Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-09-2019
Ran by Raudel (administrator) on RAUDELDT (HP HP Pavilion Notebook) (12-09-2019 21:53:48)
Running from C:\Users\Raudel\Desktop
Loaded Profiles: Raudel &  (Available Profiles: Raudel)
Platform: Windows 10 Pro Version 1809 17763.737 (X64) Language: Español (México)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(Discord Inc. -> Discord Inc.) C:\Users\Raudel\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Raudel\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Raudel\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Raudel\AppData\Local\Discord\app-0.0.305\Discord.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\80.4.126\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\80.4.126\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\80.4.126\QtWebEngineProcess.exe
(Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReader.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company -> Hewlett Packard) C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel(R) Corporation -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\igfxEM.exe
(Intel(R) Software -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19061.18920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11909.1001.7.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1006.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mixbyte Inc -> Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(Motorola Mobility Inc. -> Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(Motorola Mobility Inc. -> Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Motorola) [File not signed] C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
(NetSetMan GmbH -> NetSetMan GmbH) C:\Program Files (x86)\NetSetMan\netsetman.exe
(NetSetMan GmbH -> NetSetMan GmbH) C:\Program Files (x86)\NetSetMan\nsmservice.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PornTime) [File not signed] C:\Program Files (x86)\Common Files\PT\updater.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTServer.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Projector\Epson USB Display V1.6\EMP_UDSA.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TunnelBear -> ) C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8520448 2015-08-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [229592 2015-07-09] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [316336 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [655112 2015-08-19] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5888320 2019-09-05] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [304696 2011-10-14] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKLM-x32\...\Run: [NetSetMan] => C:\Program Files (x86)\NetSetMan\netsetman.exe [7449792 2018-08-16] (NetSetMan GmbH -> NetSetMan GmbH)
HKLM-x32\...\Run: [EPSON_UD_START] => C:\Program Files (x86)\EPSON Projector\Epson USB Display V1.6\EMP_UD.exe [536168 2013-05-31] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1258500712-2013476395-2823826765-1003\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46993264 2019-06-27] (Google LLC -> )
HKU\S-1-5-21-1258500712-2013476395-2823826765-1003\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3210528 2019-08-21] (Valve -> Valve Corporation)
HKU\S-1-5-21-1258500712-2013476395-2823826765-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22714912 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-1258500712-2013476395-2823826765-1003\...\Run: [Discord] => C:\Users\Raudel\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1258500712-2013476395-2823826765-1003\...\MountPoints2: {ac1c7c82-af35-11e9-9e20-e09467343c43} - "E:\AutoRun.exe" 
HKU\S-1-5-21-1258500712-2013476395-2823826765-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09122019151833509\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46993264 2019-06-27] (Google LLC -> )
HKU\S-1-5-21-1258500712-2013476395-2823826765-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09122019151833509\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3210528 2019-08-21] (Valve -> Valve Corporation)
HKU\S-1-5-21-1258500712-2013476395-2823826765-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09122019151833509\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22714912 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-1258500712-2013476395-2823826765-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09122019151833509\...\Run: [Discord] => C:\Users\Raudel\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1258500712-2013476395-2823826765-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09122019151833509\...\MountPoints2: {ac1c7c82-af35-11e9-9e20-e09467343c43} - "E:\AutoRun.exe" 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-27] (Google LLC -> Google LLC)
Startup: C:\Users\Raudel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2018-09-05]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
GroupPolicy: Restriction ? <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-1258500712-2013476395-2823826765-1003\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-1258500712-2013476395-2823826765-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09122019151833509\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02A794C4-044E-4E94-8867-C29100281371} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6299288 2019-08-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {0A6E8E4E-380A-40DD-9D2C-7E3F53327FA2} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [42552 2011-09-16] (Hewlett-Packard Company -> Hewlett Packard)
Task: {10425FCE-2E20-4818-BBB4-E809B1B50EF4} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {11B42DDD-A7CA-4FD8-8CD0-5C902CEADF8F} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1354504 2015-05-21] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
Task: {1786B5D1-2629-46E4-802A-79FD7A5D01F4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {1B29976F-FFA6-4D72-9CA3-F3650E672848} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {1B798559-C3D8-4BEB-B874-89D8ED0C42DB} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
Task: {1C594C1D-F497-41C9-821D-5627D14F2C0E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367016 2019-08-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {1F3A8933-0C3B-4574-B595-5C5418A298D3} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1286840 2015-05-05] (Intel(R) Software -> Intel Corporation)
Task: {253BA3CE-F81A-49F7-9425-61BED70DCDE4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {3A370F34-8086-4A8A-96B4-7AB9814D6A96} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [156712 2019-08-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {3CFEAA71-3229-464C-9721-C0CEEBE171B4} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [272176 2014-10-30] (Motorola Mobility Inc. -> )
Task: {45783C7C-4369-4F78-8DB0-A140BB9A771E} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-10] (Adobe Inc. -> Adobe)
Task: {4D384EAF-F52A-4F12-8302-F2C3C4749FD7} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {59B96CC4-D798-48C5-A4A7-324772694CFB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-08-15] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {641D1846-A3FE-4453-AC31-3857F41CA65E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.)
Task: {6492514C-3A00-4E5F-A270-B3C0C7E5B89D} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {65A6803B-F90A-4C1D-8D58-E68F479B3128} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367016 2019-08-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {77C348CE-D510-4A87-B32C-0B9F25E2DBB8} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {78B37868-22BD-4FEE-8FAE-1C5B7CD77243} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2174608 2019-08-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {8251A814-2A61-4D4D-98E4-78997852D8EC} - System32\Tasks\update-S-1-5-21-1258500712-2013476395-2823826765-1003 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {8513793A-2EEC-4DB9-90B7-9B8FD42900F4} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
Task: {9AAE1193-AC56-4448-9BF0-0D41BBC639A9} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {9EAF8DBC-4E95-4778-AD28-D2AEC1E6A872} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-10] (Adobe Inc. -> Adobe)
Task: {A1F121AB-7265-4D1F-B558-3BFB65A1D8B6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136056 2019-01-02] (HP Inc. -> HP Inc.)
