Muy buenos días, ya me había pasado alguna vez por este foro, cuando aún era infrospyware. Ahora en esta computadora por estar descargando programas de edición de vídeo creo que mi computadora contrajo un virus, volviéndose casi inservible, tarda muchísimo en encender, generalmente me aparecen pop-ups en windows de páginas que no estoy usando como Netflix, Skype y demás. Esto que luego la pc comienza hacer acciones raras por sí sola. Espero me puedan brindar ayuda, se los agradeceré mucho. Gracias de antemano
Hola @Yayo, Bienvenido al nuevo Foro!!!
Realiza los siguientes pasos, aunque hayas hecho alguno, sin cambiar el orden:
1) Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware, revisa en detalle el manual, para que sepas usarlo y configurarlo.
- Realiza un Análisis personalizado, actualizando si te lo pide.
- Pulsar en “Cuarentena seleccionado” para enviarlo a la cuarentena y Reinicias el sistema.
- En el apartado del manual Historial de detecciones encontrarás el reporte de MBAM, clic en Exportar >> Copiar al portapapeles.
2) Descarga AdwCleaner | InfoSpyware en el escritorio.
- Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus.
- Cierra también todos los programas que tengas abiertos.
- Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador".)
- Pulsar en el botón Escanear, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Limpiar.
- Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
- Guardas el reporte que te aparecerá, para copiarlo y pegarlo en tu próxima respuesta.
- El informe también se puede encontrar en C:\AdwCleaner\AdwCleaner[C1].txt
3) Descarga CCleaner
- Instala Ccleaner
- Abres Ccleaner en la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine >> clic en ejecutar limpiador
- Clic en la pestaña Registro >> clic en buscar problemas esperas que termine >> clic en Reparar Seleccionadas y haces una copia de seguridad
- Vuelves a darle clic en buscar problemas hasta que no encuentre ninguno.
Pega los reportes de Malwarebytes y AdwCleaner y comentas como va el problema.
¿Cómo pegar reportes en el foro?
Un saludo
Hola muy buen día, te paso los reportes, sentí la PC un poco más rápida, pero el inicio aún es tardado, saludos.
El de Malaware:
> -Detalles del registro-
> Fecha del análisis: 8/8/20
> Hora del análisis: 16:54
> Archivo de registro: cb5be566-d9c1-11ea-9729-9822efbf1114.json
>
> -Información del software-
> Versión: 4.1.2.73
> Versión de los componentes: 1.0.1003
> Versión del paquete de actualización: 1.0.28173
> Licencia: Prueba
>
> -Información del sistema-
> SO: Windows 10 (Build 18362.959)
> CPU: x64
> Sistema de archivos: NTFS
> Usuario: LAPTOP-FCQSGV6L\Eduardo Sanchez
>
> -Resumen del análisis-
> Tipo de análisis: Análisis personalizado
> Análisis iniciado por:: Manual
> Resultado: Completado
> Objetos analizados: 126879
> Amenazas detectadas: 0
> Amenazas en cuarentena: 0
> Tiempo transcurrido: 2 min, 13 seg
>
> -Opciones de análisis-
> Memoria: Activado
> Inicio: Activado
> Sistema de archivos: Desactivado
> Archivo: Activado
> Rootkits: Desactivado
> Heurística: Activado
> PUP: Detectar
> PUM: Detectar
>
> -Detalles del análisis-
> Proceso: 0
> (No hay elementos maliciosos detectados)
>
> Módulo: 0
> (No hay elementos maliciosos detectados)
>
> Clave del registro: 0
> (No hay elementos maliciosos detectados)
>
> Valor del registro: 0
> (No hay elementos maliciosos detectados)
>
> Datos del registro: 0
> (No hay elementos maliciosos detectados)
>
> Secuencia de datos: 0
> (No hay elementos maliciosos detectados)
>
> Carpeta: 0
> (No hay elementos maliciosos detectados)
>
> Archivo: 0
> (No hay elementos maliciosos detectados)
>
> Sector físico: 0
> (No hay elementos maliciosos detectados)
>
> WMI: 0
> (No hay elementos maliciosos detectados)
>
>
> (end)
> Malwarebytes
>
> www.malwarebytes.com
>
> -Detalles del registro-
>
> Fecha del análisis: 8/8/20
>
> Hora del análisis: 16:54
>
> Archivo de registro: cb5be566-d9c1-11ea-9729-9822efbf1114.json
>
> -Información del software-
>
> Versión: 4.1.2.73
>
> Versión de los componentes: 1.0.1003
>
> Versión del paquete de actualización: 1.0.28173
>
> Licencia: Prueba
>
> -Información del sistema-
>
> SO: Windows 10 (Build 18362.959)
>
> CPU: x64
>
> Sistema de archivos: NTFS
>
> Usuario: LAPTOP-FCQSGV6L\Eduardo Sanchez
>
> -Resumen del análisis-
>
> Tipo de análisis: Análisis personalizado
>
> Análisis iniciado por:: Manual
>
> Resultado: Completado
>
> Objetos analizados: 126879
>
> Amenazas detectadas: 0
>
> Amenazas en cuarentena: 0
>
> Tiempo transcurrido: 2 min, 13 seg
>
> -Opciones de análisis-
>
> Memoria: Activado
>
> Inicio: Activado
>
> Sistema de archivos: Desactivado
>
> Archivo: Activado
>
> Rootkits: Desactivado
>
> Heurística: Activado
>
> PUP: Detectar
>
> PUM: Detectar
>
> -Detalles del análisis-
>
> Proceso: 0
>
> (No hay elementos maliciosos detectados)
>
> Módulo: 0
>
> (No hay elementos maliciosos detectados)
>
> Clave del registro: 0
>
> (No hay elementos maliciosos detectados)
>
> Valor del registro: 0
>
> (No hay elementos maliciosos detectados)
>
> Datos del registro: 0
>
> (No hay elementos maliciosos detectados)
>
> Secuencia de datos: 0
>
> (No hay elementos maliciosos detectados)
>
> Carpeta: 0
>
> (No hay elementos maliciosos detectados)
>
> Archivo: 0
>
> (No hay elementos maliciosos detectados)
>
> Sector físico: 0
>
> (No hay elementos maliciosos detectados)
>
> WMI: 0
>
> (No hay elementos maliciosos detectados)
>
> (end)
El de AdwCleaner:
> # -------------------------------
> # Malwarebytes AdwCleaner 8.0.7.0
> # -------------------------------
> # Build: 07-22-2020
> # Database: 2020-07-20.1 (Cloud)
> # Support: https://www.malwarebytes.com/support
> #
> # -------------------------------
> # Mode: Clean
> # -------------------------------
> # Start: 08-08-2020
> # Duration: 00:00:19
> # OS: Windows 10 Home Single Language
> # Cleaned: 63
> # Failed: 1
>
>
> ***** [ Services ] *****
>
> No malicious services cleaned.
>
> ***** [ Folders ] *****
>
> Deleted C:\Users\Default\AppData\Local\Host App Service
> Deleted C:\Users\Public\App Explorer
> Not Deleted C:\Users\Eduardo Sanchez\AppData\Local\Host App Service
>
> ***** [ Files ] *****
>
> Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\App Explorer.lnk
> Deleted C:\Windows\System32\Tasks_Migrated\App Explorer
>
> ***** [ DLL ] *****
>
> No malicious DLLs cleaned.
>
> ***** [ WMI ] *****
>
> No malicious WMI cleaned.
>
> ***** [ Shortcuts ] *****
>
> No malicious shortcuts cleaned.
