel_1.exe porque el conjunto de hashes de imagen por página no se encuentra en el sistema.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1003 09/13/2016
Motherboard: ASUSTeK COMPUTER INC. X99-DELUXE II
Processor: Intel(R) Core(TM) i7-6800K CPU @ 3.40GHz
Percentage of memory in use: 14%
Total physical RAM: 32665.95 MB
Available physical RAM: 27862.92 MB
Total Virtual: 65330.04 MB
Available Virtual: 60654.98 MB
==================== Drives ================================
Drive c: (Windows - Disc) (Fixed) (Total:931.41 GB) (Free:611.11 GB) NTFS
Drive d: (DOCUMENTS_D) (Fixed) (Total:1863.01 GB) (Free:488.07 GB) NTFS
Drive e: (FOTO_SSHD) (Fixed) (Total:1863.01 GB) (Free:127.2 GB) NTFS
Drive g: (FOTOS_G_10Tb) (Fixed) (Total:9313.87 GB) (Free:2077.56 GB) NTFS
Drive l: (Lightroom) (Fixed) (Total:931.39 GB) (Free:659.35 GB) NTFS
Drive m: (FOTOS_M) (Fixed) (Total:3725.9 GB) (Free:30.21 GB) NTFS
Drive p: (EXPORTAR_EMBA) (Fixed) (Total:1863.01 GB) (Free:17.37 GB) NTFS
Drive w: (CLIENTS) (Fixed) (Total:931.41 GB) (Free:133.21 GB) NTFS
\\?\Volume{3583e2e5-2e04-11e7-9ea0-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
==================== MBR & Partition Table ====================
==================== End of Addition.txt =======================Bien, pues hasta aquí mi historial por hoy.
El sistema del foro no me deja publicar más mensajes hasta dentro de 14 horas, porque dice que ya he superado mi límite de mensajes por hoy, algo que no comprendo.
Así que para poder escribir éste mensaje, me he visto obligado a reeditar los anteriores y recomponer el texto para que me ocuparan menos espacio y así el último mensaje me ha quedado libre para poder escribir éste resumen.
Después de las operaciones realizadas, parecía que ya estaba todo resuelto y ahora mismo acaba de sucederme de nuevo.
Un pantallazo repentino, como si una ventana de navegador o del explorador se abre de repente y vuelve a cerrarse, un fenómeno tan rápido que no te da tiempo a ver qué es, pero que es evidentemente perceptible.
No se si podría tener alguna relación con Google Chrome.
Hace pocos días instalé una extensión llamada: Mobile Browser Emulator.
No suelo instalar extensiones, pero ésta la bajé del sitio web oficial de Google, para poder subir fotos al Instagram desde el PC.
En principio parecía fiable, pero visto lo visto, no se si tiene relación o no.
Bien… y ahora sigue estos pasos, MUY Importante Realiza una copia de seguridad del registro :
Para hacerlo descarga DelFix.exe(en tu escritorio).
Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).
Atención, ahora marca/selecciona únicamente la casilla Create registry backup, las demás casillas NO.
Pulsar en Run.
Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.
Con los demás programas cerrados ve a Inicio Ejecutar y escribe Notepad.exe.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\MountPoints2: {61758add-56bf-11e8-814a-704d7bb3261e} - L:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\MountPoints2: {ba9ae526-118b-11e9-aa0f-704d7bb3261e} - K:\HiSuiteDownLoader.exe
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
URLSearchHook: [S-1-5-21-3520378656-2983391177-1615256727-1000] ATTENTION => Default URLSearchHook is missing
URLSearchHook: [S-1-5-21-3520378656-2983391177-1615256727-1007] ATTENTION => Default URLSearchHook is missing
URLSearchHook: [S-1-5-21-3520378656-2983391177-1615256727-1012] ATTENTION => Default URLSearchHook is missing
FF Extension: (StrataStripe) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2017-08-13_ARES\Extensions\{cbbbbcd0-3cf7-11dd-ae16-0800200c9a66}.xpi [2013-01-11] [Legacy] [not signed]
FF Extension: (No Name) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles_Marcadors\Extensions\instalats [2019-05-13] [not signed]
FF Extension: (No Name) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_Carles-OK\extensions\{f69e22c7-bc50-414a-9269-0f5c344cd94c}.xpi [not found]
FF Extension: (No Name) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_Carles-OK\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [not found]
FF Extension: (No Name) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles-OK\Extensions\instalats [2019-01-23] [not signed]
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR StartupUrls: Default -> "hxxps://web.whatsapp.com/","hxxps://web.telegram.org/","hxxp://agricultura.gencat.cat/ca/serveis/ofertes-treball/","hxxps://www.hofmann-pro.com/","hxxp://www.concordspain.com/","hxxps://www.conos-paradise.com/en/shop/country.html?iso=es&m=lithops","hxxps://tramits.paeria.cat/Ciutadania/DetallTramit.aspx?Cercador=True&IdTramit=1597"
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
ENDGuárdalo bajo el nombre de FIXLIST.TXT en el escritorio Esto es muy importante.