Task: {A537C581-9FDE-46E1-9E8A-030B04D9044A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6299288 2019-08-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {AF0DC976-62B4-4866-9B3E-41A586585A6B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [134272480 2019-08-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {B415A8F5-4374-4CAA-9898-C3767330EF43} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {B93D8F14-A080-4B9D-954E-290885EC4141} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16585328 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
Task: {C74E3DF0-CCCB-4CB5-9115-A20C85D1C70F} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2077616 2019-08-23] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {DF08FC04-B550-425B-BFE0-DDE4B66ED9A6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {E54944D8-3104-43C1-A867-5481E9E06D80} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {E60238A6-6BAE-45A3-AF36-2405E4FEE899} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {E8D1728B-1AC3-453B-8C3E-C2C56BCDC3A5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2174608 2019-08-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {F1E9F58C-D6A8-4F78-A071-9B25F6C2CD10} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3990448 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {F66FA63C-446D-489F-BEC1-BBE134A97668} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [511344 2015-06-19] (Dropbox, Inc -> )
Task: {F6784192-2ABA-4245-8D6F-C90F92631BF3} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {FB8D0558-9168-414B-864E-FD3696723304} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [272176 2014-10-30] (Motorola Mobility Inc. -> )
Task: {FF32BBE8-F1E9-450B-B57D-48699E49D1B5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [156712 2019-08-29] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-1258500712-2013476395-2823826765-1003.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{0bf79c0c-d5fe-481f-923f-5c43e612c469}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{13610da6-acda-4f0d-a1df-e6488c421b48}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{5b257702-43a7-40dc-9165-9ec1fe18d433}: [NameServer] 1.1.1.1,1.0.0.1,192.168.100.1
Tcpip\..\Interfaces\{5b257702-43a7-40dc-9165-9ec1fe18d433}: [DhcpNameServer] 192.168.1.254 192.168.1.254
Tcpip\..\Interfaces\{74be18b3-8ef6-4748-8b61-1775b0c37d90}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{78e49b14-527d-4966-a8d5-b0c9c3f47738}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ca98e706-b0bc-4ff1-b899-88291139b458}: [NameServer] 1.1.1.1,1.0.0.1
Tcpip\..\Interfaces\{cdf461a3-b445-4725-bbdc-bb77f65b5a14}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{d51eeafb-8b39-43b3-aee3-df228745d705}: [DhcpNameServer] 192.168.8.1 192.168.8.1

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-07-25] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-01-15] (Oracle America, Inc. -> Oracle Corporation)
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-01-15] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-04-03] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2019-05-06] (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll => No File
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: y18zg31t.default
FF ProfilePath: C:\Users\Raudel\AppData\Roaming\Mozilla\Firefox\Profiles\y18zg31t.default [2019-09-12]
FF user.js: detected! => C:\Users\Raudel\AppData\Roaming\Mozilla\Firefox\Profiles\y18zg31t.default\user.js [2019-09-06]
FF Extension: (Image Search Options) - C:\Users\Raudel\AppData\Roaming\Mozilla\Firefox\Profiles\y18zg31t.default\Extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi [2019-03-26]
FF Extension: (Security Update Tool) - C:\Users\Raudel\AppData\Roaming\Mozilla\Firefox\Profiles\y18zg31t.default\Extensions\{f819cd6a-0d11-4e67-9a6f-e3bdaf4eee3b}.xpi [2019-08-27]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-01-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-01-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-07-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-05] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-06-26] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-06-26] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-06-26] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2019-06-26] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-04-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.2\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.2\npGoogleUpdate3.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com.mx/"
CHR Profile: C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default [2019-09-12]
CHR Extension: (Presentaciones) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Documentos) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (MindMeister) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdehgigffdnkjpaindemkaniebfaepjm [2016-02-16]
CHR Extension: (ButtonBeats DubCube) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdijiampoihanablcndnakhfbgfciogm [2016-02-16]
CHR Extension: (MEGA) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2019-09-12]
CHR Extension: (YouTube) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-16]
CHR Extension: (Sad Panda) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohapeiooecafommnlaiccilacgmkaoc [2018-05-12]
CHR Extension: (Búsqueda de Google) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-16]
CHR Extension: (Fair AdBlocker App) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcnofaichneijfbkdkghmhjjbepjmble [2017-06-09]
CHR Extension: (Tampermonkey) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-05-07]
CHR Extension: (Lucidchart Diagramas - Escritorio) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\djejicklhojeokkfmdelnempiecmdomj [2017-12-02]
CHR Extension: (Feedly Notifier) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\egikgfbhipinieabdmcpigejkaomgjgb [2019-07-25]
CHR Extension: (Add Email Signature - WiseStamp) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjjniaenghhbffhplhdcipdgidbajdp [2019-05-27]
CHR Extension: (Video Downloader professional) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2019-04-11]
CHR Extension: (Hojas de cálculo) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Readium) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fepbnnnkkadjhjahcafoaglimekefifl [2018-10-19]
CHR Extension: (Video Downloader PLUS) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2019-09-12]
CHR Extension: (Fair Ads) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gagfkmknmijppikpcikmbbkdkhggcmge [2017-06-09]
CHR Extension: (Feedly Subscribe Button) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbbnddjfcllebfcnihfgmdplgaiejepc [2018-07-09]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-17]
CHR Extension: (Crackle Mexico) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjooonhjldhpollpbkglklcgnegfmdgh [2016-02-16]
CHR Extension: (Hola Free VPN Proxy Unblocker) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2019-09-12]
CHR Extension: (Guardar en Google Drive) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2016-02-16]
CHR Extension: (NetBeans Connector) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hafdlehgocfcodbgjnpecfajgkeejnaa [2016-02-16]
CHR Extension: (TeamGantt Project Management) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcoffgicdhbbbpdopfhaemdbdglnkcok [2016-02-16]
CHR Extension: (ImageSpark - Ultimate Imágenes Downloader) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hooaoionkjogngfhjjniefmenehnopag [2018-07-09]
CHR Extension: (Kindle Cloud Reader) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2016-02-16]
CHR Extension: (Pixlr Editor) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmaknaampgiegkcjlimdiidlhopknpk [2016-02-16]
CHR Extension: (Super Browse for Netflix) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\iejponamigpndjgdmnpelkohnbpancjf [2018-04-25]