>
> ***** [ Tasks ] *****
>
> Deleted C:\Windows\System32\Tasks\APP EXPLORER
>
> ***** [ Registry ] *****
>
> Deleted HKCU\Software\App Host Service
> Deleted HKCU\Software\Host App Service
> Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
> Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD8F431B-5166-4608-B2DE-F2D7606F6F19}
> Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\App Explorer
> Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
>
> ***** [ Chromium (and derivatives) ] *****
>
> No malicious Chromium entries cleaned.
>
> ***** [ Chromium URLs ] *****
>
> No malicious Chromium URLs cleaned.
>
> ***** [ Firefox (and derivatives) ] *****
>
> Deleted Amazon Assistant for Firefox - [email protected]
>
> ***** [ Firefox URLs ] *****
>
> No malicious Firefox URLs cleaned.
>
> ***** [ Hosts File Entries ] *****
>
> No malicious hosts file entries cleaned.
>
> ***** [ Preinstalled Software ] *****
>
> Deleted Preinstalled.ACERAOPFramework Folder C:\Program Files (x86)\ACER\AOP FRAMEWORK
> Deleted Preinstalled.ACERClear.fiShellExtension Registry HKLM\Software\Classes\CLSID\{ED32C084-BABB-11E1-B491-D4D66088709B}
> Deleted Preinstalled.ACERClear.fiShellExtension Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{ED32C084-BABB-11E1-B491-D4D66088709B}
> Deleted Preinstalled.AcerCareCenter Folder C:\Program Files (x86)\ACER\CARE CENTER
> Deleted Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A0BAE464-D412-4692-A3A3-3AE9FC003CF5}
> Deleted Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6CE5B316-8976-4BD5-B430-A81BA76CA008}
> Deleted Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A0BAE464-D412-4692-A3A3-3AE9FC003CF5}
> Deleted Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ACCAgent
> Deleted Preinstalled.AcerCareCenter Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ACCBackgroundApplication
> Deleted Preinstalled.AcerCareCenter Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1AF41E84-3408-499A-8C93-8891F0612719}
> Deleted Preinstalled.AcerCareCenter Task C:\Windows\System32\Tasks\ACCAGENT
> Deleted Preinstalled.AcerCareCenter Task C:\Windows\System32\Tasks\ACCBACKGROUNDAPPLICATION
> Deleted Preinstalled.AcerCollection Folder C:\Program Files (x86)\ACER\ACER COLLECTION
> Deleted Preinstalled.AcerCollection Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{688ECDE1-4EC3-4A7C-8B05-4308FF57E9EA}
> Deleted Preinstalled.AcerCollection Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{849B39BF-9008-4510-A599-8FF87920DB7E}
> Deleted Preinstalled.AcerCollection Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Acer Collection Application
> Deleted Preinstalled.AcerCollection Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Acer Collection Monitor Application
> Deleted Preinstalled.AcerCollection Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{8CD449EA-BBA0-477F-AFF9-9AF6E8C50EF2}
> Deleted Preinstalled.AcerCollection Task C:\Windows\System32\Tasks\ACER COLLECTION APPLICATION
> Deleted Preinstalled.AcerCollection Task C:\Windows\System32\Tasks\ACER COLLECTION MONITOR APPLICATION
> Deleted Preinstalled.AcerConfigurationManager Folder C:\Program Files (x86)\ACER\AMUNDSEN\2.1.16258
> Deleted Preinstalled.AcerConfigurationManager Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5045DC81-C5AE-4043-8CC1-0C6EF6E5CD46}
> Deleted Preinstalled.AcerConfigurationManager Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AcerCMUpdateTask2.1.16258
> Deleted Preinstalled.AcerConfigurationManager Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{414D554E-4453-454E-0201-000000016258}
> Deleted Preinstalled.AcerConfigurationManager Task C:\Windows\System32\Tasks\ACERCMUPDATETASK2.1.16258
> Deleted Preinstalled.AcerGames Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ACER GAMES
> Deleted Preinstalled.AcerJumpstart Folder C:\Program Files (x86)\ACER\ACER JUMPSTART
> Deleted Preinstalled.AcerJumpstart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{8B441B85-0AFA-4EB3-A756-A47453481D2D}
> Deleted Preinstalled.AcerPortal Folder C:\ProgramData\ACER\ACER PORTAL
> Deleted Preinstalled.AcerPortal Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE7D1FB2-E017-4BC6-8105-C9C7C3A53C56}
> Deleted Preinstalled.AcerPortal Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FB75F4E7-07BA-4E0B-9604-17C430F215F2}
> Deleted Preinstalled.AcerPortal Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AcerCloud
> Deleted Preinstalled.AcerPortal Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MonitorAcerPortal
> Deleted Preinstalled.AcerPortal Task C:\Windows\System32\Tasks\ACERCLOUD
> Deleted Preinstalled.AcerPortal Task C:\Windows\System32\Tasks\MONITORACERPORTAL
> Deleted Preinstalled.AcerQuickAccess Folder C:\Program Files\ACER\ACER QUICK ACCESS
> Deleted Preinstalled.AcerQuickAccess Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{02C5645A-51BD-42BA-BD40-8404B5962572}
> Deleted Preinstalled.AcerQuickAccess Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A7D7A19A-1A03-4833-AF8C-0EAAD25EBDDC}
> Deleted Preinstalled.AcerQuickAccess Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Power Button
> Deleted Preinstalled.AcerQuickAccess Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Quick Access
> Deleted Preinstalled.AcerQuickAccess Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8BBF04F1-C68A-441C-B5EF-446EE9960EAF}
> Deleted Preinstalled.AcerQuickAccess Task C:\Windows\System32\Tasks\POWER BUTTON
> Deleted Preinstalled.AcerQuickAccess Task C:\Windows\System32\Tasks\QUICK ACCESS
> Deleted Preinstalled.AcerUEIPFramework Folder C:\Program Files\ACER\USER EXPERIENCE IMPROVEMENT PROGRAM\FRAMEWORK
> Deleted Preinstalled.AcerUEIPFramework Folder C:\Program Files\ACER\USER EXPERIENCE IMPROVEMENT PROGRAM\PLUGIN\APPMONITOR
> Deleted Preinstalled.AcerUEIPFramework Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6B97B92D-370D-4CC0-B2D6-8813B568F9F6}
> Deleted Preinstalled.AcerUEIPFramework Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\UbtFrameworkService
> Deleted Preinstalled.AcerUEIPFramework Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{12A718F2-2357-4D41-9E1F-18583A4745F7}
> Deleted Preinstalled.AcerUEIPFramework Task C:\Windows\System32\Tasks\UBTFRAMEWORKSERVICE
> Deleted Preinstalled.AcerUpdater Folder C:\ProgramData\ACER\ACER UPDATER
> Deleted Preinstalled.AcerabBox Registry HKLM\Software\Classes\CLSID\{5CCE71FA-9F61-4F24-9CD1-98D819B40D68}
>
>
> *************************
>
> [+] Delete Tracing Keys
> [+] Reset Winsock
>
> *************************
>
> AdwCleaner[S00].txt - [8629 octets] - [08/08/2020 17:05:24]
>
> ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########Hola
Desactiva temporalmente el Antivirus >> Cómo deshabilitar temporalmente su Antivirus
Descarga Farbar Recovery Scan Tool en el escritorio, seleccionando la versión adecuada para la arquitectura (32 o 64bits) de tu equipo. 
Como saber si Mi Windows es de 32 o 64 Bits ?.
- Ejecuta FRST.exe.
- En el mensaje de la ventana del Disclaimer, pulsamos Yes
- En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
- Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.
Pon los dos reportes generados.
Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).