Nota Es importante que la herramienta FRST.exe(Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.
Y ahora inicia tu equipo desde el Modo Seguro – con funciones de Red, de Windows
Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).
Presionar el botón FIX y aguardar a que termine.
La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).
Pegar el contenido de este fichero en tu próxima respuesta.
Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.
Saludos.
Hola Javier. Gracias por tu ayuda. He hecho lo que me dices y aqui te pongo el codigo del Fixlog.txt
Fix result of Farbar Recovery Scan Tool (x64) Version: 30-10-2019 01
Ran by PC-ADMIN (31-10-2019 00:37:31) Run:1
Running from C:\Users\A-Carles\Desktop
Loaded Profiles: PC-ADMIN & A-Carles (Available Profiles: PC-ADMIN & ARES & A-Carles_1Monitor & A-Carles)
Boot Mode: Safe Mode (with Networking)
==============================================
fixlist content:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\MountPoints2: {61758add-56bf-11e8-814a-704d7bb3261e} - L:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\...\MountPoints2: {ba9ae526-118b-11e9-aa0f-704d7bb3261e} - K:\HiSuiteDownLoader.exe
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
URLSearchHook: [S-1-5-21-3520378656-2983391177-1615256727-1000] ATTENTION => Default URLSearchHook is missing
URLSearchHook: [S-1-5-21-3520378656-2983391177-1615256727-1007] ATTENTION => Default URLSearchHook is missing
URLSearchHook: [S-1-5-21-3520378656-2983391177-1615256727-1012] ATTENTION => Default URLSearchHook is missing
FF Extension: (StrataStripe) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2017-08-13_ARES\Extensions\{cbbbbcd0-3cf7-11dd-ae16-0800200c9a66}.xpi [2013-01-11] [Legacy] [not signed]
FF Extension: (No Name) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles_Marcadors\Extensions\instalats [2019-05-13] [not signed]
FF Extension: (No Name) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_Carles-OK\extensions\{f69e22c7-bc50-414a-9269-0f5c344cd94c}.xpi [not found]
FF Extension: (No Name) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_Carles-OK\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [not found]
FF Extension: (No Name) - D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles-OK\Extensions\instalats [2019-01-23] [not signed]
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR StartupUrls: Default -> "hxxps://web.whatsapp.com/","hxxps://web.telegram.org/","hxxp://agricultura.gencat.cat/ca/serveis/ofertes-treball/","hxxps://www.hofmann-pro.com/","hxxp://www.concordspain.com/","hxxps://www.conos-paradise.com/en/shop/country.html?iso=es&m=lithops","hxxps://tramits.paeria.cat/Ciutadania/DetallTramit.aspx?Cercador=True&IdTramit=1597"
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************
Error: Restore point can only be created in normal mode.