CHR Extension: (EasyHome Homestyler) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2017-06-19]
CHR Extension: (Booktrack Studio) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\kidknbkmfcapkiepmhchinffchkjglog [2016-02-16]
CHR Extension: (Cube - A game about Google Maps) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbcoijfpdfchaihokncghkbplhiiehko [2016-02-16]
CHR Extension: (Fair AdBlocker) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgblnfidahcdcjddiepkckcfdhpknnjh [2019-06-04]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-02-17]
CHR Extension: (Dragons of Atlantis) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\manlnjcghdempjdpndlcmaaobbighhcf [2016-02-16]
CHR Extension: (Feedly Mini) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndhinffkekpekljifjkkkkkhopnjodja [2019-04-29]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2019-02-20]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-06]
CHR Extension: (Chrome Update Tool) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofjdblhobihaknilfmfjfpidfblgajmk [2019-09-06]
CHR Extension: (Picasa) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2016-02-16]
CHR Extension: (Evernote Web Clipper) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2019-07-25]
CHR Extension: (Gmail) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-13]
CHR Extension: (RSS Feed Reader) - C:\Users\Raudel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2019-09-10]
CHR HKU\S-1-5-21-1258500712-2013476395-2823826765-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1258500712-2013476395-2823826765-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1258500712-2013476395-2823826765-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09122019151833509\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1258500712-2013476395-2823826765-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-09122019151833509\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AESMService; C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe [3744904 2015-06-19] (Intel(R) Corporation -> Intel Corporation)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [405120 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [6023528 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [110048 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [121560 2015-07-20] (Realtek Semiconductor Corp -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11568224 2019-08-24] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-16] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-16] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-09-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 EMP_UDSA; C:\Program Files (x86)\EPSON Projector\Epson USB Display V1.6\EMP_UDSA.exe [157696 2013-05-31] (SEIKO EPSON CORPORATION) [File not signed]
R2 esifsvc; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [1714320 2017-11-30] (Intel Corporation -> Intel Corporation)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [81280 2019-07-24] (Mixbyte Inc -> Freemake)
R2 HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [13824 2011-10-17] (Hewlett-Packard Company) [File not signed]
S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [164352 2011-08-04] (HP) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [358264 2019-08-07] (HP Inc. -> HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [604936 2015-08-17] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
R2 ibtsiva; C:\WINDOWS\System32\ibtsiva.exe [529912 2018-12-21] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-10] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility Inc. -> Motorola Mobility LLC)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2012-07-31] (Hewlett-Packard) [File not signed]
R2 nsmService; C:\Program Files (x86)\NetSetMan\nsmservice.exe [1782976 2017-04-24] (NetSetMan GmbH -> NetSetMan GmbH)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2012-07-31] (Hewlett-Packard) [File not signed]
R2 PornTime Updater; C:\Program Files (x86)\Common Files\PT\updater.exe [165888 2015-06-15] (PornTime) [File not signed]
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [308464 2015-08-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5357360 2019-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-02] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [269912 2017-10-24] (Synaptics Incorporated -> Synaptics Incorporated)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [120440 2018-09-11] (TunnelBear -> )
S3 uSHAREitSvc; C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.Service.exe [33224 2017-09-11] (SHAREit Technologies Co.Ltd -> SHAREit Technologies Co.Ltd)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3831576 2019-06-13] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [110944 2018-09-15] (Microsoft Corporation -> Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19192 2015-09-30] (Intel(R) Software -> Intel(R) Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [37368 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [209816 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [263784 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [206624 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [61736 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [15280 2019-01-07] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42552 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [169672 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [112576 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [88200 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [1031048 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [478144 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [236288 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [387440 2019-09-03] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 blackberryncm; C:\WINDOWS\System32\drivers\blackberryncm6_AMD64.sys [25088 2014-09-08] (BlackBerry) [File not signed]
S3 clwvd6; C:\WINDOWS\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corp. -> CyberLink Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [43512 2015-08-03] (Intel(R) Software -> Intel Corporation)
R3 eppvad_simple; C:\WINDOWS\system32\drivers\EMP_UDAU.sys [23040 2013-05-31] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [392160 2017-11-30] (Intel Corporation -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [250624 2016-10-15] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-05-28] (Intel(R) Software -> Intel Corporation)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-09-12] (Malwarebytes Corporation -> Malwarebytes)
R1 NemuDrv; C:\Program Files (x86)\MuMu\emulator\nemu\Hypervisor\NemuDrv.sys [299240 2018-05-03] (NetEase(Hangzhou) Network Co. Ltd. -> NetEase Corporation)
S3 Netwtw02; C:\WINDOWS\System32\drivers\Netwtw02.sys [6731520 2016-01-19] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [8723648 2018-10-12] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 rimvndis; C:\WINDOWS\System32\Drivers\rimvndis6_AMD64.sys [18432 2015-03-19] (BlackBerry Limited) [File not signed]
S3 RimVSerPort; C:\WINDOWS\system32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-08-13] (Realtek Semiconductor Corp -> Realtek )
R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [8206848 2018-09-15] (Microsoft Windows -> Realtek Semiconductor Corporation )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [753368 2015-07-31] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
S3 SGXEPC; C:\WINDOWS\System32\drivers\sgx_driver.sys [54768 2015-06-19] (Intel(R) Corporation -> Windows (R) Win 7 DDK provider)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [33448 2015-07-27] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [46680 2017-10-24] (Synaptics Incorporated -> Synaptics Incorporated)