Un saludo
Aquí dejo los .txt, muchas gracias! FRST:
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 08-08-2020
Ejecutado por Eduardo Sanchez (administrador) sobre LAPTOP-FCQSGV6L (Acer Aspire A315-51) (08-08-2020 19:05:47)
Ejecutado desde D:\Users\Eduardo Sanchez\Downloads
Perfiles cargados: Eduardo Sanchez
Platform: Windows 10 Home Single Language Versión 1903 18362.959 (X64) Idioma: Español (España, internacional)
Navegador predeterminado: Chrome
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12108.5.48031.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8>
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_57f66a4f0a97f1a3\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_57f66a4f0a97f1a3\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_57f66a4f0a97f1a3\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_57f66a4f0a97f1a3\IntelCpHeciSvc.exe
(Intel(R) Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12007.1001.2.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18368512 2017-04-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-971783883-4210941233-3352279367-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-29] (Google LLC -> Google LLC)
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {01EAA070-41E1-40B8-883A-390D1741B475} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {19FBCE47-91A0-4BCB-AEAA-223C250B2BA9} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473904 2017-05-24] (Acer Incorporated -> Acer Incorporated)
Task: {2200F79A-1926-46AA-903E-BF09A1C7DB1E} - System32\Tasks\PicstreamAgent => C:\Program [Argument = Files (x86)\Acer\AOP Framework\uwplauncher.exe AcerIncorporated.6245439DEEE9E_48frkmn4z8aw4!abPhoto]
Task: {422DE2B9-874B-40AB-B817-D395459B4C63} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {597BB2BE-2925-462C-9E57-430EDE1ACF80} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {6B0F25ED-02B5-4F9D-B821-1F3CF269E9BF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-02] (Google Inc -> Google Inc.)
Task: {78E20AC7-0D58-4D1F-9A08-7B76B46001B2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {98FD68A9-9C63-4594-940C-3A2664A8B8E6} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe
Task: {9A1E9090-7DD4-4910-8CEF-2A1824A2F846} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
Task: {A83E3B9B-5BFF-452D-A74A-8BD1D56FB060} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {C5EE0D16-2760-4ADD-BF72-52B641621540} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"]
Task: {DDE6600F-7F97-41E5-B8A2-30A8F7ADC07E} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [543536 2016-10-13] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {F7B2855B-842B-4F74-9549-9776D0F397F1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F9D4BE0B-6C77-4B77-800E-2E3B666C54AE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-02] (Google Inc -> Google Inc.)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{18b4e1ea-1b8f-4b86-95a1-a9a672bb879d}: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{59556377-fe5c-4cd6-9ae3-6aebffbe965f}: [DhcpNameServer] 40.33.1.55
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-971783883-4210941233-3352279367-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00
SearchScopes: HKU\S-1-5-21-971783883-4210941233-3352279367-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
SearchScopes: HKU\S-1-5-21-971783883-4210941233-3352279367-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
SearchScopes: HKU\S-1-5-21-971783883-4210941233-3352279367-1001 -> {A67DCA94-5ABC-46D2-AA8F-A74B4D2A7E0C} URL =
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho_64.dll [2020-08-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho.dll [2020-08-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKU\S-1-5-21-971783883-4210941233-3352279367-1001 -> Sin Nombre - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - Ningún archivo
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Eduardo Sanchez\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-08]
FireFox:
========
FF DefaultProfile: jvdfwq4v.default
FF ProfilePath: C:\Users\Eduardo Sanchez\AppData\Roaming\Mozilla\Firefox\Profiles\jvdfwq4v.default [2020-08-08]
FF Extension: (Español (España) Language Pack) - C:\Users\Eduardo Sanchez\AppData\Roaming\Mozilla\Firefox\Profiles\jvdfwq4v.default\Extensions\[email protected] [2018-06-30]
FF Extension: (Mozilla Partner Defaults) - C:\Users\Eduardo Sanchez\AppData\Roaming\Mozilla\Firefox\Profiles\jvdfwq4v.default\Extensions\[email protected] [2018-06-27] [Heredado]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-03] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-971783883-4210941233-3352279367-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Eduardo Sanchez\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-12] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
Chrome:
=======
CHR Profile: C:\Users\Eduardo Sanchez\AppData\Local\Google\Chrome\User Data\Default [2020-08-08]
CHR Extension: (Presentaciones) - C:\Users\Eduardo Sanchez\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-07-02]
CHR Extension: (Documentos) - C:\Users\Eduardo Sanchez\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-07-02]
CHR Extension: (Google Drive) - C:\Users\Eduardo Sanchez\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (AdGuard AdBlocker) - C:\Users\Eduardo Sanchez\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2020-08-08]
CHR Extension: (YouTube) - C:\Users\Eduardo Sanchez\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-07-02]
CHR Extension: (Adobe Acrobat) - C:\Users\Eduardo Sanchez\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-08-06]
CHR Extension: (Hojas de cálculo) - C:\Users\Eduardo Sanchez\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-07-02]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Eduardo Sanchez\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-07]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Eduardo Sanchez\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Users\Eduardo Sanchez\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-24]
CHR Extension: (Chrome Media Router) - C:\Users\Eduardo Sanchez\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-20]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2017-04-24] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-08-07] (Malwarebytes Inc -> Malwarebytes)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\NisSrv.exe [2169568 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MsMpEng.exe [128376 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
S3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2018-03-06] (AnchorFree Inc -> The OpenVPN Project)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-08-07] (Malwarebytes Corporation -> Malwarebytes)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216056 2020-08-07] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-08-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197264 2020-08-08] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73368 2020-08-08] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-08-07] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [131232 2020-08-08] (Malwarebytes Inc -> Malwarebytes)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [78216 2020-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [430320 2020-08-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [98520 2020-08-05] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-08-08 19:03 - 2020-08-08 19:08 - 000000000 ____D C:\FRST
2020-08-08 18:50 - 2020-08-08 18:50 - 000197264 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-08-08 18:50 - 2020-08-08 18:50 - 000131232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-08-08 18:50 - 2020-08-08 18:50 - 000073368 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-08-07 22:48 - 2020-08-08 17:30 - 000000000 ____D C:\AdwCleaner
2020-08-07 22:46 - 2020-08-07 22:46 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-08-07 22:46 - 2020-08-07 22:46 - 000002908 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-08-07 22:46 - 2020-08-07 22:46 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-08-07 22:46 - 2020-08-07 22:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-08-07 22:45 - 2020-08-07 22:46 - 000000000 ____D C:\Program Files\CCleaner
2020-08-07 21:48 - 2020-08-08 19:07 - 000000000 ____D C:\Users\Eduardo Sanchez\AppData\LocalLow\IGDump
2020-08-07 21:43 - 2020-08-07 21:43 - 000000000 ____D C:\Users\Eduardo Sanchez\AppData\Local\mbam
2020-08-07 21:42 - 2020-08-07 21:42 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-08-07 21:42 - 2020-08-07 21:42 - 000216056 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-08-07 21:42 - 2020-08-07 21:42 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-08-07 21:42 - 2020-08-07 21:42 - 000002025 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-08-07 21:42 - 2020-08-07 21:41 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-08-07 21:42 - 2020-08-07 21:41 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-08-07 21:41 - 2020-08-07 21:41 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-08-07 21:39 - 2020-08-07 21:39 - 000000000 ____D C:\Program Files\Malwarebytes
2020-08-07 19:09 - 2020-08-07 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2020-08-07 19:09 - 2020-08-07 19:09 - 000000000 ____D C:\Program Files (x86)\Sony
2020-07-31 14:58 - 2020-07-31 14:58 - 000052975 _____ C:\Users\Eduardo Sanchez\Sanchez_Eduardo_Modelo Logit y Poisson.ipynb
2020-07-31 14:54 - 2020-07-31 14:54 - 000092625 _____ C:\Users\Eduardo Sanchez\Sanchez_Eduardo_PruebaLogit_AccionesEUA.ipynb
2020-07-25 12:49 - 2020-08-05 19:16 - 000002431 _____ C:\Users\Eduardo Sanchez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-07-17 13:41 - 2020-07-17 13:41 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-17 13:41 - 2020-07-17 13:41 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-17 13:41 - 2020-07-17 13:41 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-07-17 13:41 - 2020-07-17 13:41 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-17 13:41 - 2020-07-17 13:41 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-07-17 13:41 - 2020-07-17 13:41 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 007823912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 006292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 005099384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 001307136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 000967680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 000345560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-07-17 13:40 - 2020-07-17 13:40 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-07-17 13:39 - 2020-07-17 13:40 - 018031104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 008015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-07-17 13:39 - 2020-07-17 13:39 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll
2020-07-17 13:39 - 2020-07-17 13:39 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-07-17 13:38 - 2020-07-17 13:38 - 025902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 022641664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 007269376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-07-17 13:38 - 2020-07-17 13:38 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-07-17 13:38 - 2020-07-17 13:38 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-17 13:37 - 2020-07-17 13:37 - 005765648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-07-17 13:37 - 2020-07-17 13:37 - 001397568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-07-17 13:37 - 2020-07-17 13:37 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-07-17 13:37 - 2020-07-17 13:37 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-07-17 13:37 - 2020-07-17 13:37 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-07-17 13:37 - 2020-07-17 13:37 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-07-17 13:37 - 2020-07-17 13:37 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-07-17 13:37 - 2020-07-17 13:37 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2020-07-17 13:37 - 2020-07-17 13:37 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-07-17 13:37 - 2020-07-17 13:37 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-07-17 13:37 - 2020-07-17 13:37 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-07-17 13:37 - 2020-07-17 13:37 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-07-17 13:37 - 2020-07-17 13:37 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-07-17 13:37 - 2020-07-17 13:37 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-07-17 13:37 - 2020-07-17 13:37 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-07-17 13:37 - 2020-07-17 13:37 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-17 13:37 - 2020-07-17 13:37 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-07-17 13:37 - 2020-07-17 13:37 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-07-17 13:37 - 2020-07-17 13:37 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-07-17 13:37 - 2020-07-17 13:37 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-07-17 13:37 - 2020-07-17 13:37 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-07-17 13:37 - 2020-07-17 13:37 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-07-17 13:37 - 2020-07-17 13:37 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-07-17 13:37 - 2020-07-17 13:37 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-07-17 13:37 - 2020-07-17 13:37 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-07-17 13:37 - 2020-07-17 13:37 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-07-17 13:37 - 2020-07-17 13:37 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-07-17 13:37 - 2020-07-17 13:37 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-07-17 13:36 - 2020-07-17 13:36 - 006523856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 003743048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-07-17 13:36 - 2020-07-17 13:36 - 001991592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 001952880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 001665728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 001420328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 001357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 001014784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000945176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000779080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000685384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000673448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-07-17 13:36 - 2020-07-17 13:36 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000542288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000538664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-07-17 13:36 - 2020-07-17 13:36 - 000442096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000405944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000380224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-07-17 13:36 - 2020-07-17 13:36 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnclient.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000268552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-07-17 13:36 - 2020-07-17 13:36 - 000199496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-07-17 13:36 - 2020-07-17 13:36 - 000193600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000176952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000150336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-07-17 13:36 - 2020-07-17 13:36 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2020-07-17 13:36 - 2020-07-17 13:36 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2020-07-17 13:36 - 2020-07-17 13:36 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-07-17 13:36 - 2020-07-17 13:36 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 006089512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 001737728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 001655472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 001550336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 001463808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 001048992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000895600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000844096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000793320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000778872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000628416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000594992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000582056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000086272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemUWPLauncher.exe
2020-07-17 13:35 - 2020-07-17 13:35 - 000052152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-07-17 13:35 - 2020-07-17 13:35 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2020-07-17 13:34 - 2020-07-17 13:35 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 003974368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-07-17 13:34 - 2020-07-17 13:34 - 003748352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 001306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 001068544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000478296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000311440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-07-17 13:34 - 2020-07-17 13:34 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-17 13:33 - 2020-07-17 13:33 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-17 13:33 - 2020-07-17 13:33 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-07-17 13:33 - 2020-07-17 13:33 - 001654304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-07-17 13:33 - 2020-07-17 13:33 - 001290192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-17 13:33 - 2020-07-17 13:33 - 001100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-17 13:33 - 2020-07-17 13:33 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-17 13:33 - 2020-07-17 13:33 - 000889416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-17 13:33 - 2020-07-17 13:33 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-07-17 13:33 - 2020-07-17 13:33 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-17 13:33 - 2020-07-17 13:33 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-07-17 13:33 - 2020-07-17 13:33 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-17 13:33 - 2020-07-17 13:33 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-07-17 13:33 - 2020-07-17 13:33 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-07-17 13:32 - 2020-07-17 13:32 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-07-17 13:32 - 2020-07-17 13:32 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 007268640 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 006437376 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 006169088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 004565264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-07-17 13:32 - 2020-07-17 13:32 - 003800576 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 002768984 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 001946144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 001821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 001658368 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 001374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000882184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-07-17 13:32 - 2020-07-17 13:32 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000742712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000549048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000518464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-07-17 13:32 - 2020-07-17 13:32 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000467960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000392504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000311608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-07-17 13:32 - 2020-07-17 13:32 - 000260288 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000247864 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000220992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-07-17 13:32 - 2020-07-17 13:32 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-07-17 13:32 - 2020-07-17 13:32 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000165840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-17 13:32 - 2020-07-17 13:32 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-17 13:32 - 2020-07-17 13:32 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2020-07-17 13:32 - 2020-07-17 13:32 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-07-17 13:32 - 2020-07-17 13:32 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-17 13:32 - 2020-07-17 13:32 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-07-17 13:32 - 2020-07-17 13:32 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 004014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-07-17 13:31 - 2020-07-17 13:31 - 002357248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 001877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-07-17 13:31 - 2020-07-17 13:31 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 001086776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000684864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-07-17 13:31 - 2020-07-17 13:31 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnclient.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleBand.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-17 13:31 - 2020-07-17 13:31 - 000040248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 007917408 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 002237096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 002161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 002074112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 001604608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 001540608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 001151304 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-17 13:30 - 2020-07-17 13:30 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-17 13:30 - 2020-07-17 13:30 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-07-17 13:29 - 2020-07-17 13:30 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 007850288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-07-17 13:29 - 2020-07-17 13:29 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 002505496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 002285056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 002264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 001500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 001392128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 001335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-07-17 13:29 - 2020-07-17 13:29 - 001081344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 001028336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 001008960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000958608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000919880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000904192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000821232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000737792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000524784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000340328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000239928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000146232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000110040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-17 13:29 - 2020-07-17 13:29 - 000070248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-07-17 13:29 - 2020-07-17 13:29 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 004625192 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-07-17 13:28 - 2020-07-17 13:28 - 001745728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 001723392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 001640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 001385696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000656696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-07-17 13:28 - 2020-07-17 13:28 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000411640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000381152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-17 13:28 - 2020-07-17 13:28 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-07-17 13:28 - 2020-07-17 13:28 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-07-17 13:28 - 2020-07-17 13:28 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-17 13:28 - 2020-07-17 13:28 - 000076952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-17 12:40 - 2020-06-29 23:32 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-07-17 12:40 - 2020-06-29 23:26 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-07-10 17:52 - 2020-07-10 17:52 - 000000000 ____D C:\Users\Eduardo Sanchez\AppData\Roaming\က
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-08-08 18:53 - 2019-11-09 01:19 - 000003508 _____ C:\WINDOWS\system32\Tasks\DashlaneUpgradeCheck
2020-08-08 18:51 - 2019-03-18 23:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-08 18:50 - 2018-06-27 05:21 - 000000000 __SHD C:\Users\Eduardo Sanchez\IntelGraphicsProfiles
2020-08-08 18:49 - 2019-11-09 01:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-08-08 18:49 - 2019-11-09 00:38 - 000434904 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-08-08 18:48 - 2019-03-18 23:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-08-08 18:19 - 2020-04-27 21:55 - 000000000 ____D C:\WINDOWS\Minidump
2020-08-08 18:19 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-08-08 18:19 - 2019-03-18 23:50 - 000000000 ____D C:\WINDOWS\INF
2020-08-08 17:48 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-08-08 17:30 - 2018-04-11 18:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2020-08-08 17:30 - 2018-01-30 03:51 - 000000000 ____D C:\ProgramData\Acer
2020-08-08 17:30 - 2018-01-30 03:51 - 000000000 ____D C:\Program Files\Acer
2020-08-08 17:30 - 2018-01-30 03:51 - 000000000 ____D C:\Program Files (x86)\Acer
2020-08-08 17:27 - 2019-11-09 00:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-08-07 22:05 - 2019-03-18 23:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-08-07 21:42 - 2019-03-18 23:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-08-05 19:16 - 2019-11-09 01:19 - 000003398 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-971783883-4210941233-3352279367-1001
2020-08-05 19:16 - 2018-06-27 05:24 - 000000000 ___RD C:\Users\Eduardo Sanchez\OneDrive
2020-08-05 19:14 - 2018-07-08 10:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-08-02 08:08 - 2020-06-26 10:40 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-08-02 08:08 - 2020-06-26 10:40 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-07-31 15:44 - 2020-03-09 22:28 - 000000000 ____D C:\Users\Eduardo Sanchez\.conda
2020-07-31 15:34 - 2019-11-09 00:51 - 000000000 ____D C:\Users\Eduardo Sanchez
2020-07-31 15:14 - 2018-07-12 21:21 - 000000000 ___HD C:\Users\Eduardo Sanchez\.git
2020-07-31 14:58 - 2020-03-09 22:36 - 000000000 ____D C:\Users\Eduardo Sanchez\.ipynb_checkpoints
2020-07-31 14:57 - 2020-05-30 21:08 - 000052975 _____ C:\Users\Eduardo Sanchez\Sanchez_Eduardo_Ivan_Tarea_Logit_Vs_Poisson.ipynb
2020-07-31 14:57 - 2020-03-09 22:35 - 000000000 ____D C:\Users\Eduardo Sanchez\AppData\Roaming\jupyter
2020-07-31 14:14 - 2020-03-09 22:28 - 000000043 _____ C:\Users\Eduardo Sanchez\.condarc
2020-07-31 13:55 - 2018-06-27 08:23 - 000000000 ____D C:\Users\Eduardo Sanchez\AppData\Roaming\Code
2020-07-31 13:16 - 2018-06-27 05:21 - 000000000 ____D C:\Users\Eduardo Sanchez\AppData\Local\Packages
2020-07-29 17:48 - 2018-07-02 00:48 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-29 17:48 - 2018-07-02 00:48 - 000002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-07-18 13:02 - 2018-08-12 20:33 - 000000000 ___RD C:\Users\Eduardo Sanchez\3D Objects
2020-07-18 13:02 - 2018-01-30 03:16 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-18 12:58 - 2019-11-09 01:04 - 001767630 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-07-18 12:58 - 2019-03-19 06:59 - 000786628 _____ C:\WINDOWS\system32\perfh00A.dat
2020-07-18 12:58 - 2019-03-19 06:59 - 000153518 _____ C:\WINDOWS\system32\perfc00A.dat
2020-07-17 22:57 - 2019-03-18 23:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-07-17 22:57 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2020-07-17 22:57 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-07-17 22:57 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-07-17 22:57 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-07-17 22:57 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-07-17 22:57 - 2019-03-18 23:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-07-17 22:57 - 2019-03-18 23:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-17 15:37 - 2019-03-18 23:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-07-15 22:08 - 2020-06-26 10:39 - 000003578 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-15 22:08 - 2020-06-26 10:39 - 000003454 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
==================== Final de FRST.txt ========================ADDITION:
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 08-08-2020
Ejecutado por Eduardo Sanchez (08-08-2020 19:12:24)
Ejecutado desde D:\Users\Eduardo Sanchez\Downloads
Windows 10 Home Single Language Versión 1903 18362.959 (X64) (2019-11-09 06:20:26)
Modo de Inicio: Normal
==========================================================
==================== Cuentas: =============================
Administrador (S-1-5-21-971783883-4210941233-3352279367-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-971783883-4210941233-3352279367-503 - Limited - Disabled)
Eduardo Sanchez (S-1-5-21-971783883-4210941233-3352279367-1001 - Administrator - Enabled) => C:\Users\Eduardo Sanchez
Invitado (S-1-5-21-971783883-4210941233-3352279367-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-971783883-4210941233-3352279367-504 - Limited - Disabled)
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programas instalados ======================
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Anaconda3 2020.02 (Python 3.7.6 64-bit) (HKU\S-1-5-21-971783883-4210941233-3352279367-1001\...\Anaconda3 2020.02 (Python 3.7.6 64-bit)) (Version: 2020.02 - Anaconda, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
Compresor WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
Dashlane Upgrade Service (HKLM-x32\...\Dashlane Upgrade Service) (Version: 2.1.17.0 - Dashlane, Inc.)
Eines de correcció del Microsoft Office 2016: català (HKLM\...\{90160000-001F-0403-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Ferramentas de verificación de Microsoft Office 2016 - Galego (HKLM\...\{90160000-001F-0456-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Git version 2.18.0 (HKLM\...\Git_is1) (Version: 2.18.0 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.105 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
heroku (HKLM-x32\...\heroku) (Version: - Heroku)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1050 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6373 - Intel Corporation)
LINDO 6.1 (HKLM-x32\...\{C19796D5-E477-40A1-8C78-DF2EB439D99B}) (Version: 6.1.0 - XXXXXXXX)
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.52 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-971783883-4210941233-3352279367-1001\...\OneDriveSetup.exe) (Version: 20.124.0621.0006 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio Code (HKLM\...\{EA457B21-F73E-494C-ACAB-524FDE069978}_is1) (Version: 1.25.0 - Microsoft Corporation)
MongoDB Compass (HKU\S-1-5-21-971783883-4210941233-3352279367-1001\...\MongoDBCompass) (Version: 1.14.6 - MongoDB Inc)
Node.js (HKLM\...\{D453BC74-B405-4241-9095-808419A77FB3}) (Version: 8.11.3 - Node.js Foundation)
Postman-win64-7.16.0 (HKU\S-1-5-21-971783883-4210941233-3352279367-1001\...\Postman) (Version: 7.16.0 - Postman)
Preset Manager 2.0 (HKLM-x32\...\{FCFE3F81-C977-4D31-877B-2778BB2A02DE}) (Version: 2.0.114 - Sony)
Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32\...\{20CA507E-24AA-4741-87CF-CC1B250790B7}) (Version: 11.0.10427 - Qualcomm)
Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.309 - Qualcomm Atheros)
R for Windows 3.5.3 (HKLM\...\R for Windows 3.5.3_is1) (Version: 3.5.3 - R Core Team)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21299 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8122 - Realtek Semiconductor Corp.)