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge" => removed successfully
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{61758add-56bf-11e8-814a-704d7bb3261e} => removed successfully
HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ba9ae526-118b-11e9-aa0f-704d7bb3261e} => removed successfully
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\system32\GroupPolicy\User => moved successfully
D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2017-08-13_ARES\Extensions\{cbbbbcd0-3cf7-11dd-ae16-0800200c9a66}.xpi => moved successfully
D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles_Marcadors\Extensions\instalats => moved successfully
"D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_Carles-OK\extensions\{f69e22c7-bc50-414a-9269-0f5c344cd94c}.xpi" => not found
"D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_Carles-OK\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi" => not found
D:\- 00 - PERFILS USUARI\Mozilla-Firefox_Funcionant\2018-06-26_Perfil-Firefox_65_Carles-OK\Extensions\instalats => moved successfully
"HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-23] (Oracle America, Inc." => not found
C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll => moved successfully
"HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-23] (Oracle America, Inc." => not found
C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll => moved successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
"Chrome StartupUrls" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
========= RemoveProxy: =========
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-3520378656-2983391177-1615256727-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-3520378656-2983391177-1615256727-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-3520378656-2983391177-1615256727-1022\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
========= End of RemoveProxy: =========
========= netsh winsock reset =========
El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.
========= End of CMD: =========
========= ipconfig /renew =========
Configuraci¢n IP de Windows
No se puede realizar ninguna operaci¢n en Conexi¢n de red inal mbrica 2 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de red inal mbrica mientras los medios
est‚n desconectados.
Adaptador de LAN inal mbrica Conexi¢n de red inal mbrica 2:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de LAN inal mbrica Conexi¢n de red inal mbrica:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de Ethernet Conexi¢n de rea local:
Sufijo DNS espec¡fico para la conexi¢n. . :
V¡nculo: direcci¢n IPv6 local. . . : fe80::78ce:18d9:46a1:37d2%10
Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.13
M scara de subred . . . . . . . . . . . . : 255.255.255.0
Puerta de enlace predeterminada . . . . . : 192.168.0.1
Adaptador de t£nel Teredo Tunneling Pseudo-Interface:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de t£nel isatap.{C60BBFB5-0A2A-4B22-A94E-AC5756808408}:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
========= End of CMD: =========
========= ipconfig /flushdns =========
Configuraci¢n IP de Windows
Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
========= End of CMD: =========
========= bitsadmin /reset /allusers =========
BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.
BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.
Unable to connect to BITS - 0x8007042c
No se puede iniciar el servicio o grupo de dependencia.
========= End of CMD: =========
========= netsh advfirewall reset =========
Aceptar
========= End of CMD: =========
========= netsh advfirewall set allprofiles state ON =========
Aceptar
========= End of CMD: =========
========= netsh int ipv4 reset =========
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.
========= End of CMD: =========
========= netsh int ipv6 reset =========
Interfaz se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.
========= End of CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 5896624 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 12184013 B
Edge => 0 B
Chrome => 159862 B
Firefox => 19076663 B
Opera => 124966 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 83725 B
systemprofile32 => 150245 B
LocalService => 216473 B
NetworkService => 282701 B
PC-ADMIN => 2416473 B
ARES => 3804541 B
A-Carles_1Monitor => 115580859 B
A-Carles => 12753527156 B
RecycleBin => 0 B
EmptyTemp: => 12 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 00:37:38 ====Y mientras escribo éstas líneas, sigo viendo intentos de abrir ventanas.
En algunos casos salta el antivirus advirtiendo de un intento de conexión no segura.
Todas las que consigo ver o las que detecta el antivirus y me aparece el detalle, las bloqueo con el archivo hosts.
127.0.0.1 browserr.top
127.0.0.1 cnewvi.com # se abrió sola el 29/10/2019
127.0.0.1 expertdiets.ml # bloqueada por el antivirus
127.0.0.1 go.onclasrv.com # bloqueada por el antivirus
127.0.0.1 larati.net
127.0.0.1 www.tradeadexchange.comNo se si me dejará poner una imagen, pero lo intento, para mostrarte una de las capturas de pantalla del antivirus.
Hola.
Veamos…tienes TODAS las actualizaciones del sistema operativo realizadas…pásate por windows update y compruebalo hasta que te indique que NO existe ninguna por hacer. 
Esos problemas te aparecen cuando navegas con cualquier navegador de los que tienes en tu equipo… o SOLO con alguno en particular…??
Saludos.