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2018-07-31] (TunnelBear, Inc. -> The OpenVPN Project)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [40664 2014-07-30] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R1 VBoxUSBMon; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [127432 2015-09-16] (Duodian Online Technology Co. Ltd. -> BigNox Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-12 21:53 - 2019-09-12 21:55 - 000055195 _____ C:\Users\Raudel\Desktop\FRST.txt
2019-09-12 21:53 - 2019-09-12 21:53 - 000000000 ____D C:\FRST
2019-09-12 21:53 - 2019-09-12 21:49 - 001614848 _____ (Farbar) C:\Users\Raudel\Desktop\FRST64.exe
2019-09-12 21:48 - 2019-09-12 21:49 - 001614848 _____ (Farbar) C:\Users\Raudel\Downloads\FRST64.exe
2019-09-12 21:45 - 2019-09-12 21:45 - 000001551 _____ C:\Users\Raudel\Desktop\mb fin.txt
2019-09-12 10:02 - 2019-09-12 10:02 - 000008197 _____ C:\Users\Raudel\Downloads\C95_AOKIHOSHI_Akaiguppy_Evileye_no_Mousou_Sex_Overlord.torrent
2019-09-12 10:02 - 2019-09-12 10:02 - 000008197 _____ C:\Users\Raudel\Downloads\C95_AOKIHOSHI_Akaiguppy_Evileye_no_Mousou_Sex_Overlord (1).torrent
2019-09-12 08:53 - 2019-09-12 15:10 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-09-12 08:32 - 2019-09-12 08:33 - 000001947 _____ C:\Users\Raudel\Desktop\MB otra.txt
2019-09-11 19:32 - 2019-09-11 18:54 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-09-11 19:32 - 2019-09-11 18:54 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-09-11 18:52 - 2019-09-11 18:52 - 026808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 023453696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 022124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 020817408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 019011584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 015221248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 012939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 012244992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 009679672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 008903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 007886848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 007871488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 006542464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 006444544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 006310064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 006065664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 005597808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 005573232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 005569024 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 004874752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 004588752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 004056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 003821728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 003702784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 003634688 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-09-11 18:52 - 2019-09-11 18:52 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 003490816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 003385856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 003096576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 002924344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-09-11 18:52 - 2019-09-11 18:52 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 002779488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 002700784 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 002693120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 002469432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-09-11 18:52 - 2019-09-11 18:52 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 002279296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 002233688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 002099752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 002073240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001966096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-09-11 18:52 - 2019-09-11 18:52 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001899152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001864192 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001782272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001764352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001721360 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001702096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-09-11 18:52 - 2019-09-11 18:52 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001655976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001604760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001573240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001563880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001484592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-09-11 18:52 - 2019-09-11 18:52 - 001318400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001297120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001272560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdrecordcpu.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001256960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001081656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001075832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 001054952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 001010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000968192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000888120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000811024 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000807760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000798736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2019-09-11 18:52 - 2019-09-11 18:52 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000779776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000774968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000740904 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000736056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000660544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000652832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000622392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000606088 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000585184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000554000 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000540240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000535056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-09-11 18:52 - 2019-09-11 18:52 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000515960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000515152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000505128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000464912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000449376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000439808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000409256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000386048 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\SysWOW64\curl.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000351432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000349144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000330672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000330592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000279416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000272648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdwriter.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ManagePhone.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000195224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBroker.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000177176 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000168248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000144080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000140088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000130872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000120344 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000106048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