Revisores de Texto do Microsoft Office 2016 – Português (Brasil) (HKLM\...\{90160000-001F-0416-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
RStudio (HKLM-x32\...\RStudio) (Version: 1.2.1335 - RStudio)
Software para dispositivos de chipset Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Stata 13 (HKLM-x32\...\{217BE429-022D-4094-960F-0376E1CBE13E}) (Version: 13.0 - StataCorp LP)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
VEGAS Pro 17.0 (HKLM\...\{73883C4F-DA39-11E9-B52D-00155D6302F2}) (Version: 17.0.321 - VEGAS)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.1.70.1 (HKLM\...\VulkanRT1.1.70.1) (Version: 1.1.70.1 - LunarG, Inc.) Hidden
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
Zoom (HKU\S-1-5-21-971783883-4210941233-3352279367-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Packages:
=========
abFiles -> C:\Program Files\WindowsApps\AcerIncorporated.abFiles_1.0.7.0_x86__48frkmn4z8aw4 [2018-06-29] (Acer Incorporated)
abPhoto -> C:\Program Files\WindowsApps\AcerIncorporated.6245439DEEE9E_1.0.10.0_x86__48frkmn4z8aw4 [2018-06-29] (Acer Incorporated)
Acer Collection -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCollection_1.1.3013.0_x64__48frkmn4z8aw4 [2018-10-20] (Acer Incorporated)
Acer Portal -> C:\Program Files\WindowsApps\AcerIncorporated.AcerPortal_1.1.9.0_x86__48frkmn4z8aw4 [2018-06-29] (Acer Incorporated)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-05] (Autodesk Inc.)
Complemento de motor multimedia para Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-19] (Microsoft Corporation)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12108.5.48031.0_x64__nzyj5cx40ttqa [2020-07-31] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x64__8wekyb3d8bbwe [2018-06-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x86__8wekyb3d8bbwe [2018-06-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.1002.0_x64__8wekyb3d8bbwe [2020-07-22] (Microsoft Studios)
MSN El tiempo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.138.558.0_x86__zpdnekdrzrea0 [2020-07-27] (Spotify AB) [Startup Task]
Stagelight -> C:\Program Files\WindowsApps\OpenLabsLLC.58714A8CB3A31_4.0.7326.0_x64__xgwf4v8gps778 [2019-03-21] (Open Labs LLC)
WildTangent Games -> C:\Program Files\WindowsApps\WildTangentGames.63435CFB65F55_2.0.82.0_x64__qt5r5pa5dyg8m [2019-12-24] (WildTangent Games)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => -> Ningún archivo
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated -> Acer Incorporated)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\Winrar\rarext64.dll [2010-03-15] () [Archivo no firmado]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\Winrar\rarext.dll [2010-03-15] () [Archivo no firmado]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-07] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\Winrar\rarext64.dll [2010-03-15] () [Archivo no firmado]
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\Winrar\rarext.dll [2010-03-15] () [Archivo no firmado]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_57f66a4f0a97f1a3\igfxDTCM.dll [2018-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-07] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\Winrar\rarext64.dll [2010-03-15] () [Archivo no firmado]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\Winrar\rarext.dll [2010-03-15] () [Archivo no firmado]
==================== Codecs (Lista blanca) ====================
==================== Accesos directos & WMI ========================
(Las entradas pueden ser listadas para ser restauradas o eliminadas.)
ShortcutWithArgument: C:\Users\Eduardo Sanchez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda3 (64-bit)\Anaconda Prompt (Anaconda3).lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /K ""C:\Users\Eduardo Sanchez\anaconda3\Scripts\activate.bat" "C:\Users\Eduardo Sanchez\anaconda3""
==================== Módulos cargados (Lista blanca) =============
==================== Alternate Data Streams (Lista blanca) ========
==================== Modo Seguro (Lista blanca) ==================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Asociación (Lista blanca) =================
==================== Internet Explorer sitios de confianza/restringidos ==========
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2017-03-18 16:03 - 2019-05-25 19:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\nodejs\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-971783883-4210941233-3352279367-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Acer01.jpg
DNS Servers: 192.168.100.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Firewall de Windows está habilitado.
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [UDP Query User{8AF92790-E612-459C-A861-7BE6FB1DC1C4}C:\program files\rstudio\bin\rsession.exe] => (Block) C:\program files\rstudio\bin\rsession.exe (RStudio, Inc.) [Archivo no firmado]
FirewallRules: [TCP Query User{D68D8568-CDEA-44C9-AE0F-E630386C0751}C:\program files\rstudio\bin\rsession.exe] => (Block) C:\program files\rstudio\bin\rsession.exe (RStudio, Inc.) [Archivo no firmado]
FirewallRules: [{8C5E241C-F1D5-4DDE-AD1F-6BC1081BCB74}] => (Allow) C:\Program Files\WindowsApps\OpenLabsLLC.58714A8CB3A31_4.0.7326.0_x64__xgwf4v8gps778\Stagelight Container64.exe (Open Labs, LLC -> )
FirewallRules: [{A3950A58-64E0-4726-8564-5ABC24D80DF7}] => (Allow) C:\Program Files\WindowsApps\OpenLabsLLC.58714A8CB3A31_4.0.7326.0_x64__xgwf4v8gps778\Stagelight Container64.exe (Open Labs, LLC -> )
FirewallRules: [{29364DCB-DD66-4AD5-94B9-1A54BBD1DD79}] => (Allow) C:\Program Files\WindowsApps\OpenLabsLLC.58714A8CB3A31_4.0.7326.0_x64__xgwf4v8gps778\Stagelight Container64.exe (Open Labs, LLC -> )
FirewallRules: [{76503086-B21A-47F9-9FC4-9D7DF6C44AC0}] => (Allow) C:\Program Files\WindowsApps\OpenLabsLLC.58714A8CB3A31_4.0.7326.0_x64__xgwf4v8gps778\Stagelight Container64.exe (Open Labs, LLC -> )
FirewallRules: [{5E2F74A6-C347-47F8-BCB3-D8354B795C1E}] => (Allow) C:\Program Files\WindowsApps\OpenLabsLLC.58714A8CB3A31_4.0.7326.0_x64__xgwf4v8gps778\Stagelight Container32.exe (Open Labs, LLC -> )
FirewallRules: [{708FF9A2-6BF0-4E46-B425-141A66C756AC}] => (Allow) C:\Program Files\WindowsApps\OpenLabsLLC.58714A8CB3A31_4.0.7326.0_x64__xgwf4v8gps778\Stagelight Container32.exe (Open Labs, LLC -> )
FirewallRules: [{4371FB9C-AB79-4776-A87F-2E0FD803F493}] => (Allow) C:\Program Files\WindowsApps\OpenLabsLLC.58714A8CB3A31_4.0.7326.0_x64__xgwf4v8gps778\Stagelight Container32.exe (Open Labs, LLC -> )
FirewallRules: [{C49AA093-4A8B-4FC9-986D-AC88B4FA87DD}] => (Allow) C:\Program Files\WindowsApps\OpenLabsLLC.58714A8CB3A31_4.0.7326.0_x64__xgwf4v8gps778\Stagelight Container32.exe (Open Labs, LLC -> )
FirewallRules: [{52766721-CC02-4A67-86B2-78637DCCD5B6}] => (Allow) C:\Program Files\WindowsApps\OpenLabsLLC.58714A8CB3A31_4.0.7326.0_x64__xgwf4v8gps778\Stagelight.exe (Open Labs, LLC -> )
FirewallRules: [{4D456A6A-DB88-4BDA-9815-1473080FDC68}] => (Allow) C:\Program Files\WindowsApps\OpenLabsLLC.58714A8CB3A31_4.0.7326.0_x64__xgwf4v8gps778\Stagelight.exe (Open Labs, LLC -> )
FirewallRules: [{4B217053-C246-4DC9-80A0-8B05CFB0A3E1}] => (Allow) C:\Program Files\WindowsApps\OpenLabsLLC.58714A8CB3A31_4.0.7326.0_x64__xgwf4v8gps778\Stagelight.exe (Open Labs, LLC -> )
FirewallRules: [{75D2B4E6-C42D-44B7-A182-80B23C00B1F9}] => (Allow) C:\Program Files\WindowsApps\OpenLabsLLC.58714A8CB3A31_4.0.7326.0_x64__xgwf4v8gps778\Stagelight.exe (Open Labs, LLC -> )