Hola. Tu primera frase del último mensaje, no se si es una afirmación o una pregunta. Tengo las actualizaciones de Windows automáticas. Cuando dejo el ordenador encendido, si pasa cierto tiempo inactivo comienzan a descargarse automáticamente las actualizaciones de Windows y se reinicia. Por tanto, creo que sí, que lo tengo completamente actualizado. En W.Update dice que no hay actualizaciones importantes que descargar (sí alguna de optativa)
Visto lo visto, no se si lo que me ocurre tiene que ver con ningun navegador en concreto.
Sí es verdad que normalmente me sucede mientras tengo uno o dos abiertos. Normalmente trabajo con Firefox y el Chrome lo uso únicamente para redes sociales (Instagram y parecidos). Además salta el antivirus avisando de intentos de conexiones.
Pero la verdad es que sólamente me entero por eso, por el antivirus. También en algun caso mientras estoy escribiendo un mensaje, de repente se me corta la escritura y tengo que pinchar de nuevo en la ventana para poder seguir escribiendo.
Ahora llevo media hora conectado y no ha ocurrido nada durante ésta media hora. Casi me extraña incluso, tanta paz…
Lo que sí hice ayer es desinstalar el complemento de Chrome para conectar insgagram a través del PC.
Por lo demás, las cosas que se quitaron de Firefox, las considero totalmente innecesarias. Por ejemplo, una entrada de registro que yo mismo creé para que no me estuviera mareando constantemente el Firefox, instándome a instalar la última actualización y que me tenía cabreado. Ahora tendré que crear nuevamente esa clave de registro. Y también alguna extensión de Firefox, que tendré que instalar de nuevo, pues llevaba muchos años utilizándolas sin ningún problema y no se porqué se han desinstalado.
Por lo demás, parece que a pesar de que ésta mañana sí saltaban ventanas emergentes, ahora llevo un buen rato sin ellas. A ver cuánto tiempo dura.
Gracias por el tiempo.
De momento NO instales nada, ya lo harás cuando terminemos de verificar tu equipo. 
De momento verifica SI los mensajes salen únicamente al usar FF o Chrome, úsalos de forma individual para poder determinar de dónde proviene el problema.
Saludos.
Bien, pues ahora he estado consultando desde Google Chrome únicamente, y me ha sucedido lo de la ventanita que se abre y cierra inmediatamente.
Quizás eso de que se cierre inmediatamente puede ser porque tengo un archivo “hosts” bastante elaborado que me bloquea muchísimas conexiones, y es probable que el supuesto “virus” intente conectarse y las conexiones sean bloqueadas por el “hosts”. Y cuando intenta conectarse a una web que no está incluida en el hosts, entonces me salta el antivirus. Bueno, ésta es mi interpretación de los hechos, vistos los síntomas. Aunque sigo sin saber con certeza si el problema viene exclusivamente del navegador.
Por un momento pensé si podría ser que hubiera aceptado sin querer alguna solicitud de notificaciones de alguna web. Pero revisé en configuración de chrome y no es el caso. Así que esa via, a priori la descartaría.
Tengo la tentación de desinstalar Google Chrome y volver a instalarlo de nuevo.
Como es un navegador que no tengo personalizado, no perdería gran cosa.
Tampoco se si eso solucionará el problema.
En todo caso, debería desinstalar cualquier resíduo que quede del programa, porque con desinstalar sólamente, no basta. Quedan resíduos en el registro y en la carpeta “Appdata” del usuario que supongo que también habrá que eliminar. Y no se si existe alguna otra ubicación donde puedan quedar restos.
Saludos, Carles
Hola @KSFOTO.
Veamos…vamos a intentar resetear el navegador de Chrome, es posible que la ultima extensión que comentaste que habías instalado sea la responsable de esas ventanas. 
Si tienes Chrome con la opción de “Sincronización” activada, lo primero que debes hacer es desactivar esa opción, revisando estos pasos :
Y comprueba/desactiva la opción “Sincronizar todo” y después de hacerlo :
Despues de hacerlo cierras el navegador lo vuelves a iniciar y compruebas el problema.
Nos comentas resultados.
Saludos.