2019-09-11 18:52 - 2019-09-11 18:52 - 000098080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComputerDefaults.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComputerDefaults.exe
2019-09-11 18:52 - 2019-09-11 18:52 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2019-09-11 18:52 - 2019-09-11 18:52 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2019-09-11 18:51 - 2019-09-11 18:52 - 017484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 007690648 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 004353016 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-09-11 18:51 - 2019-09-11 18:51 - 003333984 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-09-11 18:51 - 2019-09-11 18:51 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 002593032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 002415416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 002199864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 002148864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 002085168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 001893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 001743168 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 001720120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 001522704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 001397048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 001387512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 001294280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-09-11 18:51 - 2019-09-11 18:51 - 001191512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 001187840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AgentService.exe
2019-09-11 18:51 - 2019-09-11 18:51 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 001128448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-09-11 18:51 - 2019-09-11 18:51 - 001048888 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-09-11 18:51 - 2019-09-11 18:51 - 001022824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000865576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000851272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000806568 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-09-11 18:51 - 2019-09-11 18:51 - 000806568 _____ C:\WINDOWS\system32\locale.nls
2019-09-11 18:51 - 2019-09-11 18:51 - 000793824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000791352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2019-09-11 18:51 - 2019-09-11 18:51 - 000774192 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000764416 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000751928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-09-11 18:51 - 2019-09-11 18:51 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000675096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000652600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-09-11 18:51 - 2019-09-11 18:51 - 000652304 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-09-11 18:51 - 2019-09-11 18:51 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-09-11 18:51 - 2019-09-11 18:51 - 000603784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-09-11 18:51 - 2019-09-11 18:51 - 000532192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000526336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-09-11 18:51 - 2019-09-11 18:51 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000506200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe
2019-09-11 18:51 - 2019-09-11 18:51 - 000421376 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\system32\curl.exe
2019-09-11 18:51 - 2019-09-11 18:51 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-09-11 18:51 - 2019-09-11 18:51 - 000402368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000398208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000347576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000294728 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ConfigWrapper.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe
2019-09-11 18:51 - 2019-09-11 18:51 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-09-11 18:51 - 2019-09-11 18:51 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ptpprov.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe
2019-09-11 18:51 - 2019-09-11 18:51 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2019-09-11 18:51 - 2019-09-11 18:51 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000164504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000140600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-09-11 18:51 - 2019-09-11 18:51 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys
2019-09-11 18:51 - 2019-09-11 18:51 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000087056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-09-11 18:51 - 2019-09-11 18:51 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-09-11 18:51 - 2019-09-11 18:51 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-09-11 18:51 - 2019-09-11 18:51 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiAcpiClient.sys
2019-09-11 18:51 - 2019-09-11 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-09-11 18:51 - 2019-09-11 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-09-11 18:51 - 2019-09-11 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-09-11 18:51 - 2019-09-11 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-09-11 18:51 - 2019-09-11 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-09-11 18:51 - 2019-09-11 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-09-11 18:51 - 2019-09-11 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-09-11 18:51 - 2019-09-11 18:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-09-10 19:40 - 2019-09-10 19:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2019-09-10 19:38 - 2019-09-10 19:39 - 002784344 _____ (Skillbrains ) C:\Users\Raudel\Downloads\setup-lightshot.exe
2019-09-10 19:35 - 2019-09-10 19:35 - 000032315 _____ C:\Users\Raudel\Downloads\Sin confirmar 211274.crdownload
2019-09-10 18:11 - 2019-09-10 18:11 - 000002280 _____ C:\Users\Raudel\Desktop\MB ult.txt
2019-09-10 17:27 - 2019-09-10 17:27 - 000002385 _____ C:\Users\Raudel\Desktop\malwarebytes resul.txt
2019-09-10 16:25 - 2019-09-10 16:28 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll
2019-09-10 16:25 - 2019-09-10 16:28 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll
2019-09-10 16:25 - 2019-09-10 16:28 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll
2019-09-10 16:25 - 2019-09-10 16:28 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll
2019-09-10 16:25 - 2019-09-10 16:28 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2019-09-10 16:25 - 2019-09-10 16:28 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2019-09-10 16:25 - 2019-09-10 16:28 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2019-09-10 16:24 - 2019-09-10 16:28 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll
2019-09-10 16:24 - 2019-09-10 16:28 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll
2019-09-10 16:24 - 2019-09-10 16:28 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2019-09-10 10:11 - 2019-09-10 10:11 - 000063295 _____ C:\Users\Raudel\Desktop\zhpcleanerult.txt
2019-09-09 22:41 - 2019-09-09 22:41 - 007636680 _____ (Malwarebytes) C:\Users\Raudel\Downloads\adwcleaner_7.4.1.exe
2019-09-09 21:34 - 2019-09-10 10:11 - 000061296 _____ C:\Users\Raudel\Desktop\ZHPCleaner (R).txt
2019-09-09 21:29 - 2019-09-10 10:07 - 000063319 _____ C:\Users\Raudel\Desktop\ZHPCleaner (S).txt
2019-09-09 21:13 - 2019-09-09 21:13 - 003126656 _____ (Nicolas Coolman) C:\Users\Raudel\Downloads\ZHPCleaner (1).exe
2019-09-09 20:58 - 2019-09-09 20:58 - 000001099 _____ C:\Users\Raudel\Desktop\RegSeeker.lnk