FirewallRules: [{464078B5-1559-439A-BF62-4038CD1BD141}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2C4FAE07-7B3D-4A4A-99CA-D7DB20F3E9B7}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{66191098-E6C2-482D-87D1-86E1CCC5B938}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B76456FF-4018-4F93-A693-ECB3640C1397}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{F8FDA001-BFFC-449C-8012-FFBD59CCFBB7}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [UDP Query User{9E5B1547-4533-402E-ADDB-BCB8AF898AB3}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{7F4470A4-A018-40A5-A4F8-8EED237763C9}] => (Allow) C:\Users\Eduardo Sanchez\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{F45723E4-C337-4024-B39B-AE2D1A3A96C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.138.558.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{629A6201-6DE6-45ED-BEC8-5968C53C1AB7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.138.558.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{37F4739F-FE00-44B7-8E64-18E8102ADFAC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.138.558.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{99CEB41C-3FB7-4DFA-80EA-7CDF59854DFA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.138.558.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4E05E9CA-EF15-4F42-96DF-A17187D82B82}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.138.558.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{42E423B2-79E3-4168-9385-A21CC4B323C3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.138.558.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AED50E6C-3E6A-4C56-98ED-700B007B007C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.138.558.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BFCAD085-8BEB-4193-8B9A-6C2BEA54D1B8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.138.558.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{85A7C7F2-9D5B-41B0-8584-5194E8880575}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4C19A83A-1F3E-47F9-B76D-DF68B4274DFB}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12108.5.48031.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{44B3151D-CCBE-43D9-9008-AAB201C3DB83}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12108.5.48031.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AAB232D6-7200-4E7E-9F46-488E3CF74C11}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12108.5.48031.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CA06EC23-C1B7-4473-95A9-738CF3E38EF1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12108.5.48031.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{46D0B260-87ED-4306-8B25-0EE3614AEB2F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12108.5.48031.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E8D75DD2-A307-4EEF-B8FF-D36709654810}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12108.5.48031.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DAF35C13-FD34-4A39-975F-DB9287186B58}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12108.5.48031.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A2B87DA6-C4FA-4EC4-BBBE-C3728AE9E328}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12108.5.48031.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
==================== Puntos de Restauración =========================
07-08-2020 19:07:18 Installed Preset Manager 2.0
08-08-2020 17:28:46 AdwCleaner_BeforeCleaning_08/08/2020_17:28:44
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (08/08/2020 07:10:28 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9000,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (08/08/2020 06:59:45 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2244,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (08/08/2020 06:02:43 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5228,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (08/08/2020 05:54:17 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5452,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (08/08/2020 05:42:59 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2828,R,98) TILEREPOSITORYS-1-5-18: Error -1023 (0xfffffc01) al abrir un archivo de registro C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (08/08/2020 05:31:25 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.
Error: (08/08/2020 05:31:25 PM) (Source: VSS) (EventID: 13) (User: )
Description: Información del Servicio de instantáneas de volumen: el servidor COM con CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} y el nombre CEventSystem no puede iniciarse. [0x8007045b, Se está cerrando el sistema.
]
Error: (08/08/2020 05:31:25 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina CoCreateInstance. HR = 0x8007045b, Se está cerrando el sistema.
.
Errores del sistema:
=============
Error: (08/08/2020 06:47:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio.
Error: (08/08/2020 06:47:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) Audio Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (08/08/2020 06:47:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) Content Protection HECI Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (08/08/2020 06:47:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) Dynamic Application Loader Host Interface Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (08/08/2020 06:47:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) HD Graphics Control Panel Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (08/08/2020 06:47:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio AtherosSvc se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (08/08/2020 06:47:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Adobe Acrobat Update Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (08/08/2020 06:47:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) Content Protection HDCP Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Windows Defender:
===================================
Date: 2020-07-29 13:43:18.264
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {9B616E68-62FE-4A72-A367-7F4BEDF9F3E9}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-07-19 14:06:42.845
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {B2CDDC2E-F720-48D0-B008-C03B550F4415}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-07-11 21:48:07.003
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {20A3B919-9176-48DC-A657-0ADCD57AFA28}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-07-11 20:12:21.058
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {1A9029EC-59AA-4FFB-B1C6-2CDEC076B215}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-07-10 12:52:25.164
Description:
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {5F8DF421-64A1-433D-AEF5-4274961D89FF}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM
Date: 2020-08-08 17:31:24.632
Description:
La característica Protección en tiempo real de Antivirus de Windows Defender encontró un error:
Característica: Sistema de inspección de red
Código de error: 0x8007042d
Descripción del error: No se puede iniciar el servicio debido a un error en el inicio de sesión.
Motivo: El sistema no tiene las actualizaciones necesarias para ejecutar el Sistema de inspección de red. Instala las actualizaciones requeridas y reinicia el dispositivo.
Date: 2020-08-03 12:54:49.135
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.321.531.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor:
Versión anterior del motor: 1.1.17300.4
Código de error: 0x80070102
Descripción del error: Tiempo de espera de la operación de espera agotado.
Date: 2020-08-02 07:55:28.191
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.321.431.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor:
Versión anterior del motor: 1.1.17300.4
Código de error: 0x80070102
Descripción del error: Tiempo de espera de la operación de espera agotado.
Date: 2020-07-26 13:00:34.222
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.319.2338.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor:
Versión anterior del motor: 1.1.17200.2
Código de error: 0x80240016
Descripción del error: Se produjo un problema inesperado mientras se buscaban actualizaciones. Para obtener más información sobre cómo instalar o solucionar problemas en las actualizaciones, consulte Ayuda y soporte técnico.
Date: 2020-07-16 11:15:02.603
Description:
Antivirus de Windows Defender detectó un error al intentar actualizar la inteligencia de seguridad.
Nueva versión de inteligencia de seguridad:
Versión anterior de inteligencia de seguridad: 1.319.1488.0
Origen de actualización: Servidor de Microsoft Update
Tipo de inteligencia de seguridad: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión actual del motor:
Versión anterior del motor: 1.1.17200.2
Código de error: 0x80070102
Descripción del error: Tiempo de espera de la operación de espera agotado.
==================== Información de la memoria ===========================
BIOS: Insyde Corp. V1.05 09/12/2017
Placa base: SKL Venusaur_KL
Procesador: Intel(R) Core(TM) i3-6006U CPU @ 2.00GHz
Porcentaje de memoria en uso: 73%
RAM física total: 3973.22 MB
RAM física disponible: 1045.52 MB
Virtual total: 7685.22 MB
Virtual disponible: 4568.72 MB
==================== Unidades ================================
Drive c: (Acer) (Fixed) (Total:472.56 GB) (Free:421.35 GB) NTFS
Drive d: (Datos) (Fixed) (Total:457.84 GB) (Free:443.17 GB) NTFS
\\?\Volume{fa949e93-59b8-437f-9cf7-4c607e52d279}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.54 GB) NTFS
\\?\Volume{63c740f8-42f6-49c4-9365-ef0dd3fd9352}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 704E645A)
Partition: GPT.
==================== Final de Addition.txt =======================Hola
No descargaste y ejecutaste FRST desde el escritorio como te indiqué, muévelo allí si no fallará el siguiente paso.
MUY Importante 
Realiza una copia de seguridad del registro :
-
Para hacerlo descarga
DelFix.exe( en tu escritorio). -
Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).
-
Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO.
-
Pulsar en Run.
Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.
A continuación 
con los demás programas cerrados ve a Inicio Ejecutar y escribe Notepad.exe.
- Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
Tcpip\..\Interfaces\{59556377-fe5c-4cd6-9ae3-6aebffbe965f}: [DhcpNameServer] 40.33.1.55
SearchScopes: HKU\S-1-5-21-971783883-4210941233-3352279367-1001 -> {A67DCA94-5ABC-46D2-AA8F-A74B4D2A7E0C} URL =
Toolbar: HKU\S-1-5-21-971783883-4210941233-3352279367-1001 -> Sin Nombre - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - Ningún archivo
2020-07-10 17:52 - 2020-07-10 17:52 - 000000000 ____D C:\Users\Eduardo Sanchez\AppData\Roaming\က
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => -> Ningún archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
ENDGuárdalo bajo el nombre de FIXLIST.TXT en el escritorio Esto es muy importante.
Nota Es importante que la herramienta FRST.exe (Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.
Y ahora usa el 2º MÉTODO: de esta Faq de Windows 8(aplicable a Windows 10) ¿Cómo iniciar Windows 8/8.1 en Modo Seguro?, para trabajar desde ese modo de windows.
- Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).
- Presionar el botón FIX/Corregir y aguardar a que termine.
- La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).
Pega el contenido de este fichero en tu próxima respuesta.
Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.
Un saludo
Hola muy buen día, ya siento la PC un poco más rápido. Solo que al correr FRST para hacer el paso de la corrección se me abrió un programa y no se si el proceso haya salido bien. Aquí lo dejo, muchas gracias!
Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 09-08-2020
Ejecutado por Eduardo Sanchez (10-08-2020 22:57:46) Run:1
Ejecutado desde D:\Users\Eduardo Sanchez\Desktop
Perfiles cargados: Eduardo Sanchez
Modo de Inicio: Normal
==============================================
fixlist contenido:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
Tcpip\..\Interfaces\{59556377-fe5c-4cd6-9ae3-6aebffbe965f}: [DhcpNameServer] 40.33.1.55
SearchScopes: HKU\S-1-5-21-971783883-4210941233-3352279367-1001 -> {A67DCA94-5ABC-46D2-AA8F-A74B4D2A7E0C} URL =
Toolbar: HKU\S-1-5-21-971783883-4210941233-3352279367-1001 -> Sin Nombre - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - Ningún archivo
2020-07-10 17:52 - 2020-07-10 17:52 - 000000000 ____D C:\Users\Eduardo Sanchez\AppData\Roaming\က
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => -> Ningún archivo
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Ningún archivo
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************
El punto de restauración fue creado correctamente.
Procesos cerrados correctamente.
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{59556377-fe5c-4cd6-9ae3-6aebffbe965f}\\DhcpNameServer" => eliminado correctamente
HKU\S-1-5-21-971783883-4210941233-3352279367-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A67DCA94-5ABC-46D2-AA8F-A74B4D2A7E0C} => eliminado correctamente
"HKU\S-1-5-21-971783883-4210941233-3352279367-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}" => eliminado correctamente
C:\Users\Eduardo Sanchez\AppData\Roaming\က => movido correctamente
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ ACloudSynced => eliminado correctamente
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => eliminado correctamente
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.
========= RemoveProxy: =========
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-971783883-4210941233-3352279367-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-971783883-4210941233-3352279367-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
========= Final de RemoveProxy: =========
========= netsh winsock reset =========
El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.
========= Final de CMD: =========
========= ipconfig /renew =========
Configuraci¢n IP de Windows
No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de rea local* 2 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de rea local* 1 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Conexi¢n de red Bluetooth mientras los medios
est‚n desconectados.
Adaptador de Ethernet Ethernet:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de LAN inal mbrica Conexi¢n de rea local* 2:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de LAN inal mbrica Conexi¢n de rea local* 1:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
Adaptador de LAN inal mbrica Wi-Fi:
Sufijo DNS espec¡fico para la conexi¢n. . :
Direcci¢n IPv6 . . . . . . . . . . : 2806:2f0:91e1:d677:b5c1:c467:2799:2168
Direcci¢n IPv6 temporal. . . . . . : 2806:2f0:91e1:d677:113c:ec86:4ac8:429c
V¡nculo: direcci¢n IPv6 local. . . : fe80::b5c1:c467:2799:2168%5
Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.100.8
M scara de subred . . . . . . . . . . . . : 255.255.255.0
Puerta de enlace predeterminada . . . . . : fe80::1%5
192.168.100.1
Adaptador de Ethernet Conexi¢n de red Bluetooth:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
========= Final de CMD: =========
========= ipconfig /flushdns =========
Configuraci¢n IP de Windows
Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
========= Final de CMD: =========
========= bitsadmin /reset /allusers =========
BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.
0 out of 0 jobs canceled.
========= Final de CMD: =========
========= netsh advfirewall reset =========
Aceptar
========= Final de CMD: =========
========= netsh advfirewall set allprofiles state ON =========
Aceptar
========= Final de CMD: =========
========= netsh int ipv4 reset =========
Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.
========= Final de CMD: =========
========= netsh int ipv6 reset =========
Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.
========= Final de CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 11034624 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20537357 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 3272568 B
Edge => 139277 B
Chrome => 448751891 B
Firefox => 26976572 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 3794 B
NetworkService => 3794 B
Eduardo Sanchez => 4570873 B
RecycleBin => 0 B
EmptyTemp: => 491.4 MB datos temporales eliminados.
================================
El sistema necesita reiniciarse.
==== Final de Fixlog 23:05:04 ====Hola
FRST se ejecutó bien 
Ya no tarda 30 minutos en encender y no han vuelto a salir ventanas emergentes?
Un saludo
Hola, buen día. Mi estuve probando la PC estos días y ya va mucho más rápido, y sin ese par de problemas.
Muchas gracias por tu atención. 
1 me gusta
Hola @Yayo
Sigue estos pasos, para eliminar las herramientas utilizadas:
Para hacerlo utiliza de nuevo/descarga >> DelFix.exe en tu escritorio.
-
Doble clic para ejecutarlo. (Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona - Ejecutar como Administrador)
-
Marca todas las casillas, y pulsas en Run
Se abrirá el informe (DelFix.txt), puedes cerrarlo.
Gracias a ti por confiar en ForoSpyware. Ha sido un placer ayudarte 
Nos alegramos que se te haya resuelto 
Damos el tema por solucionado.
Solucionado
Un saludo