2019-09-09 20:58 - 2019-09-09 20:58 - 000000000 ____D C:\Users\Raudel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RegSeeker
2019-09-09 20:58 - 2019-09-09 20:58 - 000000000 ____D C:\Program Files (x86)\RegSeeker
2019-09-08 18:30 - 2019-09-08 18:30 - 000000000 ___HD C:\$AV_AVG
2019-09-06 17:02 - 2019-09-06 17:04 - 000000000 ____D C:\Timetables
2019-09-06 11:09 - 2019-09-08 18:30 - 000000012 _____ C:\ProgramData\irw.atsd
2019-09-06 11:09 - 2019-09-08 18:30 - 000000004 _____ C:\ProgramData\lock.dat
2019-09-06 11:09 - 2019-09-06 11:09 - 000000008 _____ C:\ProgramData\ts.dat
2019-09-06 10:58 - 2019-09-06 17:02 - 000001473 _____ C:\Users\Raudel\Desktop\aSc Sustitución.lnk
2019-09-06 10:58 - 2019-09-06 17:02 - 000000633 _____ C:\Users\Raudel\Desktop\aSc Horarios.lnk
2019-09-06 10:58 - 2019-09-06 10:58 - 000000000 ____D C:\Users\Raudel\Desktop\Crack
2019-09-06 10:48 - 2019-09-06 10:50 - 063090309 _____ C:\Users\Raudel\Downloads\aSc TimeTables 2017.rar
2019-09-06 10:25 - 2019-09-06 11:11 - 000000000 ____D C:\Users\Raudel\AppData\Roaming\qenzjqwqidse
2019-09-06 10:25 - 2019-09-06 10:25 - 000000000 ____D C:\ProgramData\Lamia
2019-09-05 18:41 - 2019-09-05 18:42 - 003203478 _____ C:\Users\Raudel\Downloads\asc timetables 2019 crack with keygen f_7eff6cd1c.zip
2019-09-05 16:07 - 2019-09-05 16:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-09-05 06:18 - 2019-09-05 06:18 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-09-05 06:18 - 2019-09-05 06:18 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-09-05 06:18 - 2019-09-05 06:18 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-09-05 06:18 - 2019-09-05 06:18 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-09-04 14:22 - 2019-09-10 13:47 - 000000000 ____D C:\Horarios
2019-09-04 13:14 - 2019-09-04 13:24 - 020889016 _____ (Piriform Software Ltd) C:\Users\Raudel\Downloads\ccsetup561.exe
2019-09-04 12:16 - 2019-09-04 12:16 - 000000000 ____D C:\Users\Raudel\AppData\Local\FreemakeVideoDownloader
2019-09-04 12:14 - 2019-09-04 12:21 - 000000000 ____D C:\Users\Raudel\Documents\Freemake
2019-09-04 12:14 - 2019-09-04 12:16 - 000000000 ____D C:\ProgramData\Freemake
2019-09-04 12:14 - 2019-09-04 12:14 - 000001416 _____ C:\Users\Public\Desktop\Freemake Video Downloader.lnk
2019-09-04 12:14 - 2019-09-04 12:14 - 000000000 ____D C:\Users\Raudel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2019-09-04 12:14 - 2019-09-04 12:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2019-09-04 12:14 - 2019-09-04 12:14 - 000000000 ____D C:\Program Files (x86)\Freemake
2019-09-04 11:13 - 2019-09-04 11:13 - 000063549 _____ C:\Users\Raudel\Downloads\Clownado (2019) [WEBRip] [1080p] [YTS.LT].torrent
2019-09-04 11:13 - 2019-09-04 11:13 - 000000000 ____D C:\Users\Raudel\AppData\Roaming\Adobe
2019-09-03 18:13 - 2019-09-03 18:13 - 000363952 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2019-09-03 18:13 - 2019-09-03 18:13 - 000236288 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2019-09-03 18:13 - 2019-09-03 18:13 - 000169672 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2019-08-28 10:59 - 2019-08-28 11:52 - 314469187 _____ C:\Users\Raudel\Downloads\Brazzers - Layla Sin I Need Some Excitement RealWifeStories porn  VEPORN.mp4
2019-08-28 10:55 - 2019-08-28 12:52 - 334183982 _____ C:\Users\Raudel\Downloads\StepSiblingsCaught - Daphne Dare My Obedient Step Sister mobile porn  VEPORN.mp4.crdownload
2019-08-28 10:51 - 2019-08-28 11:42 - 303803192 _____ C:\Users\Raudel\Downloads\PureTaboo - Emily Willis Naomi Swann Quid Pro Quo mobile porn  VEPORN.mp4
2019-08-28 10:45 - 2019-08-28 11:02 - 151745686 _____ C:\Users\Raudel\Downloads\BadDaddyPOV - Karma RX Really Wants A Car mobile porn  VEPORN.mp4
2019-08-28 09:50 - 2019-08-28 10:31 - 168075674 _____ C:\Users\Raudel\Downloads\BadDaddyPOV - Violet Starr Humilated And Punished.mp4
2019-08-28 09:42 - 2019-08-28 10:33 - 196857559 _____ C:\Users\Raudel\Downloads\StepSiblingsCaught - Bella Rose Sister Lost A Bet mobile porn  VEPORN.mp4
2019-08-23 09:07 - 2019-08-23 12:48 - 000000000 ____D C:\Users\Raudel\Desktop\VIERNES 23
2019-08-14 18:44 - 2019-08-14 18:44 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-08-14 18:44 - 2019-08-14 18:44 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-08-14 18:44 - 2019-08-14 18:44 - 003614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-08-14 18:44 - 2019-08-14 18:44 - 002177336 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2019-08-14 18:44 - 2019-08-14 18:44 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-08-14 18:44 - 2019-08-14 18:44 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2019-08-14 18:44 - 2019-08-14 18:44 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2019-08-14 18:44 - 2019-08-14 18:44 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2019-08-14 18:44 - 2019-08-14 18:44 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll
2019-08-14 18:44 - 2019-08-14 18:44 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2019-08-14 18:44 - 2019-08-14 18:44 - 000317240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-08-14 18:44 - 2019-08-14 18:44 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll
2019-08-14 18:44 - 2019-08-14 18:44 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2019-08-14 18:44 - 2019-08-14 18:44 - 000092832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2019-08-14 18:44 - 2019-08-14 18:44 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 006925312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 004737536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 004628992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 004344832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 003656704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 003567104 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 003363856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 002999808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 002942976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 002842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 002767160 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 002438576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-08-14 18:43 - 2019-08-14 18:43 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 002022096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 002017792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-08-14 18:43 - 2019-08-14 18:43 - 001733120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001715000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001674752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001662264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001479184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001477432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001466880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 001321784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001280000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001278808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001260560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001222160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001098272 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 001038336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001020416 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 001004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000993792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000895792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000864568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000831288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000806024 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000799784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000788480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000763392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000758688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000732168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000678680 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000658944 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000649528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000522104 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000515440 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000508968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000482104 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000449576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000444728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000398928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000396088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000383504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000375752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingDiagSpp.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingDiagSpp.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000310072 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000278624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000262336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000253256 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000248120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-08-14 18:43 - 2019-08-14 18:43 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000203064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000200504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000193040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000189712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-08-14 18:43 - 2019-08-14 18:43 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000173216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000152080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000125016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000121656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pmem.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000114128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2019-08-14 18:43 - 2019-08-14 18:43 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiskSnapshot.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Groupinghc.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000058882 _____ C:\WINDOWS\system32\srms.dat
2019-08-14 18:43 - 2019-08-14 18:43 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2019-08-14 18:43 - 2019-08-14 18:43 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000032784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000032568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys
2019-08-14 18:43 - 2019-08-14 18:43 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdcpw.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\shunimpl.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shunimpl.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-08-14 18:43 - 2019-08-14 18:43 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-08-14 08:07 - 2019-08-29 20:21 - 000212992 _____ C:\WINDOWS\system32\ClickToRun_Pipeline16
2019-08-13 20:40 - 2019-08-13 20:46 - 007217318 _____ C:\Users\Raudel\Downloads\FASE_INTENSIVA_CTE-Version_Actualizada.pptx

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-12 21:43 - 2018-09-15 01:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-09-12 20:19 - 2019-05-11 20:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-09-12 19:52 - 2018-04-16 11:35 - 000000000 ____D C:\Users\Raudel\AppData\Local\PlaceholderTileLogoFolder
2019-09-12 19:34 - 2016-05-09 17:11 - 000000000 ____D C:\Program Files (x86)\Steam
2019-09-12 19:32 - 2019-03-26 13:56 - 000000000 ____D C:\Users\Raudel\AppData\Roaming\Discord
2019-09-12 19:32 - 2016-02-16 22:47 - 000000000 ___RD C:\Users\Raudel\Google Drive
2019-09-12 19:31 - 2016-02-14 16:36 - 000000000 __SHD C:\Users\Raudel\IntelGraphicsProfiles
2019-09-12 19:31 - 2016-02-06 23:30 - 000000000 ____D C:\Temp
2019-09-12 19:04 - 2019-05-11 20:32 - 000000000 ____D C:\Users\Raudel
2019-09-12 15:18 - 2018-08-10 12:26 - 000000000 ____D C:\Users\Raudel\AppData\Local\CrashDumps
2019-09-12 15:16 - 2019-05-11 20:42 - 001924680 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-09-12 15:16 - 2018-09-15 10:39 - 000826396 _____ C:\WINDOWS\system32\perfh00A.dat
2019-09-12 15:16 - 2018-09-15 10:39 - 000172768 _____ C:\WINDOWS\system32\perfc00A.dat
2019-09-12 15:16 - 2018-09-15 01:31 - 000000000 ____D C:\WINDOWS\INF
2019-09-12 15:13 - 2019-05-11 20:39 - 000004278 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2019-09-12 15:10 - 2019-05-11 20:39 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-09-12 15:10 - 2018-10-17 16:20 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2019-09-12 15:03 - 2016-04-06 00:54 - 000000000 ____D C:\Users\Raudel\Documents\Lightshot
2019-09-12 12:54 - 2016-12-02 12:59 - 000000000 ____D C:\Users\Raudel\AppData\Roaming\Azureus
2019-09-12 10:04 - 2016-12-02 13:00 - 000000000 ____D C:\Users\Raudel\Documents\Vuze Downloads
2019-09-12 08:52 - 2016-01-25 23:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-12 08:52 - 2016-01-25 23:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-09-12 08:50 - 2018-09-15 00:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-09-12 08:35 - 2017-01-29 17:38 - 000000000 ____D C:\Users\Raudel\AppData\LocalLow\Mozilla
2019-09-12 08:33 - 2016-01-25 23:20 - 000001199 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-09-12 08:32 - 2018-06-10 17:30 - 000000000 ____D C:\Users\Raudel\Downloads\portables
2019-09-11 21:19 - 2018-09-15 01:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-09-11 19:32 - 2017-10-27 07:07 - 000000000 ___RD C:\Users\Raudel\3D Objects
2019-09-11 19:32 - 2015-07-16 00:05 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-09-11 19:31 - 2019-05-11 20:30 - 000450008 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-09-11 19:31 - 2016-03-10 23:45 - 000000408 _____ C:\WINDOWS\Tasks\update-sys.job
2019-09-11 19:31 - 2016-03-10 23:45 - 000000408 _____ C:\WINDOWS\Tasks\update-S-1-5-21-1258500712-2013476395-2823826765-1003.job
2019-09-11 19:08 - 2018-09-15 10:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-09-11 19:08 - 2018-09-15 01:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-09-11 19:08 - 2018-09-15 01:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-09-11 19:08 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-09-11 19:08 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-09-11 19:08 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-09-11 19:08 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-09-11 19:08 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-09-11 19:08 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-09-11 19:08 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-09-11 19:08 - 2018-09-15 00:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-09-11 19:03 - 2018-09-15 01:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-09-11 19:03 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-09-10 19:45 - 2019-05-11 20:39 - 000004606 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-10 19:45 - 2019-05-11 20:39 - 000004394 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-09-10 19:45 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-09-10 19:45 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-09-10 19:40 - 2019-05-11 20:39 - 000003400 _____ C:\WINDOWS\System32\Tasks\update-S-1-5-21-1258500712-2013476395-2823826765-1003
2019-09-10 19:40 - 2019-05-11 20:39 - 000003334 _____ C:\WINDOWS\System32\Tasks\update-sys
2019-09-10 19:40 - 2016-03-10 23:45 - 000000424 _____ C:\Users\Raudel\AppData\Local\UserProducts.xml
2019-09-10 19:40 - 2016-03-10 23:45 - 000000000 ____D C:\Program Files (x86)\Skillbrains
2019-09-10 13:36 - 2019-05-11 20:39 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-09-10 10:44 - 2016-11-12 18:29 - 000000000 ____D C:\Users\Raudel\AppData\Roaming\vlc
2019-09-10 10:11 - 2019-02-22 10:32 - 000000000 ____D C:\Users\Raudel\AppData\Roaming\ZHP
2019-09-10 03:59 - 2016-02-14 16:40 - 000000000 ____D C:\Users\Raudel\AppData\Roaming\Hewlett-Packard
2019-09-10 03:59 - 2015-09-07 14:03 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2019-09-09 22:44 - 2016-02-14 16:37 - 000000000 ____D C:\Users\Raudel\AppData\Local\Hewlett-Packard
2019-09-09 22:44 - 2015-09-07 13:56 - 000000000 ____D C:\Program Files\Hewlett-Packard
2019-09-09 22:44 - 2015-09-07 13:56 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2019-09-09 21:14 - 2019-02-22 10:32 - 000000922 _____ C:\Users\Raudel\Desktop\ZHPCleaner.lnk
2019-09-09 21:09 - 2019-01-10 09:42 - 000000000 ___DC C:\WINDOWS\Panther
2019-09-09 21:09 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-09-09 17:40 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-09-06 12:51 - 2019-01-15 18:54 - 000000000 ____D C:\Users\Public\Documents\MuMu Files
2019-09-06 12:51 - 2019-01-15 18:36 - 000000000 ____D C:\Users\Raudel\.NEMU
2019-09-06 10:58 - 2018-08-21 12:01 - 000000000 ____D C:\Users\Raudel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\aSc Horarios
2019-09-06 10:24 - 2016-01-27 23:40 - 000000000 ____D C:\Program Files (x86)\Google
2019-09-06 09:06 - 2019-05-11 20:39 - 000003368 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1258500712-2013476395-2823826765-1003
2019-09-06 09:06 - 2019-05-11 20:32 - 000002416 _____ C:\Users\Raudel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-09-06 09:06 - 2016-02-14 16:38 - 000000000 ___RD C:\Users\Raudel\OneDrive
2019-09-05 16:07 - 2015-11-03 09:38 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-09-05 12:57 - 2016-02-16 22:44 - 000000968 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2019-09-05 12:57 - 2016-02-16 22:44 - 000000964 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2019-09-05 09:39 - 2019-05-11 20:39 - 000003482 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-09-05 09:39 - 2019-05-11 20:39 - 000003482 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2019-09-05 09:39 - 2019-05-11 20:39 - 000003350 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{8EA75112-A4CA-460A-8E50-C025BDFE250A}
2019-09-05 09:39 - 2019-05-11 20:39 - 000003258 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-09-05 09:39 - 2019-05-11 20:39 - 000003258 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2019-09-05 09:39 - 2019-05-11 20:39 - 000002586 _____ C:\WINDOWS\System32\Tasks\Motorola Device Manager Update
2019-09-05 09:39 - 2019-05-11 20:39 - 000002536 _____ C:\WINDOWS\System32\Tasks\AutoPico Daily Restart
2019-09-05 09:39 - 2019-05-11 20:39 - 000002518 _____ C:\WINDOWS\System32\Tasks\HPLJCustParticipation
2019-09-05 09:39 - 2019-05-11 20:39 - 000002410 _____ C:\WINDOWS\System32\Tasks\Motorola Device Manager Initial Update
2019-09-05 09:39 - 2019-05-11 20:39 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-09-05 09:39 - 2019-05-11 20:39 - 000002172 _____ C:\WINDOWS\System32\Tasks\DropboxOEM
2019-09-05 09:39 - 2019-05-11 20:39 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2019-09-04 13:34 - 2016-09-29 10:32 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-09-03 19:06 - 2019-06-20 09:12 - 000286421 _____ C:\Users\Raudel\Desktop\REPORTES 2018-2019.xlsm
2019-09-03 18:14 - 2018-05-21 20:55 - 000478144 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2019-09-03 18:13 - 2019-01-15 08:59 - 000263784 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2019-09-03 18:13 - 2019-01-07 14:24 - 000206624 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2019-09-03 18:13 - 2019-01-07 14:24 - 000061736 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2019-09-03 18:13 - 2019-01-07 14:24 - 000037368 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys
2019-09-03 18:13 - 2018-10-21 21:23 - 000042552 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2019-09-03 18:13 - 2018-09-15 01:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-09-03 18:13 - 2018-05-21 20:55 - 001031048 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2019-09-03 18:13 - 2018-05-21 20:55 - 000387440 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2019-09-03 18:13 - 2018-05-21 20:55 - 000209816 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2019-09-03 18:13 - 2018-05-21 20:55 - 000112576 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2019-09-03 18:13 - 2018-05-21 20:55 - 000088200 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2019-08-31 17:41 - 2016-05-30 13:18 - 000000000 ____D C:\Users\Raudel\Downloads\programas
2019-08-29 21:29 - 2018-09-15 01:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-08-29 21:27 - 2016-01-26 00:49 - 000000000 ____D C:\Program Files\Microsoft Office
2019-08-29 13:51 - 2018-07-15 23:59 - 000000132 _____ C:\Users\Raudel\AppData\Roaming\Prefs. de formato PNG de Adobe CS6
2019-08-28 18:03 - 2018-07-03 15:07 - 000000000 ____D C:\Users\Raudel\Documents\My Kindle Content
2019-08-27 17:33 - 2016-01-27 23:40 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-27 17:33 - 2016-01-27 23:40 - 000002265 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-26 15:45 - 2017-05-30 09:10 - 000000000 ____D C:\Users\Raudel\saveL
2019-08-23 09:31 - 2019-08-09 11:30 - 000000000 ____D C:\Users\Raudel\Desktop\CONSEJO TÉCNICO ESCOLAR fase intensiva
2019-08-14 21:19 - 2018-09-15 10:39 - 000000000 ____D C:\WINDOWS\system32\Drivers\es-MX
2019-08-14 21:19 - 2018-09-15 01:33 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-08-14 21:19 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-08-14 21:19 - 2018-09-15 01:33 - 000000000 ____D C:\WINDOWS\Provisioning
2019-08-13 21:44 - 2019-08-08 11:03 - 000000000 ____D C:\Users\Raudel\Desktop\NEM
2019-08-13 20:57 - 2017-10-27 01:22 - 000000000 ____D C:\Users\Raudel\AppData\Local\Packages
2019-08-13 19:54 - 2016-01-26 00:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-08-13 19:47 - 2016-01-26 00:33 - 134272480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories ================

2019-09-06 11:09 - 2019-09-08 18:30 - 000000004 _____ () C:\ProgramData\lock.dat
2019-09-06 11:09 - 2019-09-06 11:09 - 000000008 _____ () C:\ProgramData\ts.dat
2018-10-22 21:31 - 2018-11-08 11:33 - 000007859 _____ () C:\Users\Raudel\AppData\Roaming\pcouffin.cat
2018-10-22 21:31 - 2018-11-08 11:33 - 000001167 _____ () C:\Users\Raudel\AppData\Roaming\pcouffin.inf
2018-10-22 21:31 - 2018-11-08 11:34 - 000000055 _____ () C:\Users\Raudel\AppData\Roaming\pcouffin.log
2018-10-22 21:31 - 2018-11-08 11:33 - 000082816 _____ (VSO Software) C:\Users\Raudel\AppData\Roaming\pcouffin.sys
2018-10-15 10:54 - 2018-10-15 11:24 - 000000132 _____ () C:\Users\Raudel\AppData\Roaming\Prefs. de formato GIF de Adobe CS6
2018-07-15 23:59 - 2019-08-29 13:51 - 000000132 _____ () C:\Users\Raudel\AppData\Roaming\Prefs. de formato PNG de Adobe CS6
2018-10-15 11:02 - 2018-10-15 11:02 - 000001456 _____ () C:\Users\Raudel\AppData\Local\Adobe Guardar para Web 13.0 Prefs
2016-02-14 16:37 - 2019-09-12 19:31 - 002302090 _____ () C:\Users\Raudel\AppData\Local\BTServer.log
2016-09-12 11:38 - 2016-09-12 11:38 - 000000001 _____ () C:\Users\Raudel\AppData\Local\llftool.4.40.agreement
2016-03-10 23:45 - 2016-03-10 23:45 - 000000003 _____ () C:\Users\Raudel\AppData\Local\updater.log
2016-03-10 23:45 - 2019-09-10 19:40 - 000000424 _____ () C:\Users\Raudel\AppData\Local\UserProducts.xml
2016-03-22 23:39 - 2016-03-22 23:39 - 000000000 _____ () C:\Users\Raudel\AppData\Local\{0D1C800F-C50B-4378-86D2-63885DDEA2C8}
2019-05-03 07:44 - 2019-05-03 07:44 - 000000000 _____ () C:\Users\Raudel\AppData\Local\{40EA217F-B12D-4BA4-9AAC-ECA7103BFA7A}
2018-11-21 09:35 - 2018-11-21 09:35 - 000000000 _____ () C:\Users\Raudel\AppData\Local\{65F1CFA0-6EBE-4460-801C-D1B750C9E4A8}
2019-05-09 07:46 - 2019-05-09 07:46 - 000000000 _____ () C:\Users\Raudel\AppData\Local\{998FB768-C410-4E79-9579-3B855AC2237F}
2018-11-21 09:35 - 2018-11-21 09:35 - 000000000 _____ () C:\Users\Raudel\AppData\Local\{B3EF40C5-7A55-4DED-A12F-3DF53DFA030F}

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================